This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: q/f8j9Zb0MaftTqZzNxMMARVZoADHLmaz68OuFxgUok= Subject key identifier: 1B:4F:70:83:AD:F1:30:C3:60:7B:A0:85:2C:B7:98:65:E3:2F:2A:97 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 013B Signing time: Fri 19 Dec 2025 03:35:17 +0000 Manifest this update: Fri 19 Dec 2025 03:35:17 +0000 Manifest next update: Fri 26 Dec 2025 03:35:17 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: cC2aq9APfsNeQ9mCYq96pd7quUtf0yMKPzyLO2tZbFo=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Dec 19 03:35:17 2025 GMT Not After : Dec 26 03:35:17 2025 GMT Subject: CN=6944c7f5-0ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fb:fd:61:8e:68:70:b8:61:50:da:b6:ff:76: 39:63:f1:69:f8:e2:e6:94:67:9c:85:12:b6:b1:08: 7a:06:52:95:e0:25:5b:eb:33:9f:fc:22:85:1f:f9: f2:43:b8:39:fc:4f:95:78:17:19:b2:87:ef:7d:d8: 11:4d:1e:d5:ce:a4:5f:4d:0b:80:fa:05:f8:74:83: ff:d0:69:74:02:ed:90:8f:18:eb:bf:fd:e5:45:99: b7:4f:7a:d3:e7:91:c8:88:ce:5f:86:81:16:3c:b0: cf:7c:99:35:30:34:f7:32:13:4b:9b:04:f3:7f:84: 98:45:34:23:54:6e:23:bd:2b:55:b6:b8:3a:68:56: 31:2c:02:9f:89:8f:b4:bc:6e:5d:0d:aa:b4:45:36: 4e:09:a7:6f:ea:13:e5:d2:f9:f2:af:c9:b5:3a:02: 51:f9:3f:61:4a:e9:78:f9:df:84:dd:7d:9a:be:c0: ca:48:f4:9b:f1:b2:14:9d:bc:48:9e:d8:96:47:72: 19:2f:9f:dd:7f:2f:be:d1:15:03:99:8d:23:fc:65: 53:18:02:08:a1:5e:41:0d:13:02:cf:a2:f4:9f:4d: ff:51:2c:bc:e7:12:35:78:35:5b:ee:1a:59:41:a8: 5d:14:2f:5d:e2:53:57:36:a3:09:e9:1a:9c:04:3a: f7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4F:70:83:AD:F1:30:C3:60:7B:A0:85:2C:B7:98:65:E3:2F:2A:97 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:51:61:8e:23:52:4d:d0:a2:9a:40:50:68:5e:17:6f:6e:51: c5:d4:cd:5a:5c:69:c7:63:e9:1e:b5:c6:62:44:72:a2:ab:41: cf:c7:3f:1e:55:6a:d2:c3:29:6e:c9:cc:ae:63:d4:b9:6f:50: 81:48:3c:91:a1:1b:b1:36:a9:f3:fa:e3:4c:e9:d5:d1:58:fc: ea:46:49:84:f8:99:82:da:68:c0:72:e2:42:1f:9d:54:29:10: b6:b2:55:a2:64:a7:91:65:7a:ef:80:ec:a5:ee:1a:55:ad:3a: 3c:7b:fb:37:13:b4:f2:84:39:57:0a:cb:fd:3e:ee:81:72:42: 68:8a:79:c3:d4:f8:c5:e9:01:12:a6:98:50:3b:25:33:b7:8e: c3:eb:38:12:b0:ac:9d:74:33:84:cd:0f:53:1c:a3:34:e1:11: 6f:46:6a:7b:da:4f:d6:92:ad:47:2e:77:fb:1d:88:91:d1:a6: 7f:4b:74:c9:68:69:0a:9f:5d:43:b1:7d:3c:f5:0b:f8:63:61: c8:cf:1a:99:cb:ea:53:f7:b2:d7:5e:c5:3d:2c:96:2a:b4:47: 0d:25:c9:c5:6b:13:78:18:d0:63:f8:6a:ba:8f:a9:db:81:8b: 96:59:df:94:8a:22:ae:29:f0:77:6c:58:76:04:a6:d3:d9:0e: 7e:c0:0c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUxMjE5MDMzNTE3WhcNMjUxMjI2MDMzNTE3WjAYMRYwFAYD VQQDDA02OTQ0YzdmNS0wZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvv9YY5ocLhhUNq2/3Y5Y/Fp+OLmlGechRK2sQh6BlKV4CVb6zOf/CKFH/ny Q7g5/E+VeBcZsofvfdgRTR7VzqRfTQuA+gX4dIP/0Gl0Au2Qjxjrv/3lRZm3T3rT 55HIiM5fhoEWPLDPfJk1MDT3MhNLmwTzf4SYRTQjVG4jvStVtrg6aFYxLAKfiY+0 vG5dDaq0RTZOCadv6hPl0vnyr8m1OgJR+T9hSul4+d+E3X2avsDKSPSb8bIUnbxI ntiWR3IZL5/dfy++0RUDmY0j/GVTGAIIoV5BDRMCz6L0n03/USy85xI1eDVb7hpZ QahdFC9d4lNXNqMJ6RqcBDr3IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtPcIOt 8TDDYHughSy3mGXjLyqXMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASUWGOI1JN0KKaQFBoXhdvblHF1M1aXGnHY+ketcZiRHKiq0HPxz8e VWrSwyluycyuY9S5b1CBSDyRoRuxNqnz+uNM6dXRWPzqRkmE+JmC2mjAcuJCH51U KRC2slWiZKeRZXrvgOyl7hpVrTo8e/s3E7TyhDlXCsv9Pu6BckJoinnD1PjF6QES pphQOyUzt47D6zgSsKyddDOEzQ9THKM04RFvRmp72k/Wkq1HLnf7HYiR0aZ/S3TJ aGkKn11DsX089Qv4Y2HIzxqZy+pT97LXXsU9LJYqtEcNJcnFaxN4GNBj+Gq6j6nb gYuWWd+UiiKuKfB3bFh2BKbT2Q5+wAwe -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:04 2025 by rpki-client