This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft File: YU0eyLaT57tfMs-lJ7UCgyad_is.mft (raw, json) Hash identifier: PkXveWRCCmvSTCK91XY8f2L4Sq7CtpKNNsu3dR68MTc= Subject key identifier: 51:95:B3:6E:58:95:B3:15:C1:50:B6:1E:CA:BB:39:29:B0:5B:46:0A Authority key identifier: 61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B Certificate issuer: /CN=A91FBD7B/serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft Manifest number: AB Signing time: Fri 19 Dec 2025 05:17:46 +0000 Manifest this update: Fri 19 Dec 2025 05:17:46 +0000 Manifest next update: Fri 26 Dec 2025 05:17:46 +0000 Files and hashes: 1: YU0eyLaT57tfMs-lJ7UCgyad_is.crl (hash: VFx+kc4LQ8KV6vRbJX4FPSZbLdb5e3HWfcSsCIj4lHQ=) 2: EE380826D87211EFBAE0FC19C4F9AE02.roa (hash: Z/MKQEZHBao6uUjy3KntQF19ACE4AX6KONtzOcMde7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD7B, serialNumber=614D1EC8B693E7BB5F32CFA527B50283269DFE2B Validity Not Before: Dec 19 05:17:46 2025 GMT Not After : Dec 26 05:17:46 2025 GMT Subject: CN=6944dffa-b36b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:04:8b:5b:a9:b1:fc:a1:87:f3:b4:35:7c: 62:36:c4:0f:a6:88:09:24:06:96:15:78:3e:92:4c: db:93:b9:95:d5:6a:a6:1f:bc:22:2b:c5:61:84:d6: 9b:f8:e2:07:3d:68:d5:95:ca:16:1e:1e:b7:bb:fe: 37:cc:cb:d3:5d:28:bb:85:53:72:20:c7:55:9b:bb: e1:fa:f4:9a:84:01:99:d6:e8:d0:44:1b:9d:e8:53: 57:5e:4a:d8:16:9a:5a:b2:2c:91:4a:41:ae:ac:c7: 82:36:f3:b3:fa:f0:82:a4:09:7e:7c:3d:17:44:bb: 55:72:81:6f:dd:0b:e6:27:d4:57:04:63:53:b4:29: 08:6c:4f:93:13:f9:f3:bc:cc:92:00:6b:8a:fc:39: 0d:a3:3b:d9:1d:61:f4:27:e1:dd:23:42:07:a3:d3: a0:d0:b1:b4:75:97:b2:b3:24:c2:1b:dc:a6:ad:ff: a8:16:36:4b:3e:a4:30:fc:f1:b0:e2:b0:ab:5e:0f: d3:89:3d:e9:25:1e:de:ea:01:3b:e7:26:c4:56:91: 93:f4:a9:47:93:9a:8b:d4:c3:78:37:67:b1:95:49: 40:25:1f:fa:60:89:96:e8:bc:0e:09:aa:e1:94:96: 6e:cc:c4:cd:74:a7:d5:fe:cb:3f:7f:20:31:dc:32: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:95:B3:6E:58:95:B3:15:C1:50:B6:1E:CA:BB:39:29:B0:5B:46:0A X509v3 Authority Key Identifier: keyid:61:4D:1E:C8:B6:93:E7:BB:5F:32:CF:A5:27:B5:02:83:26:9D:FE:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU0eyLaT57tfMs-lJ7UCgyad_is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD7B/A74F5EDCD87211EFA31F8419C4F9AE02/YU0eyLaT57tfMs-lJ7UCgyad_is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c9:d0:65:ef:8a:5b:1e:b5:23:a4:92:1f:98:95:b9:79:1b: 