This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: 8OO4jBOu/JNW+iP83vMhW4RC5RlWCYG43FXTONxchYE= Subject key identifier: 19:8B:1A:79:0B:6C:03:DA:FF:A1:B2:11:C7:B2:69:B9:32:FF:9F:09 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 058C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 0586 Signing time: Thu 18 Dec 2025 22:37:14 +0000 Manifest this update: Thu 18 Dec 2025 22:37:13 +0000 Manifest next update: Thu 25 Dec 2025 22:37:13 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: LNOnSA5mRzP4ht+k8diZ9iPwKBVFsktV8vIjjwNJwac=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: azq2/w0vOg+2swjHdLzDRr5hvzTCb3H9CNSdtAvO6hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1420 (0x58c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Dec 18 22:37:13 2025 GMT Not After : Dec 25 22:37:13 2025 GMT Subject: CN=6944821a-0369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:54:f4:66:6c:a8:7d:ab:32:9a:45:11:46: f9:f8:d2:09:2d:82:d1:d7:c9:18:52:8f:9b:12:2c: 3d:60:cc:f9:9c:72:df:b5:27:57:dc:b0:46:62:78: 2d:1b:f4:cf:9e:97:8e:e8:81:9b:e6:25:1d:d6:5e: 14:2a:e4:5b:12:eb:35:c1:e6:5e:3d:d7:5e:cd:10: 68:ea:72:4c:68:bc:2c:44:00:10:39:34:d4:46:9f: 21:9e:b3:82:16:6e:87:8c:6b:d3:f2:76:9d:53:c8: df:f2:6d:49:00:24:5d:3e:ca:62:14:5d:25:67:16: b6:c0:c8:51:ba:8f:4e:f5:66:94:e6:7f:d7:08:b1: cf:49:3d:a8:85:6b:2b:f5:2f:67:6a:4d:de:13:28: 97:4d:fc:b8:14:e7:c9:26:ce:74:f9:f3:df:44:0d: d6:eb:6d:64:7b:23:aa:42:82:c5:d0:f9:52:67:85: 47:f2:ad:68:ef:48:2e:cf:30:30:4c:5b:8e:cf:5d: 7a:e6:c2:ac:75:3c:0d:37:66:58:c6:5f:9e:83:7d: 20:1d:e1:74:e8:9b:37:2a:1b:ef:f8:02:4c:20:6b: 5d:06:28:a2:67:c9:f0:7b:c4:70:0b:c0:2c:9a:94: f4:23:5f:98:85:28:f2:b1:af:2d:60:cb:93:51:f9: af:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8B:1A:79:0B:6C:03:DA:FF:A1:B2:11:C7:B2:69:B9:32:FF:9F:09 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7e:fb:3d:b7:41:c5:4b:a2:6f:aa:a5:10:b3:a0:fe:35:6e: fd:f3:7b:4a:6a:d1:24:49:53:28:f0:28:6a:04:d7:a6:5b:93: 27:73:a4:61:b0:07:c6:47:77:f1:df:79:96:f1:cc:16:41:90: 69:63:d6:45:84:9b:81:c6:3b:41:8a:48:b2:9d:71:9a:57:62: ea:ec:a1:aa:db:06:be:13:59:17:59:c0:e1:93:86:14:be:13: 0a:e5:e8:2b:4f:e3:c0:fb:9f:b3:4b:01:a2:b2:b0:c5:6e:b0: f8:61:97:ca:d6:98:c5:9d:55:61:90:27:6d:6f:44:62:a2:99: 8c:72:8b:30:7a:0c:fe:31:26:75:7d:c2:ae:ef:41:23:1f:41: c1:7c:e1:54:d2:77:6d:88:15:97:96:61:38:82:21:ff:cd:ea: c1:c2:03:20:2e:d2:75:df:3c:14:44:01:6a:a5:19:e4:69:14: 72:16:83:56:0e:76:48:ea:7a:14:25:ce:22:db:b3:1b:6b:90: 25:78:e1:76:3d:f4:4f:f4:c9:25:41:5e:41:a1:a4:b8:22:0d: 92:51:f0:94:a3:e4:a1:78:a1:64:fd:4f:f1:02:8a:cd:49:84: 52:6b:69:6a:6c:b9:09:28:4b:5f:e0:1a:01:b8:82:34:db:29: 7c:25:1c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUxMjE4MjIzNzEzWhcNMjUxMjI1MjIzNzEzWjAYMRYwFAYD VQQDDA02OTQ0ODIxYS0wMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv19U9GZsqH2rMppFEUb5+NIJLYLR18kYUo+bEiw9YMz5nHLftSdX3LBGYngt G/TPnpeO6IGb5iUd1l4UKuRbEus1weZePddezRBo6nJMaLwsRAAQOTTURp8hnrOC Fm6HjGvT8nadU8jf8m1JACRdPspiFF0lZxa2wMhRuo9O9WaU5n/XCLHPST2ohWsr 9S9nak3eEyiXTfy4FOfJJs50+fPfRA3W621keyOqQoLF0PlSZ4VH8q1o70guzzAw TFuOz1165sKsdTwNN2ZYxl+eg30gHeF06Js3Khvv+AJMIGtdBiiiZ8nwe8RwC8As mpT0I1+YhSjysa8tYMuTUfmvLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmLGnkL bAPa/6GyEceyabky/58JMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0fvs9t0HFS6JvqqUQs6D+NW7983tKatEkSVMo8ChqBNemW5Mnc6Rh sAfGR3fx33mW8cwWQZBpY9ZFhJuBxjtBikiynXGaV2Lq7KGq2wa+E1kXWcDhk4YU vhMK5egrT+PA+5+zSwGisrDFbrD4YZfK1pjFnVVhkCdtb0RiopmMcoswegz+MSZ1 fcKu70EjH0HBfOFU0ndtiBWXlmE4giH/zerBwgMgLtJ13zwURAFqpRnkaRRyFoNW DnZI6noUJc4i27Mba5AleOF2PfRP9MklQV5BoaS4Ig2SUfCUo+SheKFk/U/xAorN SYRSa2lqbLkJKEtf4BoBuII02yl8JRxg -----END CERTIFICATE-----Generated at Fri Dec 19 12:58:50 2025 by rpki-client