This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: Ybton+xCam2Al9wHS0OqYKHpNd1otAIlsgxusDL5zC0= Subject key identifier: A9:3D:D7:72:F4:29:C1:69:1A:20:0F:A8:91:D3:10:72:29:66:20:E5 Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0160 Signing time: Mon 29 Dec 2025 03:12:16 +0000 Manifest this update: Mon 29 Dec 2025 03:12:15 +0000 Manifest next update: Mon 05 Jan 2026 03:12:15 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: cccmmWy7yh0OjyIa+DY7P9sC3oDVSGHcdHzF7DKjqLE=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Dec 29 03:12:15 2025 GMT Not After : Jan 5 03:12:15 2026 GMT Subject: CN=6951f190-72be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a4:d5:6d:91:a1:26:d8:2c:34:eb:ed:72:68: d5:42:1d:5c:2c:77:69:96:97:72:cf:2a:66:52:7c: 71:f2:07:75:e2:dd:e2:9f:b8:84:e9:6a:3c:e4:25: 7b:e6:fb:79:78:d5:f8:08:d4:a6:71:25:3c:e1:64: cc:eb:25:8c:a1:ea:6c:49:6d:eb:4a:3e:f0:5b:7d: 76:1e:0d:85:62:cd:60:ee:44:0c:70:61:33:48:4c: 12:18:6d:54:a2:09:f3:00:89:1b:07:17:63:da:e5: 10:a6:01:d6:de:75:b1:59:dd:c1:d7:4e:93:6c:f8: 98:cd:17:73:1f:0d:33:fa:5b:80:4b:ea:23:01:1d: 9f:86:61:35:c2:12:87:80:da:b3:e8:5f:97:6e:8d: dd:7c:c4:fc:17:0e:08:6d:98:f8:bf:bc:20:ee:a2: 41:4b:ce:f2:1d:b7:a5:16:6a:74:19:40:87:65:ed: 1c:96:f8:28:b3:96:17:54:2c:20:ad:66:9a:30:da: 06:31:33:50:64:02:e7:40:c2:83:ad:57:7b:8c:5c: 49:19:f2:a7:80:76:65:cb:ec:2f:64:02:c2:25:82: 26:46:06:29:f9:b0:16:f3:4c:a1:8b:7d:55:26:16: 07:10:94:5c:c5:4f:4f:d0:7a:c0:91:e2:30:17:d6: 1f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3D:D7:72:F4:29:C1:69:1A:20:0F:A8:91:D3:10:72:29:66:20:E5 X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e7:3d:ac:95:ef:96:e6:d8:a5:9a:62:3e:4b:a9:37:be:a1: d6:35:d7:7f:41:d5:34:ba:15:20:ea:ae:92:93:52:dc:1f:fc: 13:13:b6:97:fb:a0:d0:2a:c8:67:a4:af:e2:bf:bd:ab:01:b0: 14:d0:19:e0:5f:79:c0:9f:18:ab:b1:55:a8:db:e5:8e:da:11: 28:ef:0e:c2:9f:2f:6a:17:7c:12:69:1a:d2:01:42:a0:42:ed: 03:a1:a2:54:d1:64:b2:c3:24:a1:28:c4:bc:de:6a:18:a5:d0: 29:ac:c6:86:a2:29:52:8a:a1:70:0b:c8:c1:71:7e:97:5d:e9: 6b:ba:26:54:51:ec:9c:8f:e5:dd:1a:97:ed:57:26:75:72:5e: 19:50:d2:54:eb:af:ac:f3:51:5f:e8:10:29:de:f7:be:ef:65: b2:45:b4:3f:c7:fc:c2:5b:82:85:18:24:fb:fe:05:f0:e7:8f: 1d:25:d5:bf:22:b1:f6:4e:18:74:d7:93:12:21:02:20:c0:01: e7:a9:40:af:a5:ee:e0:b0:dc:21:b3:14:58:fa:60:15:82:fb: 1d:45:aa:40:27:a6:23:2c:6b:ca:31:25:0f:1c:4b:49:70:8d: 82:72:a7:c0:31:70:9e:00:01:3f:47:08:46:94:48:8f:20:09: c6:27:e7:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUxMjI5MDMxMjE1WhcNMjYwMTA1MDMxMjE1WjAYMRYwFAYD VQQDDA02OTUxZjE5MC03MmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76TVbZGhJtgsNOvtcmjVQh1cLHdplpdyzypmUnxx8gd14t3in7iE6Wo85CV7 5vt5eNX4CNSmcSU84WTM6yWMoepsSW3rSj7wW312Hg2FYs1g7kQMcGEzSEwSGG1U ognzAIkbBxdj2uUQpgHW3nWxWd3B106TbPiYzRdzHw0z+luAS+ojAR2fhmE1whKH gNqz6F+Xbo3dfMT8Fw4IbZj4v7wg7qJBS87yHbelFmp0GUCHZe0clvgos5YXVCwg rWaaMNoGMTNQZALnQMKDrVd7jFxJGfKngHZly+wvZALCJYImRgYp+bAW80yhi31V JhYHEJRcxU9P0HrAkeIwF9YfYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk913L0 KcFpGiAPqJHTEHIpZiDlMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS5z2sle+W5tilmmI+S6k3vqHWNdd/QdU0uhUg6q6Sk1LcH/wTE7aX +6DQKshnpK/iv72rAbAU0BngX3nAnxirsVWo2+WO2hEo7w7Cny9qF3wSaRrSAUKg Qu0DoaJU0WSywyShKMS83moYpdAprMaGoilSiqFwC8jBcX6XXelruiZUUeycj+Xd GpftVyZ1cl4ZUNJU66+s81Ff6BAp3ve+72WyRbQ/x/zCW4KFGCT7/gXw548dJdW/ IrH2Thh015MSIQIgwAHnqUCvpe7gsNwhsxRY+mAVgvsdRapAJ6YjLGvKMSUPHEtJ cI2CcqfAMXCeAAE/RwhGlEiPIAnGJ+cM -----END CERTIFICATE-----Generated at Mon Dec 29 10:13:34 2025 by rpki-client