4d:d9:7a:86:63:2a:53:df:b8:11:b7:d2:43:72:44:72:98:2a: f4:83:ac:f8:20:4f:90:27:74:f7:8e:9e:b4:66:86:26:dc:4f: 7f:c3:d1:8c:74:4c:e3:2d:a1:c1:92:c0:8f:af:8e:65:a4:88: 53:3d:a5:34:d9:e0:98:06:af:59:4c:41:bd:87:89:1b:a2:8e: 07:c8:95:d1:d1:23:67:5d:21:dd:8d:29:d4:82:3e:60:6c:02: d0:41:49:8a:a6:c2:2e:b8:5e:79:11:06:5f:47:55:d9:07:0b: 52:d4:be:2f:5b:8b:c0:0a:4d:e5:dc:96:8c:1e:75:97:ef:11: 4c:ee:5d:57:e8:9f:5e:76:7a:f2:9f:11:1f:dd:72:bb:2d:96: 11:e0:c2:94:ed:9d:9b:69:6c:66:c7:54:0a:b2:14:7d:39:1d: e7:2f:e4:c0:0a:2e:d0:d8:f7:d7:8a:46:e0:43:99:52:55:38: a1:6f:70:07:0c:e3:47:7a:26:e2:ac:9f:e8:97:02:1f:16:d4: e9:9f:a5:4e:08:30:fa:93:f3:ff:e4:bf:96:22:a5:40:75:c9: 0e:be:0e:f2:fc:02:2c:2b:d0:f4:48:d3:7b:f0:12:84:1f:33: ef:68:4e:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEN0IxMTAvBgNVBAUTKDYxNEQxRUM4QjY5M0U3QkI1RjMyQ0ZBNTI3QjUwMjgz MjY5REZFMkIwHhcNMjUxMjE5MDUxNzQ2WhcNMjUxMjI2MDUxNzQ2WjAYMRYwFAYD VQQDDA02OTQ0ZGZmYS1iMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWMEi1upsfyhh/O0NXxiNsQPpogJJAaWFXg+kkzbk7mV1WqmH7wiK8VhhNab +OIHPWjVlcoWHh63u/43zMvTXSi7hVNyIMdVm7vh+vSahAGZ1ujQRBud6FNXXkrY FppasiyRSkGurMeCNvOz+vCCpAl+fD0XRLtVcoFv3QvmJ9RXBGNTtCkIbE+TE/nz vMySAGuK/DkNozvZHWH0J+HdI0IHo9Og0LG0dZeysyTCG9ymrf+oFjZLPqQw/PGw 4rCrXg/TiT3pJR7e6gE75ybEVpGT9KlHk5qL1MN4N2exlUlAJR/6YImW6LwOCarh lJZuzMTNdKfV/ss/fyAx3DKkgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGVs25Y lbMVwVC2Hsq7OSmwW0YKMB8GA1UdIwQYMBaAFGFNHsi2k+e7XzLPpSe1AoMmnf4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ3Qi9BNzRGNUVEQ0Q4 NzIxMUVGQTMxRjg0MTlDNEY5QUUwMi9ZVTBleUxhVDU3dGZNcy1sSjdVQ2d5YWRf aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lVMGV5TGFUNTd0Zk1zLWxKN1VDZ3lhZF9pcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ3Qi9BNzRGNUVEQ0Q4NzIxMUVGQTMxRjg0MTlDNEY5QUUwMi9ZVTBleUxhVDU3 dGZNcy1sSjdVQ2d5YWRfaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSydBl74pbHrUjpJIfmJW5eRtN2XqGYypT37gRt9JDckRymCr0g6z4 IE+QJ3T3jp60ZoYm3E9/w9GMdEzjLaHBksCPr45lpIhTPaU02eCYBq9ZTEG9h4kb oo4HyJXR0SNnXSHdjSnUgj5gbALQQUmKpsIuuF55EQZfR1XZBwtS1L4vW4vACk3l 3JaMHnWX7xFM7l1X6J9ednrynxEf3XK7LZYR4MKU7Z2baWxmx1QKshR9OR3nL+TA Ci7Q2PfXikbgQ5lSVTihb3AHDONHeibirJ/olwIfFtTpn6VOCDD6k/P/5L+WIqVA dckOvg7y/AIsK9D0SNN78BKEHzPvaE6T -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:14 2025 by rpki-client