This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: v0Ymua+hO8cl5Qy4cEVph8e7EE9ELk4iRqt55F8GIww= Subject key identifier: 85:67:65:07:9C:DA:90:A5:43:5D:F9:BA:9C:84:B4:FE:33:EF:01:52 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 0350 Signing time: Fri 19 Dec 2025 00:13:33 +0000 Manifest this update: Fri 19 Dec 2025 00:13:33 +0000 Manifest next update: Fri 26 Dec 2025 00:13:33 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: +OCpaBSuDPOACt5LJ3LWDHPD11dJq9/P30I17DgzVeE=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: 7Vqt5Z1iLa6sd2j1GJTbVkyMkAlTAIqUM4pmVdVOT70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: Dec 19 00:13:33 2025 GMT Not After : Dec 26 00:13:33 2025 GMT Subject: CN=694498ad-473c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fd:53:5d:3f:f7:21:0d:6d:eb:17:a2:b2:4d: 13:6e:44:9e:79:2d:61:57:55:ce:c0:bd:57:40:4a: 4d:16:b7:49:02:63:87:a9:b5:c5:e1:3e:91:ea:66: 2b:6c:d1:15:c6:3d:41:06:6b:b8:b3:5a:7a:63:a1: 1e:30:98:d7:9c:0c:9e:87:50:d3:62:12:d7:3b:04: 77:6a:1b:41:a4:89:97:93:c6:b3:9e:0f:0f:b3:15: 07:99:05:8e:a0:1f:eb:36:69:24:69:38:84:b8:9a: b4:32:b3:35:a0:c1:34:9e:b5:9a:29:6f:17:34:15: 84:2b:83:c8:ac:e4:7d:b5:f6:63:17:d6:b4:70:16: ca:eb:d5:07:60:de:84:44:ef:92:dd:04:eb:3a:3a: 0c:61:9c:8c:95:e1:4b:38:a9:96:e0:d0:3d:ac:22: 6d:3d:7a:86:03:92:84:bc:10:6a:77:3c:84:8d:db: 89:4b:50:c8:2e:69:7d:99:a6:9e:c3:24:36:95:96: d6:65:7d:94:ef:e9:12:a5:72:e5:1f:e4:7b:13:73: f2:46:cd:3d:64:aa:97:a5:5c:d2:39:10:f7:1d:0f: c6:e5:7a:6c:17:f2:ad:63:d4:01:4c:54:19:56:d7: 78:1d:c8:7e:7b:92:25:cb:e2:3e:6d:77:e8:aa:6e: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:67:65:07:9C:DA:90:A5:43:5D:F9:BA:9C:84:B4:FE:33:EF:01:52 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:53:03:77:4e:5c:f4:5c:89:a4:fb:c8:24:4d:76:ad:88:a6: 38:4c:9b:07:e8:7d:dd:43:38:ed:1f:1c:d1:8c:7e:25:9b:8b: 52:c5:b8:9b:76:b2:57:ec:9b:57:83:65:0a:90:fc:78:fc:ee: df:2f:fd:20:f3:54:15:49:e0:d9:66:9b:f7:6a:06:68:b0:1f: e9:85:8f:7e:c0:c8:e7:65:7f:93:82:ea:03:1f:85:b5:07:65: 6c:45:3c:19:db:cd:68:2e:2a:26:e6:b8:d7:58:2f:c1:c8:41: 8c:4c:aa:10:06:8f:4f:10:03:f3:d9:d5:ed:b5:f5:bb:c5:f8: 65:8d:24:14:13:97:1c:b3:76:78:5d:88:8c:33:4e:8d:e1:82: 11:a8:15:ad:d2:97:5b:22:28:ed:1c:01:31:c0:96:e8:77:53: 42:a1:e0:a5:45:a1:42:9c:05:7b:d7:65:49:e2:d4:e7:13:7c: bf:7b:34:ce:4b:b8:ad:43:e4:88:20:69:f2:55:74:c9:b7:3a: f6:82:a9:d1:dc:c8:f9:9d:08:c6:21:e8:43:53:89:ae:d1:78: e2:38:d2:45:76:e2:9c:15:f5:a9:56:56:3b:a1:b9:8a:f3:f9: 34:0d:64:a5:86:4e:ba:b5:6d:c8:21:34:c7:7f:cf:0a:ac:76: 60:b6:1c:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUxMjE5MDAxMzMzWhcNMjUxMjI2MDAxMzMzWjAYMRYwFAYD VQQDDA02OTQ0OThhZC00NzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnv1TXT/3IQ1t6xeisk0TbkSeeS1hV1XOwL1XQEpNFrdJAmOHqbXF4T6R6mYr bNEVxj1BBmu4s1p6Y6EeMJjXnAyeh1DTYhLXOwR3ahtBpImXk8azng8PsxUHmQWO oB/rNmkkaTiEuJq0MrM1oME0nrWaKW8XNBWEK4PIrOR9tfZjF9a0cBbK69UHYN6E RO+S3QTrOjoMYZyMleFLOKmW4NA9rCJtPXqGA5KEvBBqdzyEjduJS1DILml9maae wyQ2lZbWZX2U7+kSpXLlH+R7E3PyRs09ZKqXpVzSORD3HQ/G5XpsF/KtY9QBTFQZ Vtd4Hch+e5Ily+I+bXfoqm7BAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVnZQec 2pClQ135upyEtP4z7wFSMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOUwN3Tlz0XImk+8gkTXatiKY4TJsH6H3dQzjtHxzRjH4lm4tSxbib drJX7JtXg2UKkPx4/O7fL/0g81QVSeDZZpv3agZosB/phY9+wMjnZX+TguoDH4W1 B2VsRTwZ281oLiom5rjXWC/ByEGMTKoQBo9PEAPz2dXttfW7xfhljSQUE5ccs3Z4 XYiMM06N4YIRqBWt0pdbIijtHAExwJbod1NCoeClRaFCnAV712VJ4tTnE3y/ezTO S7itQ+SIIGnyVXTJtzr2gqnR3Mj5nQjGIehDU4mu0XjiONJFduKcFfWpVlY7obmK 8/k0DWSlhk66tW3IITTHf88KrHZgthwV -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:43 2025 by rpki-client