This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft File: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft (raw, json) Hash identifier: TRN2SfG6UlxnbydJgGunB/eVQ1X54yqoHs92uXJSy2M= Subject key identifier: 6E:2F:9E:1D:3F:69:7C:80:18:20:FE:F5:E8:DD:99:99:87:DF:4A:B9 Authority key identifier: 5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C Certificate issuer: /CN=A91D1E29/serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Certificate serial: 0937 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft Manifest number: 0930 Signing time: Thu 18 Dec 2025 19:46:16 +0000 Manifest this update: Thu 18 Dec 2025 19:46:15 +0000 Manifest next update: Thu 25 Dec 2025 19:46:15 +0000 Files and hashes: 1: W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl (hash: BEALDXmwOcz+9v1J8BH7jY+h9fpZQ4aF56S2YTzRRWU=) 2: 108B7DAAB2A711EAABBE8663C4F9AE02.roa (hash: bY9iBRTWTxnL3x5BGOrTrK8i1l/rZN5Ru7pBpcmVZwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2359 (0x937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E29, serialNumber=5BF6243990A9464C85B7823DB426E2AB96720A3C Validity Not Before: Dec 18 19:46:15 2025 GMT Not After : Dec 25 19:46:15 2025 GMT Subject: CN=69445a08-e088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e4:57:06:73:33:e7:c1:55:42:3e:e0:f1:c3: 81:91:dc:4c:09:e4:ed:ee:9d:0e:ef:04:8b:cf:45: 7e:99:11:d6:fb:14:05:ca:64:a7:6c:d3:6a:eb:9f: ca:28:a4:a7:7b:ed:57:7e:e5:2d:fd:91:23:63:29: de:bb:c1:45:b8:1f:f1:25:d4:e3:2d:4d:64:74:2c: 91:99:a9:94:a4:3e:75:a8:87:d8:85:52:49:26:cc: 3b:f9:bb:0d:d5:0f:86:0e:52:b8:95:29:9d:d6:42: ae:83:eb:d3:bf:7d:e0:ac:7f:56:e6:c0:ce:4b:c0: a4:ac:43:2d:8d:89:ba:fc:35:99:da:11:4e:e4:4c: 94:59:a0:e1:fb:7d:f0:50:78:7f:f2:3d:e9:87:3b: 21:68:f0:5b:fc:63:8a:9d:c5:2d:99:31:66:e3:e3: 7d:88:21:d1:30:f0:cc:8b:7f:4a:a7:df:95:d9:2f: 50:f5:11:d1:c7:f5:3f:9d:0a:e5:90:10:27:fe:07: b6:f3:15:24:f4:0b:a4:ff:cb:1d:47:29:c4:98:68: 1c:c9:6d:b7:f3:ff:b4:b7:89:01:dd:75:49:9b:79: 20:58:46:fa:ce:ff:c0:a8:27:d2:c5:1b:38:11:dc: 00:63:9a:43:4c:a1:a4:86:4f:7d:87:ff:d2:e9:7d: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2F:9E:1D:3F:69:7C:80:18:20:FE:F5:E8:DD:99:99:87:DF:4A:B9 X509v3 Authority Key Identifier: keyid:5B:F6:24:39:90:A9:46:4C:85:B7:82:3D:B4:26:E2:AB:96:72:0A:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E29/DD13F8F0B29F11EA9380C04BC4F9AE02/W_YkOZCpRkyFt4I9tCbiq5ZyCjw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:79:0b:23:24:7a:91:f9:12:73:ee:8a:a9:f8:69:ff:51:c1: 