This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft File: y2yF51LVad_PHekEycvnHkg-9fI.mft (raw, json) Hash identifier: 9d1tVS0gXNDBwCP2KLKdrEPIYqxxscP2WFs6P0B0ZOQ= Subject key identifier: 3C:53:96:8E:E4:82:8B:28:7D:BE:6D:F8:6F:B8:3B:54:92:F5:89:61 Authority key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 Certificate issuer: /CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft Manifest number: 053A Signing time: Wed 24 Dec 2025 22:42:30 +0000 Manifest this update: Wed 24 Dec 2025 22:42:30 +0000 Manifest next update: Wed 31 Dec 2025 22:42:30 +0000 Files and hashes: 1: y2yF51LVad_PHekEycvnHkg-9fI.crl (hash: liQoQndN8ipbu6YpTyq58UQiAi1MYtc40OJym2V1ERo=) 2: 004A745EDBB011F0904A453A4D641951.roa (hash: AdhWoboxvB3fE2Iwxcb6ADucdBfCgNo/P3RvBt247qE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2 Validity Not Before: Dec 24 22:42:30 2025 GMT Not After : Dec 31 22:42:30 2025 GMT Subject: CN=694c6c56-61bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:78:dd:b9:22:bf:bd:3a:c6:9d:c1:7a:7a:87: 76:01:5e:31:a2:00:9a:07:63:61:90:af:8c:2f:72: 8f:e7:1a:54:c5:52:97:ce:f1:6a:a4:a5:13:86:9f: 57:eb:25:c3:84:6a:84:37:d2:4f:18:9c:a8:af:c6: 8e:9c:dc:24:16:a1:32:29:96:62:85:7c:d3:86:1f: 17:bc:f5:cc:e7:21:f5:db:71:b3:fc:38:3c:90:8d: d2:63:87:cc:e1:8b:79:bc:1e:3b:60:f6:3d:95:e1: 68:d3:4b:2b:e3:93:7f:d3:b7:78:9b:1c:a9:2f:dc: 88:12:88:a2:df:b0:cb:f4:bc:0c:04:c7:08:87:1e: 16:ad:0d:ee:e2:63:8c:1d:d5:3e:c7:af:b6:52:40: bc:e4:e9:76:04:0d:4f:09:9c:5c:7a:80:67:a7:8a: 03:ef:0a:9c:5e:2d:71:40:2d:b9:12:bc:a5:af:70: 3f:9f:12:7e:47:3e:6b:3c:6b:45:32:c6:9c:3f:0b: 57:bd:ff:2d:fc:f8:a6:6e:69:2c:2f:48:63:bd:00: 41:2c:2b:23:c6:ed:2c:f2:ab:a2:75:d2:32:98:14: 5b:a7:93:10:37:f0:3c:9a:73:9c:66:ff:d2:57:e8: 0c:e9:51:37:ee:55:8f:f6:f3:7f:7e:dd:a5:6b:cc: 4d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:53:96:8E:E4:82:8B:28:7D:BE:6D:F8:6F:B8:3B:54:92:F5:89:61 X509v3 Authority Key Identifier: keyid:CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:9a:fe:4f:a3:e4:e2:5b:a4:e9:10:a7:04:b6:9a:e4:86:fb: d7:15:22:0f:85:99:c9:42:8f:33:b6:1c:8d:7f:eb:ae:d7:d9: 9c:f7:06:a6:23:2f:92:2e:35:18:2b:c9:c7:78:19:a5:ff:36: 26:5a:28:2e:b0:72:35:f1:c6:69:c9:ee:d5:fd:e4:00:c0:e7: 40:5f:dd:36:f7:c6:47:b2:49:16:04:94:bd:7c:e8:c7:97:e9: 4c:1a:b0:03:17:9a:d4:93:4b:06:63:67:b4:ec:38:70:a4:d3: 8a:1d:32:2a:92:08:27:50:a0:0b:27:44:63:15:1e:a5:5e:8b: e8:28:94:11:87:13:9e:32:90:98:9f:b5:0b:cc:08:39:81:56: d6:e3:0f:19:b3:70:ef:bd:07:ad:2f:f5:3f:f4:38:a1:16:9f: 67:f8:d8:9c:bd:00:d2:07:9c:87:10:ee:5b:57:fd:fc:28:86: b2:ff:b0:23:20:86:20:27:91:ca:01:ca:ee:c5:c4:26:0f:30: e8:1e:4e:09:92:fc:07:4d:95:65:f7:ed:86:a9:39:7b:3b:50: 8f:42:37:f0:c7:06:ab:de:57:52:3c:4f:84:7c:33:7d:41:90: db:84:63:84:6c:02:de:18:6e:80:7b:db:87:a5:ac:99:11:a8: fa:0d:d0:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKENCNkM4NUU3NTJENTY5REZDRjFERTkwNEM5Q0JFNzFF NDgzRUY1RjIwHhcNMjUxMjI0MjI0MjMwWhcNMjUxMjMxMjI0MjMwWjAYMRYwFAYD VQQDDA02OTRjNmM1Ni02MWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXjduSK/vTrGncF6eod2AV4xogCaB2NhkK+ML3KP5xpUxVKXzvFqpKUThp9X 6yXDhGqEN9JPGJyor8aOnNwkFqEyKZZihXzThh8XvPXM5yH123Gz/Dg8kI3SY4fM 4Yt5vB47YPY9leFo00sr45N/07d4mxypL9yIEoii37DL9LwMBMcIhx4WrQ3u4mOM HdU+x6+2UkC85Ol2BA1PCZxceoBnp4oD7wqcXi1xQC25Erylr3A/nxJ+Rz5rPGtF MsacPwtXvf8t/PimbmksL0hjvQBBLCsjxu0s8quiddIymBRbp5MQN/A8mnOcZv/S V+gM6VE37lWP9vN/ft2la8xNEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxTlo7k gosofb5t+G+4O1SS9YlhMB8GA1UdIwQYMBaAFMtshedS1Wnfzx3pBMnL5x5IPvXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS9CQjUzMjNFODI1 QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFkX1BIZWtFeWN2bkhrZy05 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyeUY1MUxWYWRfUEhla0V5Y3ZuSGtnLTlmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS9CQjUzMjNFODI1QzIxMUVDQjQ5OUQxNThDNEY5QUUwMi95MnlGNTFMVmFk X1BIZWtFeWN2bkhrZy05ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBomv5Po+TiW6TpEKcEtprkhvvXFSIPhZnJQo8zthyNf+uu19mc9wam Iy+SLjUYK8nHeBml/zYmWigusHI18cZpye7V/eQAwOdAX90298ZHskkWBJS9fOjH l+lMGrADF5rUk0sGY2e07DhwpNOKHTIqkggnUKALJ0RjFR6lXovoKJQRhxOeMpCY n7ULzAg5gVbW4w8Zs3DvvQetL/U/9DihFp9n+NicvQDSB5yHEO5bV/38KIay/7Aj IIYgJ5HKAcruxcQmDzDoHk4JkvwHTZVl9+2GqTl7O1CPQjfwxwar3ldSPE+EfDN9 QZDbhGOEbALeGG6Ae9uHpayZEaj6DdAB -----END CERTIFICATE-----Generated at Thu Dec 25 19:29:24 2025 by rpki-client