This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft File: Y19XnOBVlw4BocO3dQIcjj4ieIc.mft (raw, json) Hash identifier: qFMtMtFNGdDHgD3VN8paFynJ/sqNjOQGrtDGvYV/Ep8= Subject key identifier: 1D:24:7B:0B:03:78:8E:36:5F:2B:64:06:9B:FD:A6:DC:F0:5F:BD:AC Authority key identifier: 63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 Certificate issuer: /CN=A91F4294/serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Certificate serial: 0E66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft Manifest number: 0E5E Signing time: Sat 20 Dec 2025 17:27:40 +0000 Manifest this update: Sat 20 Dec 2025 17:27:40 +0000 Manifest next update: Sat 27 Dec 2025 17:27:40 +0000 Files and hashes: 1: Y19XnOBVlw4BocO3dQIcjj4ieIc.crl (hash: B0XAQ4S665i2V1TfJvGOB2B1b1sOQUR/tSd3CiTkmfM=) 2: 1E018994AEBF11E993F33C65C4F9AE02.roa (hash: VAz7Q8OmwNVtqjw21t41eYyn3+glN8lqbyiXL2P+yek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4294, serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Validity Not Before: Dec 20 17:27:40 2025 GMT Not After : Dec 27 17:27:40 2025 GMT Subject: CN=6946dc8c-8a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:14:06:8e:e3:af:7e:45:38:30:df:9d:09:09: 66:c2:23:ae:f7:5f:fb:dd:de:fa:70:4e:b2:46:48: 9b:e5:1d:e9:34:89:6d:e1:f6:f2:43:6f:d3:5c:6d: 86:b2:25:4e:18:77:ae:2f:3c:38:50:bb:77:76:43: 76:a0:4a:b0:32:6b:99:52:f2:b0:da:39:12:53:13: 86:55:2f:c0:77:43:78:3b:a5:b1:e8:aa:50:a5:34: 60:f2:ea:2d:d5:3d:9f:38:4d:0d:59:58:32:93:c8: e0:6c:ce:57:7f:ac:e8:a0:60:bc:ce:34:11:16:78: 6e:d7:7d:9f:eb:86:54:51:44:0c:67:c8:90:ce:71: 0c:24:28:aa:3f:eb:07:07:71:32:d7:7d:5d:2b:63: f4:c7:74:73:9a:a1:91:f4:35:27:00:cf:a7:2b:23: ab:08:d1:04:5d:1b:72:05:e4:5e:76:2c:6a:ed:08: 52:12:ca:d3:c5:02:99:10:ae:5e:43:72:6e:26:6c: 04:6c:65:6c:ce:28:bf:d6:cb:2d:50:0a:ea:71:0b: b6:3c:69:ae:8b:98:90:7f:b1:63:12:30:b2:f6:11: 00:52:a4:6d:d3:95:75:c2:9b:03:2e:a5:1a:8f:af: 42:8f:84:47:0d:7c:b3:ee:39:aa:7e:61:d8:63:22: df:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:24:7B:0B:03:78:8E:36:5F:2B:64:06:9B:FD:A6:DC:F0:5F:BD:AC X509v3 Authority Key Identifier: keyid:63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:75:e9:79:d2:02:76:be:13:e9:3c:c1:b3:67:28:b4:2a:9c: 47:53:db:c9:1a:ed:ae:06:ab:1b:a6:1c:79:fe:05:82:01:79: 8e:39:1c:a9:de:d6:1f:55:83:ed:a1:71:82:95:88:aa:7c:a0: 35:65:9b:19:70:0f:d4:04:54:ba:43:07:1a:cf:6b:bb:63:6b: eb:0a:42:85:37:1a:ff:a0:86:e7:cd:f4:a1:d5:6b:b3:d4:5d: 8d:90:7a:9b:87:38:e5:c1:29:83:ae:5b:ca:88:0a:a7:5d:3e: 69:2a:c7:2f:81:c5:a3:a5:7c:c3:1d:8c:12:00:c5:87:88:56: d2:96:d5:43:a7:a6:26:48:02:0b:db:f1:35:d7:af:f2:ef:0b: 38:0e:dc:7f:71:f8:71:42:5f:ac:32:86:62:14:1a:9b:d4:1b: 9b:20:c3:de:93:4a:c5:77:9b:23:83:0d:a4:46:cb:22:54:28: 2a:22:75:51:e3:96:0f:70:bf:7b:41:f3:ca:ab:03:bf:f0:03: 0e:fe:6f:e4:c2:21:a6:19:23:c6:c9:33:38:74:54:3e:36:fa: e4:7a:ee:23:c2:76:fd:e2:ec:34:f6:8b:50:ef:8f:64:40:20: 16:dd:ad:6c:da:59:8c:9f:d8:f6:dd:e8:6d:ff:98:d1:05:01: 3b:5c:65:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOTQxMTAvBgNVBAUTKDYzNUY1NzlDRTA1NTk3MEUwMUExQzNCNzc1MDIxQzhF M0UyMjc4ODcwHhcNMjUxMjIwMTcyNzQwWhcNMjUxMjI3MTcyNzQwWjAYMRYwFAYD VQQDDA02OTQ2ZGM4Yy04YTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRQGjuOvfkU4MN+dCQlmwiOu91/73d76cE6yRkib5R3pNIlt4fbyQ2/TXG2G siVOGHeuLzw4ULt3dkN2oEqwMmuZUvKw2jkSUxOGVS/Ad0N4O6Wx6KpQpTRg8uot 1T2fOE0NWVgyk8jgbM5Xf6zooGC8zjQRFnhu132f64ZUUUQMZ8iQznEMJCiqP+sH B3Ey131dK2P0x3RzmqGR9DUnAM+nKyOrCNEEXRtyBeRedixq7QhSEsrTxQKZEK5e Q3JuJmwEbGVszii/1sstUArqcQu2PGmui5iQf7FjEjCy9hEAUqRt05V1wpsDLqUa j69Cj4RHDXyz7jmqfmHYYyLfkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0kewsD eI42XytkBpv9ptzwX72sMB8GA1UdIwQYMBaAFGNfV5zgVZcOAaHDt3UCHI4+IniH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI5NC8wQ0I1RUFGQUFF QkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3NEJvY08zZFFJY2pqNGll SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxOVhuT0JWbHc0Qm9jTzNkUUljamo0aWVJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI5NC8wQ0I1RUFGQUFFQkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3 NEJvY08zZFFJY2pqNGllSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCdel50gJ2vhPpPMGzZyi0KpxHU9vJGu2uBqsbphx5/gWCAXmOORyp 3tYfVYPtoXGClYiqfKA1ZZsZcA/UBFS6Qwcaz2u7Y2vrCkKFNxr/oIbnzfSh1Wuz 1F2NkHqbhzjlwSmDrlvKiAqnXT5pKscvgcWjpXzDHYwSAMWHiFbSltVDp6YmSAIL 2/E116/y7ws4Dtx/cfhxQl+sMoZiFBqb1BubIMPek0rFd5sjgw2kRssiVCgqInVR 45YPcL97QfPKqwO/8AMO/m/kwiGmGSPGyTM4dFQ+Nvrkeu4jwnb94uw09otQ749k QCAW3a1s2lmMn9j23eht/5jRBQE7XGWx -----END CERTIFICATE-----Generated at Mon Dec 22 09:34:31 2025 by rpki-client