This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: bghqKV26SR/jFxapiPBcdCgpgHL4PNo0kgNtGwEDwus= Subject key identifier: 77:12:51:C4:F5:42:C1:3B:73:A5:94:18:C0:AF:08:89:8E:5F:C0:28 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04E3 Signing time: Wed 24 Dec 2025 22:57:11 +0000 Manifest this update: Wed 24 Dec 2025 22:57:11 +0000 Manifest next update: Wed 31 Dec 2025 22:57:11 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: 1Tnfmft50eLBk0wVgpZGWSOd/UlAlz4rKDkbfGpIvdM=) 2: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) 3: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 4: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 5: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) 6: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 7: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Dec 24 22:57:11 2025 GMT Not After : Dec 31 22:57:11 2025 GMT Subject: CN=694c6fc7-ca1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c9:30:db:38:07:ad:b5:90:aa:eb:24:9d:21: bc:b0:4b:e6:e0:e6:fb:38:65:68:9d:0e:1c:df:d4: 97:c2:95:c1:7c:21:af:68:d4:55:eb:56:f7:7b:33: 87:29:29:c2:02:11:b3:0e:9e:a6:8b:3c:91:c7:9d: 09:f6:8f:5d:aa:a8:1a:90:7f:07:ec:bf:31:9c:6a: 90:54:27:25:d2:33:c5:d3:70:2d:15:34:f2:9b:28: da:6b:79:22:a7:d1:db:80:f0:26:86:d3:4c:54:39: 17:33:47:15:f9:11:2d:d7:15:5b:00:93:42:a0:25: 46:e0:65:5f:27:2d:98:9f:4c:99:c6:a0:bc:54:b4: 04:c7:0a:ec:b2:31:03:98:55:e0:f6:c0:09:29:a7: 0e:3c:e9:37:ae:f1:ae:ab:7c:cc:19:bb:61:19:a3: 7e:b0:aa:84:52:a0:e9:cb:b0:73:04:35:5e:b7:fe: f2:9d:c7:50:d7:7b:f3:1b:26:6b:33:40:78:91:e3: e0:95:38:f3:d9:e1:d0:a7:18:d0:26:06:65:7f:4a: f5:ce:f3:36:58:d8:f9:1f:28:ff:2d:bc:69:57:8c: ac:9d:e6:e8:9e:a6:81:54:03:af:08:79:22:cd:9f: 80:89:99:db:26:c4:11:4b:f4:1c:da:d3:90:33:c6: a6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:12:51:C4:F5:42:C1:3B:73:A5:94:18:C0:AF:08:89:8E:5F:C0:28 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:14:b2:d4:48:82:d8:cd:6f:24:ed:72:c8:3e:19:72:4b:d6: 62:66:81:a1:e4:ee:f9:5c:4e:21:45:1f:7d:41:4a:bb:df:40: 47:bc:53:56:a5:ec:a9:e4:8c:52:33:63:a3:dc:27:78:0e:01: 72:38:b8:f8:4f:5f:23:66:c1:5b:03:a0:43:34:cc:5a:12:3e: c9:b3:32:1a:60:17:4a:09:24:fe:a5:56:07:b5:c0:1e:61:03: a4:46:b4:6d:7c:50:20:eb:78:2b:b5:02:85:de:8c:a9:28:f3: df:aa:c9:ae:8e:f2:23:ff:6d:52:5a:da:c9:c6:bf:54:b2:65: bb:d0:68:89:4d:63:af:e5:3f:36:1b:5b:2f:0b:52:e0:3c:d9: 58:d6:91:78:60:fe:f1:6d:da:5a:8b:f1:a1:ad:7a:ce:68:b0: fc:b1:ea:43:01:c6:01:77:54:29:56:b9:39:ae:b7:b1:f3:b6: 2b:7b:90:85:5f:74:fc:5d:45:26:ec:15:2a:ca:19:3d:8b:8d: 37:5b:17:d1:1c:49:ea:60:a3:3e:d9:6b:06:30:bb:d4:2a:6e: 05:fb:76:99:82:f5:f6:db:a5:53:59:1f:d1:c3:a3:c3:28:ab: ab:d4:2e:b4:38:1e:5a:74:41:79:6a:98:3e:e9:0c:8f:55:fd: f7:ff:02:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMjI0MjI1NzExWhcNMjUxMjMxMjI1NzExWjAYMRYwFAYD VQQDDA02OTRjNmZjNy1jYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlMkw2zgHrbWQqusknSG8sEvm4Ob7OGVonQ4c39SXwpXBfCGvaNRV61b3ezOH KSnCAhGzDp6mizyRx50J9o9dqqgakH8H7L8xnGqQVCcl0jPF03AtFTTymyjaa3ki p9HbgPAmhtNMVDkXM0cV+REt1xVbAJNCoCVG4GVfJy2Yn0yZxqC8VLQExwrssjED mFXg9sAJKacOPOk3rvGuq3zMGbthGaN+sKqEUqDpy7BzBDVet/7yncdQ13vzGyZr M0B4kePglTjz2eHQpxjQJgZlf0r1zvM2WNj5Hyj/LbxpV4ysnebonqaBVAOvCHki zZ+AiZnbJsQRS/Qc2tOQM8amKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcSUcT1 QsE7c6WUGMCvCImOX8AoMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsFLLUSILYzW8k7XLIPhlyS9ZiZoGh5O75XE4hRR99QUq730BHvFNW peyp5IxSM2Oj3Cd4DgFyOLj4T18jZsFbA6BDNMxaEj7JszIaYBdKCST+pVYHtcAe YQOkRrRtfFAg63grtQKF3oypKPPfqsmujvIj/21SWtrJxr9UsmW70GiJTWOv5T82 G1svC1LgPNlY1pF4YP7xbdpai/GhrXrOaLD8sepDAcYBd1QpVrk5rrex87Yre5CF X3T8XUUm7BUqyhk9i403WxfRHEnqYKM+2WsGMLvUKm4F+3aZgvX226VTWR/Rw6PD KKur1C60OB5adEF5apg+6QyPVf33/wK0 -----END CERTIFICATE-----Generated at Thu Dec 25 05:34:22 2025 by rpki-client