This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: vloHXg/0thDkEV8TswHVlGrb27jL+w/PCogdl/+zkTY= Subject key identifier: 9A:3C:AA:82:9B:18:16:B9:EA:E7:C5:DF:7D:FB:26:3B:E4:33:EE:0D Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 010F Signing time: Mon 29 Dec 2025 04:02:50 +0000 Manifest this update: Mon 29 Dec 2025 04:02:49 +0000 Manifest next update: Mon 05 Jan 2026 04:02:49 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: gdQYODoBkbX9q2OqosHSzgq+ucbO7+kcBhUKiAuWa38=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 04:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Dec 29 04:02:49 2025 GMT Not After : Jan 5 04:02:49 2026 GMT Subject: CN=6951fd69-9098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:4b:eb:f6:38:1d:39:38:d2:ce:73:3b:0d: 6b:87:e9:3a:ea:f7:e1:64:60:6f:86:49:d9:1f:41: d4:3b:1b:69:11:5d:26:d7:2f:b0:9e:05:14:7d:b3: 11:2a:40:4d:60:e2:70:a9:1b:65:2b:72:58:34:21: 12:e8:ab:d9:c3:e3:71:63:5e:69:fc:c3:bb:a9:9d: 76:c6:e0:25:22:8a:94:dd:6c:2b:62:48:49:ab:c0: b4:ba:66:b1:2b:e7:28:bf:0b:d3:78:1e:c0:9d:57: 6c:e4:77:07:1c:e9:25:a1:12:3c:72:83:32:a6:82: 6b:2f:c2:3d:e9:9b:0c:ba:3b:8b:55:a8:0b:17:b6: db:00:71:a8:14:86:c6:5c:c7:ef:34:74:1d:06:9f: 08:21:3e:52:f3:42:ba:d5:50:6c:76:3d:a3:75:d0: a2:27:e3:1d:96:dc:ed:0a:14:a6:51:c6:04:f3:b5: d3:4d:ee:27:2c:3c:5a:ef:2b:ca:f4:53:fb:18:d5: e5:5a:25:d9:aa:24:90:61:fe:0e:4a:19:39:c5:c4: ed:08:37:d8:66:85:8c:88:70:1b:88:dc:6e:2d:ad: 40:98:0d:f1:10:eb:13:9e:2a:bd:63:7f:7e:a0:c9: 76:05:b4:b3:83:3d:bc:01:e8:9c:fb:1b:7e:5a:46: 47:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3C:AA:82:9B:18:16:B9:EA:E7:C5:DF:7D:FB:26:3B:E4:33:EE:0D X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:89:92:2a:92:67:e4:c5:04:1e:b5:5b:5c:b6:77:cf:41:24: d9:78:18:b3:54:4f:6c:9b:e6:02:df:8e:a7:c1:aa:78:f8:07: 2f:a4:c4:ec:df:6b:c7:03:1a:df:0e:5c:0f:7b:9a:30:1b:2c: 8d:ee:ac:f5:ca:ba:ed:df:17:d0:77:ac:3c:0c:86:09:35:cf: 68:ff:7c:43:63:96:40:f2:fd:75:c8:77:dc:02:5a:90:45:d0: 67:79:29:18:45:2f:04:fa:c1:63:3b:f4:3c:91:f4:6f:a0:55: 1e:4a:3f:6c:4f:ff:49:64:e6:83:bb:4b:94:45:11:d3:0c:bf: 66:eb:96:ea:54:0f:13:67:e3:ee:fe:f3:cb:0e:65:80:10:a6: 49:29:78:e9:67:02:c0:a7:28:e8:60:60:56:43:52:e8:26:2f: 42:b0:54:0b:77:a7:50:1b:35:1a:29:e0:97:87:29:f6:35:4f: 68:ee:4b:87:b1:c0:70:53:b0:ca:be:67:30:de:b7:4a:0d:2a: 11:11:2b:e6:71:17:9b:e5:2f:d5:ab:f4:bb:40:a8:dc:5e:66: 8c:ba:69:7a:96:df:75:80:74:14:65:a0:d5:97:5f:e5:27:64: 92:7c:41:db:0c:fe:28:9f:ae:bf:aa:76:c9:b4:96:8a:30:4e: 03:5e:da:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUxMjI5MDQwMjQ5WhcNMjYwMTA1MDQwMjQ5WjAYMRYwFAYD VQQDDA02OTUxZmQ2OS05MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQhL6/Y4HTk40s5zOw1rh+k66vfhZGBvhknZH0HUOxtpEV0m1y+wngUUfbMR KkBNYOJwqRtlK3JYNCES6KvZw+NxY15p/MO7qZ12xuAlIoqU3WwrYkhJq8C0umax K+covwvTeB7AnVds5HcHHOkloRI8coMypoJrL8I96ZsMujuLVagLF7bbAHGoFIbG XMfvNHQdBp8IIT5S80K61VBsdj2jddCiJ+MdltztChSmUcYE87XTTe4nLDxa7yvK 9FP7GNXlWiXZqiSQYf4OShk5xcTtCDfYZoWMiHAbiNxuLa1AmA3xEOsTniq9Y39+ oMl2BbSzgz28Aeic+xt+WkZHowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJo8qoKb GBa56ufF3337JjvkM+4NMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuiZIqkmfkxQQetVtctnfPQSTZeBizVE9sm+YC346nwap4+AcvpMTs 32vHAxrfDlwPe5owGyyN7qz1yrrt3xfQd6w8DIYJNc9o/3xDY5ZA8v11yHfcAlqQ RdBneSkYRS8E+sFjO/Q8kfRvoFUeSj9sT/9JZOaDu0uURRHTDL9m65bqVA8TZ+Pu /vPLDmWAEKZJKXjpZwLApyjoYGBWQ1LoJi9CsFQLd6dQGzUaKeCXhyn2NU9o7kuH scBwU7DKvmcw3rdKDSoRESvmcReb5S/Vq/S7QKjcXmaMuml6lt91gHQUZaDVl1/l J2SSfEHbDP4on66/qnbJtJaKME4DXtqD -----END CERTIFICATE-----Generated at Mon Dec 29 22:46:58 2025 by rpki-client