This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: VByxsZ7J08Yp94Esi5eu/Sw5cLSn1avQiu1lbSVEbSU= Subject key identifier: AD:47:95:4A:36:F0:3C:54:CB:F9:B2:67:68:3B:7F:42:1A:C1:09:DE Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07F4 Signing time: Thu 18 Dec 2025 20:34:36 +0000 Manifest this update: Thu 18 Dec 2025 20:34:35 +0000 Manifest next update: Thu 25 Dec 2025 20:34:35 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: mTppjTaBCoqmHdsKZIIelQB1Y6dh/RhxPFh+7PraSLc=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Dec 18 20:34:35 2025 GMT Not After : Dec 25 20:34:35 2025 GMT Subject: CN=6944655c-ba73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:88:f1:1c:1e:fd:b9:e8:d4:ff:a8:86:42:15: 2e:10:38:b3:e4:aa:f5:40:10:d3:4b:a2:94:34:09: 50:19:6d:bc:ec:92:c5:21:4e:74:7c:c8:6e:49:fb: 80:5e:6b:ff:0f:4b:df:25:81:b8:0f:a5:c8:2e:69: b3:c2:2a:cd:58:3b:13:00:ce:3c:4b:3a:2f:9a:2c: 59:91:fa:e0:9b:69:d6:ee:98:70:f2:1a:cf:71:47: 84:a0:e9:25:be:fa:33:6d:6c:26:bb:2f:01:ba:6b: ff:20:f2:16:de:ab:34:f6:e8:ac:8c:0f:0f:8e:43: b1:49:15:c1:75:54:0f:73:f8:73:1f:b2:7c:3c:34: 6e:92:f9:a8:28:46:1d:a7:71:2e:db:6b:17:09:41: 84:e4:3a:18:7e:d3:51:3e:0f:38:67:85:f2:1b:78: 88:ab:d3:28:76:56:23:2d:d2:1c:c5:c5:42:4c:63: 52:df:b4:54:1d:ed:9e:9f:53:91:b9:a6:0c:a4:be: e5:18:ee:1d:07:bb:4b:26:07:b6:76:e0:64:f1:0f: a3:ca:23:32:74:b2:fc:ef:d3:0f:1e:67:08:3c:b6: aa:b6:e1:81:b5:b9:49:06:3c:3e:26:13:94:9f:09: b5:a4:c9:40:17:70:20:1a:9c:57:a0:01:d8:e3:91: 44:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:47:95:4A:36:F0:3C:54:CB:F9:B2:67:68:3B:7F:42:1A:C1:09:DE X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:80:49:e5:9b:46:a7:a6:06:0c:07:83:26:6c:97:91:91:39: 21:92:5e:68:84:5a:68:e6:31:96:94:6b:9d:a9:f6:8e:7d:ac: e6:b2:a4:fb:11:11:49:06:83:9a:26:da:ed:42:4e:6e:10:a5: 3a:8d:d5:4f:5a:24:1d:29:83:94:de:dd:df:54:e6:9d:ef:0f: 96:d4:7b:34:c0:4a:be:53:c0:42:cd:62:89:cb:12:ea:f8:f5: 25:72:06:b3:fe:8b:61:c8:8a:c9:b6:f2:4a:08:5f:3c:0e:fd: 7d:ba:a5:49:9e:30:00:7f:6a:73:e1:98:88:37:1f:43:fd:e8: 28:81:63:ca:ab:2c:30:bf:b2:ed:d9:71:fa:20:75:65:17:a1: fc:5c:0c:65:ed:56:45:ec:34:39:0c:2b:26:75:cb:8e:4a:f4: 87:30:2c:ef:99:f5:7c:8a:e6:53:db:a5:61:1f:0b:5b:08:a0: 18:70:73:7e:ea:e5:1d:ab:7b:52:ee:90:d3:4f:7a:3d:e8:58: 52:df:91:8c:0c:93:5d:01:e8:50:8c:c6:b8:61:32:15:66:31: 60:b4:15:9d:93:3c:d1:79:57:2b:37:b4:e2:82:f1:16:64:0b: 6f:19:11:2f:46:08:3a:d4:4b:1f:85:7d:95:78:4c:94:6d:b7: 43:fc:e1:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUxMjE4MjAzNDM1WhcNMjUxMjI1MjAzNDM1WjAYMRYwFAYD VQQDDA02OTQ0NjU1Yy1iYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYjxHB79uejU/6iGQhUuEDiz5Kr1QBDTS6KUNAlQGW287JLFIU50fMhuSfuA Xmv/D0vfJYG4D6XILmmzwirNWDsTAM48SzovmixZkfrgm2nW7phw8hrPcUeEoOkl vvozbWwmuy8Bumv/IPIW3qs09uisjA8PjkOxSRXBdVQPc/hzH7J8PDRukvmoKEYd p3Eu22sXCUGE5DoYftNRPg84Z4XyG3iIq9ModlYjLdIcxcVCTGNS37RUHe2en1OR uaYMpL7lGO4dB7tLJge2duBk8Q+jyiMydLL879MPHmcIPLaqtuGBtblJBjw+JhOU nwm1pMlAF3AgGpxXoAHY45FEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1HlUo2 8DxUy/myZ2g7f0IawQneMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjgEnlm0anpgYMB4MmbJeRkTkhkl5ohFpo5jGWlGudqfaOfazmsqT7 ERFJBoOaJtrtQk5uEKU6jdVPWiQdKYOU3t3fVOad7w+W1Hs0wEq+U8BCzWKJyxLq +PUlcgaz/othyIrJtvJKCF88Dv19uqVJnjAAf2pz4ZiINx9D/egogWPKqywwv7Lt 2XH6IHVlF6H8XAxl7VZF7DQ5DCsmdcuOSvSHMCzvmfV8iuZT26VhHwtbCKAYcHN+ 6uUdq3tS7pDTT3o96FhS35GMDJNdAehQjMa4YTIVZjFgtBWdkzzReVcrN7TigvEW ZAtvGREvRgg61EsfhX2VeEyUbbdD/OEe -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:36 2025 by rpki-client