This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft File: YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft (raw, json) Hash identifier: jzrowTLyooI53RoACiKqpXX2zi1sHqrSlC/b3sAT8Bk= Subject key identifier: 76:73:FA:DF:13:6E:EA:EA:E6:04:F1:1A:77:AA:8D:88:3D:C5:2B:A8 Authority key identifier: 60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 Certificate issuer: /CN=A91DF55D/serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft Manifest number: 0603 Signing time: Sun 28 Dec 2025 22:05:55 +0000 Manifest this update: Sun 28 Dec 2025 22:05:55 +0000 Manifest next update: Sun 04 Jan 2026 22:05:55 +0000 Files and hashes: 1: YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl (hash: YFaMYicbGrppk4LLBnDRPaHt0zEj7SlbVIXI9FFUI0I=) 2: 84706C70D12411EBAD06CD48C4F9AE02.roa (hash: +VQvv+uWVXkQstiOmhvQpZ3+r0zEs8UArQ0Y/mZ6P60=) 3: 8504C794D12411EBAD06CD48C4F9AE02.roa (hash: zqhHb4EuNxIhj0MsDdGRZBLgZ5b4JdLttiLWNXtELcI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF55D, serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Validity Not Before: Dec 28 22:05:55 2025 GMT Not After : Jan 4 22:05:55 2026 GMT Subject: CN=6951a9c3-3049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bb:33:72:f1:d7:15:28:b3:8b:57:cd:ae:7b: 7e:03:6d:2f:0f:06:be:26:e1:b7:9d:52:4a:45:31: b8:f0:57:17:ad:cc:ce:60:56:33:28:bf:0d:9d:87: bf:8f:e8:ab:a8:9e:ca:25:cd:bc:13:97:7c:44:87: 0d:ff:73:46:8a:4f:90:82:a0:04:60:de:fe:58:7c: bc:37:cf:47:f4:f2:fa:ef:0a:9b:d2:16:b1:ed:2f: ad:36:32:49:89:5d:3a:9d:29:b3:7d:96:ef:71:dd: 91:7c:14:79:42:3e:76:06:1c:fd:49:ad:a4:19:78: 3a:3c:e2:ab:c4:e8:61:0b:b3:c1:5c:65:fa:61:60: 9e:a1:9d:1e:c3:0e:51:8c:d3:a3:be:66:08:62:84: 13:71:b2:01:c3:66:71:4d:f0:e3:b6:33:44:91:65: 69:22:89:99:9c:ec:b6:47:d5:7a:b9:e1:39:ff:38: 5f:a7:87:4c:72:d7:a0:4e:fc:5a:53:52:79:0a:f8: 88:4b:ef:a5:0f:cc:9a:72:da:7b:4f:db:06:55:d6: ea:9f:90:b1:2d:ba:26:ae:d2:61:3a:95:5b:b8:66: 61:bf:3b:3b:cd:46:2d:81:5c:63:5b:2a:38:96:33: c8:23:04:53:15:e8:4f:d9:28:1b:e9:9a:e8:52:6a: b4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:73:FA:DF:13:6E:EA:EA:E6:04:F1:1A:77:AA:8D:88:3D:C5:2B:A8 X509v3 Authority Key Identifier: keyid:60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:c1:79:54:ae:e1:8d:62:7d:af:c1:e0:f7:71:3f:b5:59:6b: 0e:d9:72:7d:37:19:41:1f:05:c4:df:31:a3:c5:2f:f8:eb:5c: b6:6d:76:22:06:59:00:1e:0d:d4:f6:5c:22:30:19:ce:f1:0c: 1b:e3:48:05:7e:a9:94:96:2d:73:f4:83:bf:8c:04:a2:64:8b: 6f:3e:c3:f7:57:f1:a1:50:c6:50:42:d7:d9:d1:92:16:ee:85: 0b:72:96:e0:fb:3a:d5:91:fe:e7:a4:1c:ce:4c:a7:c5:ad:68: d3:bc:ad:c8:27:c3:f7:69:17:78:ba:5e:14:69:f0:f1:52:53: 5a:9a:48:64:98:27:9a:9a:09:e1:2f:6e:84:6b:99:f5:f8:e6: e6:f0:86:80:a9:0c:e0:ba:ea:f5:e3:d6:bb:cd:48:40:45:ac: 61:10:da:cb:b7:58:78:d8:b1:f4:f4:c7:f2:f2:9c:fb:00:a2: e8:b9:a6:e9:a0:8c:71:57:a0:37:81:70:44:8a:27:60:61:44: 72:e3:fa:4c:d0:06:7b:7c:96:20:af:e5:8d:24:4b:5a:d5:eb: f5:96:af:4f:5c:82:fa:e4:c4:0d:26:88:51:bf:30:4f:20:d3: 27:5d:33:97:52:0e:4f:7f:43:b2:18:64:75:7f:e2:eb:86:fd: 65:cb:21:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY1NUQxMTAvBgNVBAUTKDYwREMzNzVEQUFDQzk3ODFCQjcwMkUwMzg4MkEzMjVG RUJCRkU5QjQwHhcNMjUxMjI4MjIwNTU1WhcNMjYwMTA0MjIwNTU1WjAYMRYwFAYD VQQDDA02OTUxYTljMy0zMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7szcvHXFSizi1fNrnt+A20vDwa+JuG3nVJKRTG48FcXrczOYFYzKL8NnYe/ j+irqJ7KJc28E5d8RIcN/3NGik+QgqAEYN7+WHy8N89H9PL67wqb0hax7S+tNjJJ iV06nSmzfZbvcd2RfBR5Qj52Bhz9Sa2kGXg6POKrxOhhC7PBXGX6YWCeoZ0eww5R jNOjvmYIYoQTcbIBw2ZxTfDjtjNEkWVpIomZnOy2R9V6ueE5/zhfp4dMctegTvxa U1J5CviIS++lD8yactp7T9sGVdbqn5CxLbomrtJhOpVbuGZhvzs7zUYtgVxjWyo4 ljPIIwRTFehP2Sgb6ZroUmq0zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZz+t8T burq5gTxGneqjYg9xSuoMB8GA1UdIwQYMBaAFGDcN12qzJeBu3AuA4gqMl/rv+m0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjU1RC9FN0E3N0JFRUQx MUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0RzdjQzREaUNveVgtdV82 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOdzNYYXJNbDRHN2NDNERpQ295WC11XzZiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjU1RC9FN0E3N0JFRUQxMUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0 RzdjQzREaUNveVgtdV82YlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpwXlUruGNYn2vweD3cT+1WWsO2XJ9NxlBHwXE3zGjxS/461y2bXYi BlkAHg3U9lwiMBnO8Qwb40gFfqmUli1z9IO/jASiZItvPsP3V/GhUMZQQtfZ0ZIW 7oULcpbg+zrVkf7npBzOTKfFrWjTvK3IJ8P3aRd4ul4UafDxUlNamkhkmCeamgnh L26Ea5n1+Obm8IaAqQzguur149a7zUhARaxhENrLt1h42LH09Mfy8pz7AKLouabp oIxxV6A3gXBEiidgYURy4/pM0AZ7fJYgr+WNJEta1ev1lq9PXIL65MQNJohRvzBP INMnXTOXUg5Pf0OyGGR1f+Lrhv1lyyE1 -----END CERTIFICATE-----Generated at Mon Dec 29 01:49:56 2025 by rpki-client