This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: pPRiL756uGyShKND6Gxg2MrSE9Otk2RJuF09kmsXfng= Subject key identifier: E5:68:2E:93:B9:E2:16:B6:84:00:24:7C:7A:C4:76:7B:A2:28:9B:A5 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A7C Signing time: Wed 31 Dec 2025 19:17:30 +0000 Manifest this update: Wed 31 Dec 2025 19:17:29 +0000 Manifest next update: Wed 07 Jan 2026 19:17:29 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: tBYt4qE4lo3SLUzKTZji3qQ69Gti6TYOUrnZuAYOLzw=) 2: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: zcOpYALMg85NqdJptG4eC86fQdzmEleTfcf+2WTyKGE=) 3: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: mV1bCNXfD7w4ttjCRjT99a/5iAZCupAPYyeXcu8Us3k=) 4: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: uSN3Gv1mPyytVdfiVFWC/qduqPudyKGyOZQwN01E8xE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 19:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Dec 31 19:17:29 2025 GMT Not After : Jan 7 19:17:29 2026 GMT Subject: CN=695576ca-6135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fe:88:01:f5:b8:1d:43:e9:a9:aa:50:a6:fe: 5a:bc:02:9e:dc:88:ed:e2:74:f2:91:d9:08:6e:08: ed:a2:36:5f:c5:bd:34:f7:3a:be:c2:4d:62:4d:a2: b4:b5:3d:14:dc:a3:47:1b:2a:5a:f9:b3:1e:3e:29: 98:d9:32:c8:82:18:3d:2c:16:34:a4:b0:af:77:c5: 64:98:d1:48:5b:02:a9:cf:88:57:0d:06:a3:1d:8c: 19:6c:a5:56:f2:2b:2c:07:f4:5d:af:d0:8a:9f:e1: fa:00:b4:e1:de:95:0e:2e:97:2c:01:26:14:db:54: 47:da:11:b2:10:61:28:ac:79:67:64:ec:3a:32:03: 33:27:71:7c:e1:b3:de:43:e8:0d:c0:9d:90:18:4f: e2:fd:e1:3c:c4:a3:df:9e:ce:de:e0:75:00:2a:dc: 8d:36:3c:0f:1e:31:12:11:6a:7c:6e:e8:c8:8c:b7: b1:54:62:a8:95:2a:e0:e3:10:5a:f4:ec:9a:ea:f0: ff:8a:3c:69:fd:d2:f7:7a:85:ec:97:f6:8c:53:b0: 09:c2:ab:3e:a2:66:b3:cc:d3:67:d1:c1:25:c3:6a: 2b:80:dc:70:59:46:f1:a2:c5:1f:54:c0:17:8f:e1: ac:95:2f:09:b3:b5:ff:7a:ae:ac:b1:da:f9:ae:01: d5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:68:2E:93:B9:E2:16:B6:84:00:24:7C:7A:C4:76:7B:A2:28:9B:A5 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:65:2c:03:85:f9:32:08:56:04:c5:06:77:c2:ba:e6:e8:81: 5e:28:fc:5f:f4:00:87:0d:71:d4:f0:b6:db:73:20:dd:1a:25: f0:36:96:dd:03:df:2e:2c:43:bc:b8:b8:1d:cb:58:eb:ed:1e: 57:ca:f9:53:0f:83:41:58:bd:b7:08:6d:c8:2a:ee:d0:19:6c: 92:9d:ee:ba:ba:54:5d:dc:9f:d1:0d:e8:f0:5a:ef:d2:9d:3d: 39:71:e4:c8:4f:48:0c:fa:d8:9e:44:c6:7a:ec:33:8e:f5:e2: 70:46:b4:c6:b2:a5:5b:81:6b:75:8b:c8:32:5d:c2:92:14:b7: 11:4d:8b:a7:11:f5:4d:fa:54:2d:96:8c:0b:3e:a8:bb:4e:c0: f8:c6:28:aa:62:ff:6f:ad:76:0b:f5:b8:72:6b:d1:d9:4e:f6: f3:35:ed:42:bb:eb:90:a7:4d:98:d6:82:fd:bf:70:14:55:cb: 8f:b3:d3:97:16:a8:07:80:61:e4:5e:8a:59:b6:cc:7a:21:a0: a6:a6:5a:cd:3d:e1:21:7f:0a:e0:8f:7e:4d:ad:3e:6a:16:da: 46:2a:ff:56:a3:53:ed:34:29:58:0e:c3:27:73:c4:48:34:63: b9:e2:f6:28:70:ab:40:11:94:1c:42:f0:94:20:2c:74:39:3e: e5:3f:00:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMjMxMTkxNzI5WhcNMjYwMTA3MTkxNzI5WjAYMRYwFAYD VQQDDA02OTU1NzZjYS02MTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwP6IAfW4HUPpqapQpv5avAKe3Ijt4nTykdkIbgjtojZfxb009zq+wk1iTaK0 tT0U3KNHGypa+bMePimY2TLIghg9LBY0pLCvd8VkmNFIWwKpz4hXDQajHYwZbKVW 8issB/Rdr9CKn+H6ALTh3pUOLpcsASYU21RH2hGyEGEorHlnZOw6MgMzJ3F84bPe Q+gNwJ2QGE/i/eE8xKPfns7e4HUAKtyNNjwPHjESEWp8bujIjLexVGKolSrg4xBa 9Oya6vD/ijxp/dL3eoXsl/aMU7AJwqs+omazzNNn0cElw2orgNxwWUbxosUfVMAX j+GslS8Js7X/eq6ssdr5rgHVFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVoLpO5 4ha2hAAkfHrEdnuiKJulMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHZSwDhfkyCFYExQZ3wrrm6IFeKPxf9ACHDXHU8LbbcyDdGiXwNpbd A98uLEO8uLgdy1jr7R5XyvlTD4NBWL23CG3IKu7QGWySne66ulRd3J/RDejwWu/S nT05ceTIT0gM+tieRMZ67DOO9eJwRrTGsqVbgWt1i8gyXcKSFLcRTYunEfVN+lQt lowLPqi7TsD4xiiqYv9vrXYL9bhya9HZTvbzNe1Cu+uQp02Y1oL9v3AUVcuPs9OX FqgHgGHkXopZtsx6IaCmplrNPeEhfwrgj35NrT5qFtpGKv9Wo1PtNClYDsMnc8RI NGO54vYocKtAEZQcQvCUICx0OT7lPwC9 -----END CERTIFICATE-----Generated at Thu Jan 1 11:02:51 2026 by rpki-client