This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft File: ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft (raw, json) Hash identifier: mqdoPGIbAy83fclF2WuDWrYvEWjapYEwKe30e/0Nhfg= Subject key identifier: C1:6E:19:BE:BE:2E:0A:F5:DA:96:10:85:36:9D:7A:EA:02:A8:30:17 Authority key identifier: CA:7C:EE:F9:18:80:7E:67:1B:16:24:E6:3A:B6:F6:81:03:DF:D5:E3 Certificate issuer: /CN=A91F583B/serialNumber=CA7CEEF918807E671B1624E63AB6F68103DFD5E3 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft Manifest number: 01D4 Signing time: Thu 25 Dec 2025 01:59:03 +0000 Manifest this update: Thu 25 Dec 2025 01:59:03 +0000 Manifest next update: Thu 01 Jan 2026 01:59:03 +0000 Files and hashes: 1: ynzu-RiAfmcbFiTmOrb2gQPf1eM.crl (hash: 70ellYmsWpxmFCmiV85hqjFA7jeh4uGugacWZ0VtHRo=) 2: 5541D6A21F9A11EE9BB7905DC4F9AE02.roa (hash: xKdkCB2h23p2t0hwohlQLPhMtE2tKQRuZAO7jjr5JQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.crl rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 01:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F583B, serialNumber=CA7CEEF918807E671B1624E63AB6F68103DFD5E3 Validity Not Before: Dec 25 01:59:03 2025 GMT Not After : Jan 1 01:59:03 2026 GMT Subject: CN=694c9a67-de3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:28:a5:8c:b5:31:08:fb:6e:f5:b4:a3:0f:f3: 5d:8d:7d:9c:be:72:59:dd:95:f3:4f:25:ce:35:c6: ca:38:37:aa:48:67:06:58:07:25:44:c1:e6:da:32: a6:8b:ea:03:1d:6a:ff:dd:56:35:c1:0d:39:69:50: b8:9d:eb:1d:3e:3c:1a:4d:8d:cb:4f:6e:0f:80:3e: 83:02:2d:a7:dc:e5:a0:af:a7:c4:e4:16:15:58:30: 68:cd:d6:69:1b:de:26:69:f6:a1:01:50:19:3e:4e: 55:61:6f:de:e4:08:b8:cb:cf:50:fd:68:e0:f5:f7: 4b:73:a0:77:5a:fd:d4:a8:33:54:81:1a:03:7f:88: 0e:7d:b2:60:7a:be:2d:ad:f1:5d:3c:24:fb:af:09: 21:10:15:a7:fa:9d:bd:4b:d1:3f:f7:9b:a1:de:38: 18:5f:e1:02:49:0e:38:b7:ab:7e:91:ed:5c:e0:3b: 7b:86:b8:61:a4:76:b9:49:76:6e:64:be:cd:ce:ec: e3:89:11:8d:18:e9:36:bf:39:fc:b0:34:52:13:33: 9f:7c:7f:4f:ff:d1:bb:25:8b:dc:70:92:ad:67:9d: 17:2d:fd:57:77:fc:f9:70:c5:4f:da:8a:25:c1:58: f8:68:40:4f:30:37:fb:55:e1:f8:fc:16:b6:7a:2e: 8d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6E:19:BE:BE:2E:0A:F5:DA:96:10:85:36:9D:7A:EA:02:A8:30:17 X509v3 Authority Key Identifier: keyid:CA:7C:EE:F9:18:80:7E:67:1B:16:24:E6:3A:B6:F6:81:03:DF:D5:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fc:2d:76:29:4f:8e:1f:55:83:1b:fc:02:d8:66:40:fd:24: