This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: 69E2m8auq3D5hym0RASY3bJnoVyYPxdAR1ZBAiHA9Dg= Subject key identifier: 14:AE:D4:BE:C4:A1:5B:9C:D4:77:31:33:EB:3A:B9:11:6D:BB:31:79 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: E6 Signing time: Fri 19 Dec 2025 04:32:18 +0000 Manifest this update: Fri 19 Dec 2025 04:32:18 +0000 Manifest next update: Fri 26 Dec 2025 04:32:18 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: J3tJi5isIJnwBDZkY8dh/bP+PSqYMM6wm6JqOlyJtwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Dec 19 04:32:18 2025 GMT Not After : Dec 26 04:32:18 2025 GMT Subject: CN=6944d552-3f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:a2:c8:e7:ce:b8:31:89:c7:9b:c9:58:ab: ba:b3:4c:ac:fa:c7:14:98:c9:2f:4d:d0:19:82:38: 1b:d1:df:9e:57:8e:5f:3f:f9:cc:1e:56:0a:55:0e: b1:08:62:de:02:b9:e4:3f:ef:7c:c0:d0:a7:68:2a: d8:6d:c0:4e:33:ae:df:18:5d:55:bd:54:7a:71:12: 59:93:5d:07:8a:47:96:4e:e1:9c:b9:25:76:cd:3a: ae:5a:bb:e3:e0:e0:e7:f2:4c:ab:07:0d:88:1e:b1: f7:ff:c5:8e:d5:1c:0c:54:ef:bb:0f:b8:0a:ce:27: de:ca:0a:b9:f6:27:73:3d:a2:69:e3:69:92:4c:ef: b3:5a:0f:e8:3e:fa:16:d0:7c:36:7b:e5:59:1c:3a: c0:d6:7c:3e:65:47:9c:71:1a:58:c3:68:e8:74:eb: f8:e2:85:5d:f1:46:84:8a:40:92:56:4a:0a:02:8b: e5:f4:7a:cb:b1:84:0e:71:89:ba:bf:8d:fa:13:ab: 21:a7:5b:d7:2b:f4:23:a3:e9:26:ec:b7:e3:1b:8a: d2:35:01:c3:b5:22:15:fa:30:f6:0d:fb:5c:e2:d1: f4:c6:5b:22:78:19:7f:8c:a1:ea:ef:22:89:78:76: 10:d2:10:f6:f4:c3:b8:b8:ac:a3:5b:03:39:71:3e: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AE:D4:BE:C4:A1:5B:9C:D4:77:31:33:EB:3A:B9:11:6D:BB:31:79 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:91:7b:5d:b2:1e:f5:35:57:0c:15:13:8b:f7:26:13:bd:0e: 2f:5f:2c:cb:96:11:57:67:a3:d9:9d:47:d9:3c:cb:f7:9b:9f: 37:27:56:a1:67:aa:47:b0:87:65:b8:1e:0c:d1:d9:82:af:e4: 0b:01:f3:fc:57:f7:12:12:f7:cf:10:11:83:3b:5e:70:c0:9e: 34:aa:bc:dc:8f:91:ef:f2:d9:ba:69:ec:69:04:9c:2a:f6:8c: 56:0f:2e:e2:95:94:96:07:33:3b:0e:a6:0a:cd:80:ea:f6:54: 67:09:1e:d5:d9:4a:41:be:4a:d1:5c:17:3f:82:75:dd:75:50: e9:b7:f0:d8:63:1c:96:f7:0d:61:82:3d:f7:00:9f:6a:0d:5d: ac:fd:98:d8:d2:c3:98:dd:dc:74:fe:0b:78:56:a8:e9:2a:00: a5:d1:91:bb:c3:65:42:d9:f2:97:c9:9d:d0:36:0b:e6:82:57: 01:5f:6a:b4:15:11:5e:da:d8:50:89:08:77:3d:85:36:6b:60: 86:fa:1f:0b:8d:6c:d0:b3:d5:21:4f:22:d7:4e:63:01:46:55: 93:5a:1d:af:66:18:c8:f0:97:af:59:9f:71:8b:27:d6:02:e2: 1d:44:4d:99:c3:ce:71:22:8e:21:40:45:c4:24:63:50:55:7c: 2e:30:d9:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUxMjE5MDQzMjE4WhcNMjUxMjI2MDQzMjE4WjAYMRYwFAYD VQQDDA02OTQ0ZDU1Mi0zZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuCiyOfOuDGJx5vJWKu6s0ys+scUmMkvTdAZgjgb0d+eV45fP/nMHlYKVQ6x CGLeArnkP+98wNCnaCrYbcBOM67fGF1VvVR6cRJZk10HikeWTuGcuSV2zTquWrvj 4ODn8kyrBw2IHrH3/8WO1RwMVO+7D7gKzifeygq59idzPaJp42mSTO+zWg/oPvoW 0Hw2e+VZHDrA1nw+ZUeccRpYw2jodOv44oVd8UaEikCSVkoKAovl9HrLsYQOcYm6 v436E6shp1vXK/Qjo+km7LfjG4rSNQHDtSIV+jD2Dftc4tH0xlsieBl/jKHq7yKJ eHYQ0hD29MO4uKyjWwM5cT5rrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSu1L7E oVuc1HcxM+s6uRFtuzF5MB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrkXtdsh71NVcMFROL9yYTvQ4vXyzLlhFXZ6PZnUfZPMv3m583J1ah Z6pHsIdluB4M0dmCr+QLAfP8V/cSEvfPEBGDO15wwJ40qrzcj5Hv8tm6aexpBJwq 9oxWDy7ilZSWBzM7DqYKzYDq9lRnCR7V2UpBvkrRXBc/gnXddVDpt/DYYxyW9w1h gj33AJ9qDV2s/ZjY0sOY3dx0/gt4VqjpKgCl0ZG7w2VC2fKXyZ3QNgvmglcBX2q0 FRFe2thQiQh3PYU2a2CG+h8LjWzQs9UhTyLXTmMBRlWTWh2vZhjI8JevWZ9xiyfW AuIdRE2Zw85xIo4hQEXEJGNQVXwuMNlp -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:39 2025 by rpki-client