53:cf:8c:7c:97:2a:17:33:87:00:63:b3:cc:72:ab:9e:5e:a5: d8:af:14:96:f1:80:d2:bc:87:8d:9c:e7:52:ac:21:41:16:f6: 45:f7:8c:01:a5:cb:91:f5:bd:e0:3e:94:e8:62:ee:c4:70:94: a3:b2:02:69:3f:d1:c1:19:af:07:8c:33:23:97:f6:8d:9c:bc: 02:3f:41:83:cc:74:d8:e7:68:65:c6:6b:07:9d:2d:83:2a:e3: 63:fb:d4:cc:2c:c2:06:f5:7d:b5:46:7d:a0:1f:82:97:10:aa: df:9a:6e:61:34:be:dc:71:a8:b1:59:4f:a8:53:9b:44:5d:af: 03:9c:d4:36:9a:a4:c3:0a:ce:9f:5e:7d:c3:45:be:65:cc:c2: 09:5b:7c:fc:6c:25:7a:9a:90:e6:44:f3:c7:dd:71:6b:8c:6e: 60:0f:3a:f7:9a:b3:11:3d:98:56:e3:79:70:21:c2:ab:7d:e6: ac:b2:24:e0:e6:ef:4b:58:ac:43:b6:53:4d:04:62:07:5a:7d: 8c:f0:33:ab:3f:c7:64:58:b3:78:71:3c:ee:2f:e7:0b:43:8f: c9:a8:5b:f0:e2:a0:e4:01:fd:ab:93:09:26:2f:d6:ce:8b:62: 97:7a:1f:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMjkxMTAvBgNVBAUTKDVCRjYyNDM5OTBBOTQ2NEM4NUI3ODIzREI0MjZFMkFC OTY3MjBBM0MwHhcNMjUxMjE4MTk0NjE1WhcNMjUxMjI1MTk0NjE1WjAYMRYwFAYD VQQDDA02OTQ0NWEwOC1lMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7eRXBnMz58FVQj7g8cOBkdxMCeTt7p0O7wSLz0V+mRHW+xQFymSnbNNq65/K KKSne+1XfuUt/ZEjYyneu8FFuB/xJdTjLU1kdCyRmamUpD51qIfYhVJJJsw7+bsN 1Q+GDlK4lSmd1kKug+vTv33grH9W5sDOS8CkrEMtjYm6/DWZ2hFO5EyUWaDh+33w UHh/8j3phzshaPBb/GOKncUtmTFm4+N9iCHRMPDMi39Kp9+V2S9Q9RHRx/U/nQrl kBAn/ge28xUk9Auk/8sdRynEmGgcyW238/+0t4kB3XVJm3kgWEb6zv/AqCfSxRs4 EdwAY5pDTKGkhk99h//S6X1e6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4vnh0/ aXyAGCD+9ejdmZmH30q5MB8GA1UdIwQYMBaAFFv2JDmQqUZMhbeCPbQm4quWcgo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUyOS9ERDEzRjhGMEIy OUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJreUZ0NEk5dENiaXE1WnlD ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dfWWtPWkNwUmt5RnQ0STl0Q2JpcTVaeUNqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUUyOS9ERDEzRjhGMEIyOUYxMUVBOTM4MEMwNEJDNEY5QUUwMi9XX1lrT1pDcFJr eUZ0NEk5dENiaXE1WnlDancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdeQsjJHqR+RJz7oqp+Gn/UcFTz4x8lyoXM4cAY7PMcqueXqXYrxSW 8YDSvIeNnOdSrCFBFvZF94wBpcuR9b3gPpToYu7EcJSjsgJpP9HBGa8HjDMjl/aN nLwCP0GDzHTY52hlxmsHnS2DKuNj+9TMLMIG9X21Rn2gH4KXEKrfmm5hNL7ccaix WU+oU5tEXa8DnNQ2mqTDCs6fXn3DRb5lzMIJW3z8bCV6mpDmRPPH3XFrjG5gDzr3 mrMRPZhW43lwIcKrfeassiTg5u9LWKxDtlNNBGIHWn2M8DOrP8dkWLN4cTzuL+cL Q4/JqFvw4qDkAf2rkwkmL9bOi2KXeh+C -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:35 2025 by rpki-client