ef:81:33:2e:58:fc:c5:6e:70:c0:a1:fc:c3:44:a2:3a:f1:bb: f5:22:65:e7:c6:da:d9:9b:53:53:95:4b:35:8e:17:b6:6f:be: 3e:16:81:97:23:54:f8:58:20:67:c3:36:a5:2f:20:e1:9a:e7: cb:2b:23:70:21:5d:e1:26:39:cd:19:47:a2:e8:eb:93:64:76: 63:f7:61:e5:8f:5e:1f:79:f6:fb:e8:7c:98:2c:ba:a8:1b:84: 5c:f6:33:18:08:1c:f0:a9:de:93:d2:a2:99:50:07:01:7e:38: 7a:e7:41:b7:68:7b:bc:25:fb:71:ea:74:02:6f:94:c0:2d:ff: 5e:d0:32:21:f0:68:fa:99:1f:bc:ea:02:08:ed:e3:99:cd:48: 92:d6:e4:cf:2f:8c:b2:b5:1f:b2:73:09:75:fc:7e:25:5d:d7: 50:d2:ef:64:ff:6b:dc:5a:6e:57:7a:c4:8f:2a:df:54:aa:ef: 5e:00:cb:48:52:b1:fa:d0:9c:1a:5b:81:a4:0c:0c:c6:20:14: bb:67:57:32:6f:f5:41:53:f4:ba:ca:b2:00:44:1e:71:e0:af: 4f:4e:4e:f4:6a:3c:ac:8f:83:d4:0d:37:73:e9:21:f2:be:72: 5d:c0:71:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4M0IxMTAvBgNVBAUTKENBN0NFRUY5MTg4MDdFNjcxQjE2MjRFNjNBQjZGNjgx MDNERkQ1RTMwHhcNMjUxMjI1MDE1OTAzWhcNMjYwMTAxMDE1OTAzWjAYMRYwFAYD VQQDDA02OTRjOWE2Ny1kZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCiljLUxCPtu9bSjD/NdjX2cvnJZ3ZXzTyXONcbKODeqSGcGWAclRMHm2jKm i+oDHWr/3VY1wQ05aVC4nesdPjwaTY3LT24PgD6DAi2n3OWgr6fE5BYVWDBozdZp G94mafahAVAZPk5VYW/e5Ai4y89Q/Wjg9fdLc6B3Wv3UqDNUgRoDf4gOfbJger4t rfFdPCT7rwkhEBWn+p29S9E/95uh3jgYX+ECSQ44t6t+ke1c4Dt7hrhhpHa5SXZu ZL7NzuzjiRGNGOk2vzn8sDRSEzOffH9P/9G7JYvccJKtZ50XLf1Xd/z5cMVP2ool wVj4aEBPMDf7VeH4/Ba2ei6NBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFuGb6+ Lgr12pYQhTadeuoCqDAXMB8GA1UdIwQYMBaAFMp87vkYgH5nGxYk5jq29oED39Xj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgzQi81QUYwNDE5QzFC RTQxMUVFOUI4RkFCNTNDNEY5QUUwMi95bnp1LVJpQWZtY2JGaVRtT3JiMmdRUGYx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3luenUtUmlBZm1jYkZpVG1PcmIyZ1FQZjFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgzQi81QUYwNDE5QzFCRTQxMUVFOUI4RkFCNTNDNEY5QUUwMi95bnp1LVJpQWZt Y2JGaVRtT3JiMmdRUGYxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa/C12KU+OH1WDG/wC2GZA/STvgTMuWPzFbnDAofzDRKI68bv1ImXn xtrZm1NTlUs1jhe2b74+FoGXI1T4WCBnwzalLyDhmufLKyNwIV3hJjnNGUei6OuT ZHZj92Hlj14fefb76HyYLLqoG4Rc9jMYCBzwqd6T0qKZUAcBfjh650G3aHu8Jftx 6nQCb5TALf9e0DIh8Gj6mR+86gII7eOZzUiS1uTPL4yytR+ycwl1/H4lXddQ0u9k /2vcWm5XesSPKt9Uqu9eAMtIUrH60JwaW4GkDAzGIBS7Z1cyb/VBU/S6yrIARB5x 4K9PTk70ajysj4PUDTdz6SHyvnJdwHHO -----END CERTIFICATE-----Generated at Thu Dec 25 07:13:13 2025 by rpki-client