This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft File: YDUU_FCDUUDwM--oQ87pOWOWol0.mft (raw, json) Hash identifier: paz9DRBmUiEOnbJGodZOqvoraCYZBkeHfuUZ64XLMWA= Subject key identifier: 17:83:F5:72:4A:B7:E4:39:1F:68:61:99:32:CD:CB:3D:71:5C:85:A8 Authority key identifier: 60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D Certificate issuer: /CN=A91118FA/serialNumber=603514FC50835140F033EFA843CEE9396396A25D Certificate serial: 0B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft Manifest number: 0B78 Signing time: Mon 22 Dec 2025 18:34:55 +0000 Manifest this update: Mon 22 Dec 2025 18:34:55 +0000 Manifest next update: Mon 29 Dec 2025 18:34:55 +0000 Files and hashes: 1: YDUU_FCDUUDwM--oQ87pOWOWol0.crl (hash: X+IxdVRuFW/m1sJfPFsy3u9UDkx81vQ5y0ALyLuoM0Y=) 2: 42EE36A240EC11EA875BC545C4F9AE02.roa (hash: oB4ONhIoOVHFLHE+zKePSEzncY8zQatFoaGKjLj9U3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91118FA, serialNumber=603514FC50835140F033EFA843CEE9396396A25D Validity Not Before: Dec 22 18:34:55 2025 GMT Not After : Dec 29 18:34:55 2025 GMT Subject: CN=69498f4f-d1e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:06:50:f3:62:94:9c:0f:9e:ad:17:84:28: 66:bf:0a:47:06:34:38:43:06:3b:bb:bb:72:8d:c9: 8f:fb:a7:7a:e0:11:cf:95:41:10:ae:18:9f:fe:2c: 53:e3:9b:b7:40:a1:6c:38:4e:29:37:c5:1b:18:f0: 6f:28:65:72:70:90:6c:9e:1f:da:31:57:c0:b6:d9: 4d:69:b1:aa:71:e2:54:3a:b7:16:46:75:ce:63:f7: bc:ee:29:8f:db:ba:e2:25:7c:23:da:e8:e0:2b:57: 1a:f7:1d:38:02:f2:76:2d:e0:30:7d:f6:1a:56:91: a8:fa:e7:02:7e:09:ee:d0:a0:80:49:ba:62:1d:61: 04:34:02:c5:8c:fc:dc:37:d8:11:07:b8:f6:a7:d0: 8e:c5:1f:79:75:91:43:5e:51:6d:38:39:a0:dc:81: e0:a1:27:d6:9b:79:b4:8f:fa:d1:1b:1a:07:b2:94: 0f:4c:9f:89:f0:cd:28:62:89:60:d2:44:a3:27:31: 06:d9:36:00:28:64:84:64:e1:00:c1:52:8b:fa:92: 7a:84:03:cd:a9:c6:ca:4c:99:5f:9c:6c:ee:ae:a1: ab:ef:0e:26:91:91:ea:ee:27:90:88:a5:28:e2:42: d4:53:e0:1b:1a:91:be:96:c4:6c:71:5f:84:64:0a: a9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:83:F5:72:4A:B7:E4:39:1F:68:61:99:32:CD:CB:3D:71:5C:85:A8 X509v3 Authority Key Identifier: keyid:60:35:14:FC:50:83:51:40:F0:33:EF:A8:43:CE:E9:39:63:96:A2:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDUU_FCDUUDwM--oQ87pOWOWol0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91118FA/9842449C40EA11EABB01BD42C4F9AE02/YDUU_FCDUUDwM--oQ87pOWOWol0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:60:36:8f:61:8e:ed:b1:e1:f5:4c:35:be:c3:60:39:35:85: 