This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: 304UqG5WtXK47tyTtA+xYwuz/WvVGA5lfwYJATiDSB8= Subject key identifier: 4A:53:19:9A:52:71:17:92:14:14:16:FF:AE:95:CB:DC:13:6D:3E:F6 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: 0115 Signing time: Sun 21 Dec 2025 04:07:16 +0000 Manifest this update: Sun 21 Dec 2025 04:07:15 +0000 Manifest next update: Sun 28 Dec 2025 04:07:15 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: XhpjuD2sMvj/xD3m671PMNGQhq2NJSWsFwtd86EDsL8=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Dec 21 04:07:15 2025 GMT Not After : Dec 28 04:07:15 2025 GMT Subject: CN=69477273-1c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8a:7e:ac:3f:06:73:3b:38:c5:11:a8:7e:6e: 5d:a5:c9:ec:b5:40:90:4a:89:96:68:07:5d:1d:8a: f6:54:34:a2:3f:d3:41:af:94:d9:9c:0c:50:3f:30: 57:b1:32:cc:e5:a3:3a:5d:99:94:52:8d:1a:21:bc: 8f:a7:ba:0e:07:67:a7:78:10:9e:a6:dc:11:4b:e5: 68:da:0e:dd:2c:1b:6a:82:28:6d:98:14:46:9b:0a: dd:98:50:f3:ca:26:27:d3:85:8a:ac:83:71:ff:dc: 51:92:ae:47:68:50:25:35:99:ae:8d:3d:ca:76:b7: a1:9a:3d:4d:80:a4:0a:95:12:03:f5:2b:ca:44:3b: f7:7c:34:ac:81:31:e2:fa:27:bf:40:b5:3b:35:66: c6:bc:77:b4:9d:c4:93:a6:83:1b:27:8e:01:66:c9: 36:3f:7e:75:a3:9e:68:49:06:f0:40:00:97:52:9a: e5:81:aa:ca:54:de:66:b2:8c:4b:0c:79:f3:93:66: 86:58:c4:ab:b6:4a:19:f2:0c:50:16:bb:73:fc:54: 30:17:d7:f6:a4:2f:e9:6a:ff:62:ca:5d:06:16:41: ba:6d:c5:b6:b9:70:97:ef:d7:7f:56:31:d3:97:7d: ae:09:54:91:8c:8c:23:a4:c3:96:18:a5:47:86:1e: ba:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:53:19:9A:52:71:17:92:14:14:16:FF:AE:95:CB:DC:13:6D:3E:F6 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:3e:4a:8a:a8:1b:bc:fa:fb:e2:34:42:e7:ef:ae:ef:1e:b7: 72:23:e0:46:55:0d:c1:d2:40:d6:08:f2:8a:a1:fa:c5:6e:fb: 32:bd:e3:96:c1:e6:54:8e:24:89:86:8a:cc:25:08:8e:ba:bc: c8:7b:51:5c:7a:7e:5d:7f:3b:8c:06:fc:8e:4f:f5:df:62:5f: 9e:9f:87:c2:45:1c:93:02:7c:ca:8b:37:74:66:1d:32:c7:d7: 83:fc:eb:dd:5b:de:ba:66:d6:f7:88:8b:6b:63:4a:c9:b4:5a: 9c:61:fb:11:41:2c:6c:9b:bf:53:aa:c9:64:b4:5e:22:59:35: 76:45:85:46:e1:eb:be:08:81:00:95:a6:f5:65:fa:d1:b4:10: d4:71:9b:dd:d3:7d:87:3d:e0:a4:74:91:e2:b8:bb:7b:44:9d: 6c:2e:75:ba:74:a7:34:9f:82:1f:80:41:be:60:db:04:9b:91: 28:cc:02:42:d9:49:da:db:5f:a1:1d:4f:61:c8:bb:45:56:8b: 75:46:9a:89:b6:73:f6:cc:5a:eb:b4:e7:eb:41:e8:18:b5:c4: 61:50:dd:2b:b5:1f:63:b7:99:13:e1:09:4d:84:bd:86:26:b7: e0:d5:e2:a9:ea:c1:aa:6b:2f:d1:43:8d:e1:5b:17:00:8f:95: 54:d1:75:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUxMjIxMDQwNzE1WhcNMjUxMjI4MDQwNzE1WjAYMRYwFAYD VQQDDA02OTQ3NzI3My0xYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYp+rD8Gczs4xRGofm5dpcnstUCQSomWaAddHYr2VDSiP9NBr5TZnAxQPzBX sTLM5aM6XZmUUo0aIbyPp7oOB2eneBCeptwRS+Vo2g7dLBtqgihtmBRGmwrdmFDz yiYn04WKrINx/9xRkq5HaFAlNZmujT3Kdrehmj1NgKQKlRID9SvKRDv3fDSsgTHi +ie/QLU7NWbGvHe0ncSTpoMbJ44BZsk2P351o55oSQbwQACXUprlgarKVN5msoxL DHnzk2aGWMSrtkoZ8gxQFrtz/FQwF9f2pC/pav9iyl0GFkG6bcW2uXCX79d/VjHT l32uCVSRjIwjpMOWGKVHhh66DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpTGZpS cReSFBQW/66Vy9wTbT72MB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCePkqKqBu8+vviNELn767vHrdyI+BGVQ3B0kDWCPKKofrFbvsyveOW weZUjiSJhorMJQiOurzIe1Fcen5dfzuMBvyOT/XfYl+en4fCRRyTAnzKizd0Zh0y x9eD/OvdW966Ztb3iItrY0rJtFqcYfsRQSxsm79TqslktF4iWTV2RYVG4eu+CIEA lab1ZfrRtBDUcZvd032HPeCkdJHiuLt7RJ1sLnW6dKc0n4IfgEG+YNsEm5EozAJC 2Una21+hHU9hyLtFVot1RpqJtnP2zFrrtOfrQegYtcRhUN0rtR9jt5kT4QlNhL2G Jrfg1eKp6sGqay/RQ43hWxcAj5VU0XUE -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:34 2025 by rpki-client