This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: 0G/ZNTrsYE7mVdIzDgKK6ewFMeL+Cdc3jdi0pm4s1zs= Subject key identifier: 0F:80:B9:67:B5:5E:B6:2C:49:4D:3A:13:2A:BD:B3:C8:7F:E4:7E:59 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 11F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 11E6 Signing time: Sat 20 Dec 2025 16:54:28 +0000 Manifest this update: Sat 20 Dec 2025 16:54:27 +0000 Manifest next update: Sat 27 Dec 2025 16:54:27 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: 1tJxsT9qzn1bi9DinHmGOtl79wt9rsHlJdlL+87HMyc=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: 5aUeJ2nUgZKlO+WBC4IJNP8ylQ0g53K6edye7fUN2n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4592 (0x11f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Dec 20 16:54:27 2025 GMT Not After : Dec 27 16:54:27 2025 GMT Subject: CN=6946d4c4-16a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:39:4e:3b:07:5e:7b:d8:35:c3:e6:46:49:d5: cf:c2:98:db:e4:2d:64:ec:24:a0:9e:fe:9f:5c:35: ff:4b:37:c1:3e:0e:d2:03:4b:e8:64:ef:31:20:bb: 5d:58:f6:2a:21:9e:da:ed:c1:14:7b:3a:91:4c:b8: a2:17:5e:d9:19:8b:3c:a0:82:83:96:83:b5:69:3a: 9c:7d:66:35:2c:b5:21:3b:ba:cc:0d:3c:e5:ab:02: 2f:a2:eb:41:0a:0b:d5:ec:50:7b:0b:a8:30:27:d5: 63:76:31:9c:18:67:22:8a:9c:e7:5a:52:20:6f:75: 16:ed:71:ae:d3:4c:57:2f:6f:50:79:9e:ad:1d:4d: 2a:fa:f0:00:aa:d5:44:bf:3d:eb:a0:7c:5d:b4:fb: 1d:8f:91:12:36:7b:e6:0e:9a:2f:ea:66:c1:30:45: 98:7c:00:a6:d0:3e:d8:de:22:53:c0:42:bd:05:b3: 0a:4a:26:1a:04:99:56:5e:20:d7:af:4a:d8:f2:fb: fe:da:56:a9:f0:61:fe:dd:74:15:26:e3:21:1b:f6: 88:01:1f:65:70:8b:08:10:c4:36:14:d2:07:58:af: 3c:45:24:a8:48:7a:71:21:06:73:40:71:f8:42:ef: 65:6c:a2:36:0b:79:77:f6:2d:7e:ab:eb:1b:e9:b3: b9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:80:B9:67:B5:5E:B6:2C:49:4D:3A:13:2A:BD:B3:C8:7F:E4:7E:59 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a5:e8:ce:90:d7:c7:7a:88:22:65:89:0f:24:60:c2:cd:92: 20:cf:ff:48:4c:d4:d5:88:99:de:4f:f1:e0:64:6b:25:37:c9: f8:b8:37:09:5e:ac:aa:17:3e:ed:e2:40:a7:97:01:39:b4:03: 02:2c:d1:16:b4:a5:b6:e4:15:0e:e0:32:c0:50:5d:22:c8:64: 82:08:70:3e:3f:21:f6:aa:2b:9f:08:1f:a6:73:8c:3b:ac:8e: 1c:bf:38:95:9a:05:28:a2:0a:d8:01:87:0b:41:c7:3b:7d:60: 44:5e:cb:51:31:f9:9e:81:73:9f:a7:1c:5c:a6:85:7f:4b:c4: 11:52:8e:31:78:8e:57:2f:04:ab:b8:c2:8d:60:c7:e8:cc:14: 58:91:7d:e9:3d:d1:97:79:d3:24:05:cf:07:03:f6:78:bc:a6: ab:b0:e4:09:19:6f:dc:ff:fe:80:1d:3f:8b:45:36:38:38:3c: 6c:53:1c:91:89:86:1e:a9:91:5c:c1:60:01:73:5b:7c:ba:4e: ad:14:46:27:f3:3c:a0:8b:3b:bd:cd:3c:74:b3:ee:fe:69:fc: ff:68:5f:bc:fa:15:38:e1:6f:8d:b8:e2:0e:49:20:2f:7b:49: 9d:8d:f1:6b:c0:41:85:58:17:9f:be:fd:a7:96:c7:a1:c7:5a: 52:88:ab:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUxMjIwMTY1NDI3WhcNMjUxMjI3MTY1NDI3WjAYMRYwFAYD VQQDDA02OTQ2ZDRjNC0xNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjlOOwdee9g1w+ZGSdXPwpjb5C1k7CSgnv6fXDX/SzfBPg7SA0voZO8xILtd WPYqIZ7a7cEUezqRTLiiF17ZGYs8oIKDloO1aTqcfWY1LLUhO7rMDTzlqwIvoutB CgvV7FB7C6gwJ9VjdjGcGGciipznWlIgb3UW7XGu00xXL29QeZ6tHU0q+vAAqtVE vz3roHxdtPsdj5ESNnvmDpov6mbBMEWYfACm0D7Y3iJTwEK9BbMKSiYaBJlWXiDX r0rY8vv+2lap8GH+3XQVJuMhG/aIAR9lcIsIEMQ2FNIHWK88RSSoSHpxIQZzQHH4 Qu9lbKI2C3l39i1+q+sb6bO5jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+AuWe1 XrYsSU06Eyq9s8h/5H5ZMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYpejOkNfHeogiZYkPJGDCzZIgz/9ITNTViJneT/HgZGslN8n4uDcJ XqyqFz7t4kCnlwE5tAMCLNEWtKW25BUO4DLAUF0iyGSCCHA+PyH2qiufCB+mc4w7 rI4cvziVmgUoogrYAYcLQcc7fWBEXstRMfmegXOfpxxcpoV/S8QRUo4xeI5XLwSr uMKNYMfozBRYkX3pPdGXedMkBc8HA/Z4vKarsOQJGW/c//6AHT+LRTY4ODxsUxyR iYYeqZFcwWABc1t8uk6tFEYn8zygizu9zTx0s+7+afz/aF+8+hU44W+NuOIOSSAv e0mdjfFrwEGFWBefvv2nlsehx1pSiKvY -----END CERTIFICATE-----Generated at Sat Dec 20 21:17:55 2025 by rpki-client