9b:a6:e4:68:c8:a4:20:ed:20:7d:5a:1d:dd:c4:f7:5d:b8:b8: f7:9c:5b:96:63:b9:7b:0b:f3:d0:50:e3:c7:c9:8a:9e:a9:73: 79:37:4f:d4:30:e3:24:1e:50:0c:14:00:ff:f6:ac:21:b1:0b: f9:59:c5:a7:2e:89:9a:92:f6:7b:05:7f:e2:a5:4c:b4:85:e8: 3b:84:76:76:3e:ee:ff:36:59:72:f9:9d:49:1e:51:1a:fc:06: 2d:c3:0d:64:00:70:7e:6c:83:de:9d:43:3c:83:45:5c:d8:4a: 16:26:f5:46:dd:a6:d0:17:c1:31:8e:95:3b:06:cf:ea:cf:60: fa:75:e8:fd:b1:85:34:9e:4d:81:6c:78:bf:71:be:51:59:d3: ab:a3:3f:92:08:1e:43:3f:ff:b5:f1:d5:28:98:5d:89:68:26: fa:c0:aa:33:14:ec:74:c9:91:a6:9e:57:d9:a2:2d:3a:1f:45: cb:f8:f9:1c:33:97:a8:cd:49:8c:a4:cb:7b:39:bd:26:13:cf: 59:31:f8:d2:77:fd:ea:55:3a:8c:56:bc:ef:0b:e6:59:ad:f6: b5:9a:a4:b3:9d:35:d6:30:f1:1f:27:0c:a5:93:09:3a:18:ee: eb:e4:59:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE4RkExMTAvBgNVBAUTKDYwMzUxNEZDNTA4MzUxNDBGMDMzRUZBODQzQ0VFOTM5 NjM5NkEyNUQwHhcNMjUxMjIyMTgzNDU1WhcNMjUxMjI5MTgzNDU1WjAYMRYwFAYD VQQDDA02OTQ5OGY0Zi1kMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15AGUPNilJwPnq0XhChmvwpHBjQ4QwY7u7tyjcmP+6d64BHPlUEQrhif/ixT 45u3QKFsOE4pN8UbGPBvKGVycJBsnh/aMVfAttlNabGqceJUOrcWRnXOY/e87imP 27riJXwj2ujgK1ca9x04AvJ2LeAwffYaVpGo+ucCfgnu0KCASbpiHWEENALFjPzc N9gRB7j2p9COxR95dZFDXlFtODmg3IHgoSfWm3m0j/rRGxoHspQPTJ+J8M0oYolg 0kSjJzEG2TYAKGSEZOEAwVKL+pJ6hAPNqcbKTJlfnGzurqGr7w4mkZHq7ieQiKUo 4kLUU+AbGpG+lsRscV+EZAqpgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeD9XJK t+Q5H2hhmTLNyz1xXIWoMB8GA1UdIwQYMBaAFGA1FPxQg1FA8DPvqEPO6TljlqJd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMThGQS85ODQyNDQ5QzQw RUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVVRHdNLS1vUTg3cE9XT1dv bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lEVVVfRkNEVVVEd00tLW9RODdwT1dPV29sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MThGQS85ODQyNDQ5QzQwRUExMUVBQkIwMUJENDJDNEY5QUUwMi9ZRFVVX0ZDRFVV RHdNLS1vUTg3cE9XT1dvbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6YDaPYY7tseH1TDW+w2A5NYWbpuRoyKQg7SB9Wh3dxPdduLj3nFuW Y7l7C/PQUOPHyYqeqXN5N0/UMOMkHlAMFAD/9qwhsQv5WcWnLomakvZ7BX/ipUy0 heg7hHZ2Pu7/Nlly+Z1JHlEa/AYtww1kAHB+bIPenUM8g0Vc2EoWJvVG3abQF8Ex jpU7Bs/qz2D6dej9sYU0nk2BbHi/cb5RWdOroz+SCB5DP/+18dUomF2JaCb6wKoz FOx0yZGmnlfZoi06H0XL+PkcM5eozUmMpMt7Ob0mE89ZMfjSd/3qVTqMVrzvC+ZZ rfa1mqSznTXWMPEfJwylkwk6GO7r5FnN -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:18 2025 by rpki-client