This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: xmnoYvuKJ7BW0VsGisfAp6YjAvt+65TL3kwmJuCMLME= Subject key identifier: 9A:6D:32:C3:70:9B:49:8C:4B:DE:4E:CB:CE:8D:50:B2:09:CA:43:4D Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01F7 Signing time: Mon 29 Dec 2025 01:38:12 +0000 Manifest this update: Mon 29 Dec 2025 01:38:12 +0000 Manifest next update: Mon 05 Jan 2026 01:38:12 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: wAP97GTEqQrbhTObABjVLyRIplXEKhcGCLgSE7kxeGw=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: 1sa+ik65HDpM/qIP+SkfWWXEJCGddK6P6JEdVTcmfes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 01:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Dec 29 01:38:12 2025 GMT Not After : Jan 5 01:38:12 2026 GMT Subject: CN=6951db84-154a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:80:26:e6:e0:df:73:af:e2:2f:47:b1:28:89: a7:22:d0:20:09:82:55:2f:39:42:d7:ce:9c:93:a9: e4:36:7b:7c:a2:82:6d:f5:fa:1a:b9:ad:f1:c1:e3: d1:05:9b:a8:94:4f:54:80:18:4c:bf:24:5b:93:4e: 1a:0e:32:30:ba:58:ee:db:11:c4:89:e7:1f:07:76: 0f:b8:8f:fc:ed:72:cc:04:74:52:c2:dd:01:6c:11: 8b:87:d0:3a:91:d5:6c:3b:a5:cc:53:33:76:ec:17: 3b:2e:f1:8d:d3:89:5a:13:65:cb:a2:ae:43:58:cc: 0b:98:08:63:67:73:cb:3f:e5:be:b8:a1:72:17:e7: 0f:86:9d:33:80:f2:26:0b:46:9a:39:5c:cd:be:1b: 7d:b3:a8:d9:27:4f:e8:2a:f6:0f:95:3b:ef:47:32: ac:10:d3:7a:b6:36:97:a5:71:bf:c5:52:a6:69:1f: 00:20:1a:ac:0d:86:89:2f:53:59:a1:b2:a4:8a:a3: 64:b6:1a:e3:11:24:f6:98:f2:7e:e0:c6:87:c2:5e: 67:ec:2d:fd:9e:41:b9:90:aa:71:bd:7c:44:ef:37: 0d:1e:f7:1a:ba:7a:38:fb:e4:6f:50:78:73:22:7c: db:16:f2:84:b6:22:24:b7:a6:de:45:38:cd:22:16: 76:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:6D:32:C3:70:9B:49:8C:4B:DE:4E:CB:CE:8D:50:B2:09:CA:43:4D X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:95:21:62:d2:e3:9c:2a:d9:8d:60:b3:29:d1:aa:53:96:fb: 0b:63:b2:38:56:60:72:a2:ca:56:5e:26:f2:9d:52:de:11:d6: d4:22:ef:1c:77:cf:5e:1f:13:92:de:a7:59:ac:50:f0:bb:a4: 7d:30:66:aa:12:80:09:f7:76:f0:42:0b:33:f8:62:13:61:0a: ab:90:0e:ef:af:57:5c:9a:e5:6f:b7:f7:0d:bd:6f:86:7a:47: 24:21:29:f7:fc:c3:1e:57:96:f8:92:06:60:6b:6c:4f:8c:6a: 0f:8b:e4:c4:c0:81:9b:e6:cb:89:b6:fe:6f:6a:e6:46:52:7b: 9d:c0:f3:1d:ca:24:7e:25:50:11:74:4b:ac:35:08:22:b1:86: 90:25:31:3a:e3:79:0b:0c:8d:a0:9d:09:1b:77:6d:43:93:d2: 8e:78:ed:ae:f7:fe:3c:0b:f1:cb:f1:43:ba:39:06:6a:83:43: 63:c8:bf:9a:d5:e9:f3:1f:7b:e6:08:a2:3a:a4:3e:7d:2f:d8: c1:03:d6:d4:15:10:2a:87:89:59:fb:a1:31:f9:14:dd:54:d8: be:eb:d1:d9:39:4f:0a:7c:e3:9c:d4:10:e1:3c:34:f0:a3:12: 89:55:06:ed:8f:d1:1e:df:c7:35:c8:14:27:31:05:5f:29:9b: 58:1e:ca:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUxMjI5MDEzODEyWhcNMjYwMTA1MDEzODEyWjAYMRYwFAYD VQQDDA02OTUxZGI4NC0xNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYAm5uDfc6/iL0exKImnItAgCYJVLzlC186ck6nkNnt8ooJt9foaua3xwePR BZuolE9UgBhMvyRbk04aDjIwulju2xHEiecfB3YPuI/87XLMBHRSwt0BbBGLh9A6 kdVsO6XMUzN27Bc7LvGN04laE2XLoq5DWMwLmAhjZ3PLP+W+uKFyF+cPhp0zgPIm C0aaOVzNvht9s6jZJ0/oKvYPlTvvRzKsENN6tjaXpXG/xVKmaR8AIBqsDYaJL1NZ obKkiqNkthrjEST2mPJ+4MaHwl5n7C39nkG5kKpxvXxE7zcNHvcauno4++RvUHhz InzbFvKEtiIkt6beRTjNIhZ2jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJptMsNw m0mMS95Oy86NULIJykNNMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBClSFi0uOcKtmNYLMp0apTlvsLY7I4VmByospWXibynVLeEdbUIu8c d89eHxOS3qdZrFDwu6R9MGaqEoAJ93bwQgsz+GITYQqrkA7vr1dcmuVvt/cNvW+G ekckISn3/MMeV5b4kgZga2xPjGoPi+TEwIGb5suJtv5vauZGUnudwPMdyiR+JVAR dEusNQgisYaQJTE643kLDI2gnQkbd21Dk9KOeO2u9/48C/HL8UO6OQZqg0NjyL+a 1enzH3vmCKI6pD59L9jBA9bUFRAqh4lZ+6Ex+RTdVNi+69HZOU8KfOOc1BDhPDTw oxKJVQbtj9Ee38c1yBQnMQVfKZtYHsrI -----END CERTIFICATE-----Generated at Tue Dec 30 12:30:17 2025 by rpki-client