This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: yqCQDZ/cFKh9SLNIT1SraswkuZqfVPyZMooBaMxDyi8= Subject key identifier: 55:20:64:7D:A8:81:7D:AF:9A:B2:AE:5C:7E:09:FD:7C:DA:52:65:FE Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 0504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04E5 Signing time: Sun 28 Dec 2025 22:54:35 +0000 Manifest this update: Sun 28 Dec 2025 22:54:35 +0000 Manifest next update: Sun 04 Jan 2026 22:54:35 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: Wt758e0uTnA9AB8E/TlBY6x3mCCRZjhLP2SIZM30ZJE=) 2: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 3: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 4: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) 5: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 6: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) 7: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Dec 28 22:54:35 2025 GMT Not After : Jan 4 22:54:35 2026 GMT Subject: CN=6951b52b-5fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:dd:bd:48:fd:3b:01:f3:fd:72:7e:73:35: 52:f1:60:55:90:47:14:64:22:40:d5:2d:df:ff:68: 39:70:b2:4a:56:38:d3:a2:10:f3:de:c7:24:62:8a: 61:b5:1e:b4:2e:e0:0c:0b:0f:ce:0e:51:b7:8d:e3: 5c:03:33:5d:44:74:49:8c:10:1c:ec:81:d8:20:dc: d0:51:40:ac:b6:1a:12:10:ae:37:fd:b1:08:50:e7: b1:1a:52:45:d7:27:0c:99:0f:90:8e:1e:b6:6c:27: 82:2e:f5:b0:ab:ad:d9:e7:8a:4d:7c:87:ad:b4:a4: db:6a:4d:83:6f:ca:5f:0a:c0:3e:f5:16:80:3e:32: 8e:0d:21:06:7c:3a:16:b1:ab:23:1d:60:06:8d:87: 22:a9:f4:f1:b2:07:87:d6:5d:bb:97:6b:39:4d:1b: 47:7e:b7:37:6c:da:6c:69:94:7f:5e:91:25:51:ae: 6a:0f:43:02:c0:ef:ab:aa:3a:19:2a:fe:4f:f6:2f: 82:35:51:4f:31:17:92:ed:18:e2:a3:da:0d:24:d0: 18:c0:7c:30:44:25:f2:f3:e3:79:cc:2f:39:e3:6e: 3f:b3:6d:0c:83:0e:3d:c6:7e:08:51:bd:92:72:20: 33:05:8e:e8:2a:d0:3b:78:d3:41:b0:e9:0a:8d:4e: 51:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:20:64:7D:A8:81:7D:AF:9A:B2:AE:5C:7E:09:FD:7C:DA:52:65:FE X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:67:69:af:c4:04:60:aa:71:b3:c7:fc:81:21:83:32:fc:fc: d0:6e:ef:9c:49:ae:80:99:e3:8e:03:22:b0:e2:d0:a5:07:5e: 92:80:c5:4b:ab:0f:31:69:22:95:b8:95:e2:c3:97:cb:2c:2a: 2b:77:ae:b8:54:b2:53:98:f2:a2:4c:52:bf:e3:87:0c:c4:d3: f0:5f:97:24:c0:95:fd:73:38:e1:e3:5c:d8:6e:db:57:c6:f6: 98:28:11:14:7a:59:a2:a3:a4:dc:0c:e3:30:8d:94:46:23:32: 37:d8:6f:66:f9:8e:dd:bc:bb:b4:aa:fe:ae:eb:1a:12:e8:85: 5f:49:23:9e:85:91:5a:bd:9c:1a:c3:43:2a:3d:8f:44:61:85: 08:ca:4d:38:cf:1d:b9:3c:59:d4:9f:a2:95:13:d9:40:f3:38: d8:2e:c7:29:03:f8:a9:ff:8b:e3:92:38:f3:db:dd:cc:af:12: 12:b8:e1:72:2c:16:a2:7a:3e:30:34:1b:9c:14:53:69:fc:44: 8f:87:14:ad:16:55:65:b1:e4:54:37:2a:b0:38:fc:53:1a:df: 20:25:20:ac:a8:59:c6:bc:31:6e:c9:a3:22:ad:1f:ae:14:8a: cd:e8:1c:4d:af:52:24:97:76:12:03:0f:4a:fd:80:fa:5f:c9: 14:be:c3:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMjI4MjI1NDM1WhcNMjYwMTA0MjI1NDM1WjAYMRYwFAYD VQQDDA02OTUxYjUyYi01ZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcXdvUj9OwHz/XJ+czVS8WBVkEcUZCJA1S3f/2g5cLJKVjjTohDz3sckYoph tR60LuAMCw/ODlG3jeNcAzNdRHRJjBAc7IHYINzQUUCsthoSEK43/bEIUOexGlJF 1ycMmQ+Qjh62bCeCLvWwq63Z54pNfIettKTbak2Db8pfCsA+9RaAPjKODSEGfDoW sasjHWAGjYciqfTxsgeH1l27l2s5TRtHfrc3bNpsaZR/XpElUa5qD0MCwO+rqjoZ Kv5P9i+CNVFPMReS7Rjio9oNJNAYwHwwRCXy8+N5zC85424/s20Mgw49xn4IUb2S ciAzBY7oKtA7eNNBsOkKjU5RmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUgZH2o gX2vmrKuXH4J/XzaUmX+MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbZ2mvxARgqnGzx/yBIYMy/PzQbu+cSa6AmeOOAyKw4tClB16SgMVL qw8xaSKVuJXiw5fLLCord664VLJTmPKiTFK/44cMxNPwX5ckwJX9czjh41zYbttX xvaYKBEUelmio6TcDOMwjZRGIzI32G9m+Y7dvLu0qv6u6xoS6IVfSSOehZFavZwa w0MqPY9EYYUIyk04zx25PFnUn6KVE9lA8zjYLscpA/ip/4vjkjjz293MrxISuOFy LBaiej4wNBucFFNp/ESPhxStFlVlseRUNyqwOPxTGt8gJSCsqFnGvDFuyaMirR+u FIrN6BxNr1Ikl3YSAw9K/YD6X8kUvsO0 -----END CERTIFICATE-----Generated at Mon Dec 29 01:53:19 2025 by rpki-client