This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: lahTbcUwxtXPmpBEjTa8Gar4RnKICcSyg/lu+BJD3Zs= Subject key identifier: 71:BB:C4:73:A7:F8:3E:3E:28:ED:B3:F5:57:E1:1A:21:9D:30:AD:73 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 010A Signing time: Fri 19 Dec 2025 04:08:09 +0000 Manifest this update: Fri 19 Dec 2025 04:08:09 +0000 Manifest next update: Fri 26 Dec 2025 04:08:09 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: SGdvUSwFHdIFYiCme+TZSNfpqrQo49GhB0rUwyLvkPc=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Dec 19 04:08:09 2025 GMT Not After : Dec 26 04:08:09 2025 GMT Subject: CN=6944cfa9-4039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:19:b9:a1:1a:b4:a3:6b:7c:cf:fb:4e:0a: 34:25:28:56:4d:93:a4:09:9f:e6:06:22:20:ec:98: 9f:89:f6:6f:9a:e2:0e:70:2f:06:47:ab:17:ea:65: ee:84:c4:4e:31:0b:ea:36:b8:17:3b:00:71:d4:f9: 65:dc:ff:8f:24:9e:2a:e8:85:4b:eb:6d:d1:9d:dc: 8d:24:d7:cc:65:3b:e5:d4:31:d1:78:07:9e:ed:2a: cc:34:2b:f6:8c:5b:8c:70:2a:88:e5:5e:e5:e7:0f: 3e:1f:07:cb:eb:8f:0b:13:5b:2d:6a:88:7f:6f:68: 29:21:43:89:fc:69:19:48:53:a9:36:a7:c9:b3:be: 25:6b:ee:6e:9f:90:46:90:75:59:66:c4:2c:4f:50: f3:8e:23:7a:cc:88:fd:b7:6f:98:b8:33:06:cd:f2: 8d:e2:d0:b4:36:9c:7e:5e:80:cf:75:b6:ce:f6:cb: b6:9d:1b:b5:eb:a8:f4:d3:d2:4b:82:23:fb:d4:12: 8c:ec:af:bc:4b:b4:26:57:b6:87:03:0d:5c:c1:04: 33:c4:4c:35:fa:90:4f:5b:22:a6:c2:dd:6c:3c:77: 5e:25:e8:a7:c7:7b:32:00:ac:02:d8:e7:4c:44:1d: 37:65:11:98:d0:25:8f:70:65:ff:b5:22:d9:eb:b1: 19:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BB:C4:73:A7:F8:3E:3E:28:ED:B3:F5:57:E1:1A:21:9D:30:AD:73 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d0:a9:48:f7:b0:c8:af:98:bb:89:00:0b:c0:52:96:f6:ee: 87:8b:8e:53:8e:16:73:07:03:00:82:ac:dc:7d:1b:d5:25:ab: 67:0a:f9:ad:f6:a3:af:d0:8c:dc:e5:5f:e4:97:78:98:bb:c7: c9:fa:54:7b:70:7a:b4:3c:35:70:99:de:4b:6d:58:2a:8f:1e: fc:6a:59:67:08:dc:be:6d:da:a9:80:b2:91:99:8b:a5:a2:f8: a2:53:2d:95:fb:7d:51:96:f2:2f:5b:60:a4:df:01:ec:87:62: 6a:10:af:aa:7d:a5:62:ff:9a:db:ef:c8:00:64:a9:03:40:69: d3:b3:e3:f5:e5:00:9a:b5:17:81:a2:e7:8a:74:61:6b:b9:d5: a7:f7:19:34:f7:e2:99:fc:32:d5:c1:54:7a:be:11:92:fc:7a: 82:ab:e0:17:5e:db:be:2f:20:62:89:27:10:dc:a9:f7:54:06: dc:c2:06:19:9a:c8:3b:e2:ad:94:75:cc:43:11:e9:fa:91:05: fa:d7:43:cf:64:7e:15:c4:bf:3d:c3:c9:e1:b7:82:bb:32:e6: f8:ce:03:c6:be:ae:20:d1:19:22:a8:e4:21:06:4b:ba:25:ec: 97:64:4a:8c:9d:30:2c:db:6d:c6:94:00:5d:ef:7b:cc:9f:6a: c9:6e:1d:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUxMjE5MDQwODA5WhcNMjUxMjI2MDQwODA5WjAYMRYwFAYD VQQDDA02OTQ0Y2ZhOS00MDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMQZuaEatKNrfM/7Tgo0JShWTZOkCZ/mBiIg7JififZvmuIOcC8GR6sX6mXu hMROMQvqNrgXOwBx1Pll3P+PJJ4q6IVL623RndyNJNfMZTvl1DHReAee7SrMNCv2 jFuMcCqI5V7l5w8+HwfL648LE1staoh/b2gpIUOJ/GkZSFOpNqfJs74la+5un5BG kHVZZsQsT1DzjiN6zIj9t2+YuDMGzfKN4tC0Npx+XoDPdbbO9su2nRu166j009JL giP71BKM7K+8S7QmV7aHAw1cwQQzxEw1+pBPWyKmwt1sPHdeJeinx3syAKwC2OdM RB03ZRGY0CWPcGX/tSLZ67EZPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG7xHOn +D4+KO2z9VfhGiGdMK1zMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg0KlI97DIr5i7iQALwFKW9u6Hi45TjhZzBwMAgqzcfRvVJatnCvmt 9qOv0Izc5V/kl3iYu8fJ+lR7cHq0PDVwmd5LbVgqjx78allnCNy+bdqpgLKRmYul oviiUy2V+31RlvIvW2Ck3wHsh2JqEK+qfaVi/5rb78gAZKkDQGnTs+P15QCatReB oueKdGFrudWn9xk09+KZ/DLVwVR6vhGS/HqCq+AXXtu+LyBiiScQ3Kn3VAbcwgYZ msg74q2UdcxDEen6kQX610PPZH4VxL89w8nht4K7Mub4zgPGvq4g0RkiqOQhBku6 JeyXZEqMnTAs223GlABd73vMn2rJbh2x -----END CERTIFICATE-----Generated at Sat Dec 20 04:58:40 2025 by rpki-client