This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: QWLwStJAx+gW0EuQNDe+He9cr6/dYjniRsBH/xZNYWU= Subject key identifier: 09:3A:CD:15:91:F2:A9:EF:1D:4A:37:0C:F0:3F:49:C6:FE:3B:ED:E8 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A76 Signing time: Sat 20 Dec 2025 19:06:00 +0000 Manifest this update: Sat 20 Dec 2025 19:05:59 +0000 Manifest next update: Sat 27 Dec 2025 19:05:59 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: ppLKqRYEl0uUvIbOB+KiY3sLDQJuhox4ILAH30CjqdY=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: uSN3Gv1mPyytVdfiVFWC/qduqPudyKGyOZQwN01E8xE=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: zcOpYALMg85NqdJptG4eC86fQdzmEleTfcf+2WTyKGE=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: mV1bCNXfD7w4ttjCRjT99a/5iAZCupAPYyeXcu8Us3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2694 (0xa86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Dec 20 19:05:59 2025 GMT Not After : Dec 27 19:05:59 2025 GMT Subject: CN=6946f398-5bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c5:b5:66:0e:bd:bd:56:d2:dd:75:b7:e1:8d: fe:78:35:97:f2:14:42:15:96:63:c1:36:ac:20:6a: 81:89:e1:9d:78:fe:76:bb:a3:fc:36:11:2c:a4:08: 02:f8:5e:5b:7b:63:28:e4:33:eb:ed:1e:be:3e:db: 7b:a9:65:ab:69:65:7b:21:2d:d8:ed:9e:88:6d:0d: 14:80:69:26:13:3c:e9:d1:c4:c2:b8:69:08:7a:37: 62:d1:94:aa:a4:e5:53:3a:c1:62:37:b7:74:1e:72: 32:48:87:88:d6:10:18:2a:19:cc:ca:df:de:91:96: ca:b3:bc:ab:14:8a:19:57:ef:fa:6c:ae:02:c6:93: a8:74:92:79:85:79:72:74:ac:fc:cd:a1:8d:d4:dd: 4e:31:1b:0b:39:3d:e4:63:01:d6:c1:36:a3:ef:1d: a1:ce:0c:1d:e5:57:34:57:46:86:5d:a7:c6:a2:26: e3:50:74:f5:40:12:28:4a:f7:85:9a:d3:d0:a5:7d: b2:ef:c0:3d:3b:92:b7:47:bf:2a:23:1c:69:5a:e5: dd:dc:f8:6c:a7:14:74:73:a4:1c:35:54:61:ec:c0: a7:25:e1:2c:c7:e0:fa:9d:e7:91:86:59:87:bb:64: c0:2f:14:27:e0:58:47:0b:91:e5:b4:24:05:24:10: bc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3A:CD:15:91:F2:A9:EF:1D:4A:37:0C:F0:3F:49:C6:FE:3B:ED:E8 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:73:dd:af:77:7c:b9:83:38:4f:68:2c:af:e9:09:66:d8:fb: 7b:75:0d:ed:47:43:ad:c8:f2:e7:c0:2f:c0:8e:cf:1e:da:10: 26:d8:31:59:5f:c8:42:55:ef:17:06:85:de:e9:d3:33:cf:51: 26:6c:dc:e3:08:39:62:65:b3:d8:3b:96:d7:4c:38:83:0a:ca: bc:e2:ce:ea:f4:6e:e5:ca:d2:da:c1:43:1a:fa:09:62:5b:ab: 9b:30:a9:c5:b1:ad:e5:b0:a7:26:56:18:ac:29:9c:94:21:84: 5e:81:e4:fa:78:b3:d0:1d:2c:2d:53:e8:e8:db:c9:02:b6:a8: 1a:5e:b5:69:f4:58:c3:6d:30:e4:d1:2f:52:fa:cc:91:4d:98: 8b:3d:1f:e7:9b:3f:8e:9c:9f:3d:7d:54:a1:69:fe:98:b3:87: 40:e4:b7:ef:19:3e:8a:cb:38:ee:d7:27:86:45:7b:89:0d:0c: 98:6f:8e:36:f1:e4:f9:b3:eb:e1:b4:33:59:93:c3:55:6c:a2: a4:f7:f3:5e:46:97:ed:60:f4:bd:b0:52:9a:97:ab:7d:e5:92: 6a:9b:85:b7:9b:1a:f8:9e:34:ab:93:d0:ff:ae:e2:a1:70:e0: e6:a9:e6:86:5a:15:6b:7e:be:0d:90:ce:cb:24:fb:c2:5e:74: ce:2c:8c:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMjIwMTkwNTU5WhcNMjUxMjI3MTkwNTU5WjAYMRYwFAYD VQQDDA02OTQ2ZjM5OC01YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycW1Zg69vVbS3XW34Y3+eDWX8hRCFZZjwTasIGqBieGdeP52u6P8NhEspAgC +F5be2Mo5DPr7R6+Ptt7qWWraWV7IS3Y7Z6IbQ0UgGkmEzzp0cTCuGkIejdi0ZSq pOVTOsFiN7d0HnIySIeI1hAYKhnMyt/ekZbKs7yrFIoZV+/6bK4CxpOodJJ5hXly dKz8zaGN1N1OMRsLOT3kYwHWwTaj7x2hzgwd5Vc0V0aGXafGoibjUHT1QBIoSveF mtPQpX2y78A9O5K3R78qIxxpWuXd3PhspxR0c6QcNVRh7MCnJeEsx+D6neeRhlmH u2TALxQn4FhHC5HltCQFJBC8RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAk6zRWR 8qnvHUo3DPA/Scb+O+3oMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIc92vd3y5gzhPaCyv6Qlm2Pt7dQ3tR0OtyPLnwC/Ajs8e2hAm2DFZ X8hCVe8XBoXe6dMzz1EmbNzjCDliZbPYO5bXTDiDCsq84s7q9G7lytLawUMa+gli W6ubMKnFsa3lsKcmVhisKZyUIYRegeT6eLPQHSwtU+jo28kCtqgaXrVp9FjDbTDk 0S9S+syRTZiLPR/nmz+OnJ89fVShaf6Ys4dA5LfvGT6Kyzju1yeGRXuJDQyYb442 8eT5s+vhtDNZk8NVbKKk9/NeRpftYPS9sFKal6t95ZJqm4W3mxr4njSrk9D/ruKh cODmqeaGWhVrfr4NkM7LJPvCXnTOLIzv -----END CERTIFICATE-----Generated at Sun Dec 21 06:08:16 2025 by rpki-client