This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: lxPtfyvlfsBo+bIL5N1NsScMb8ErIYRNCjnsbG3hBBY= Subject key identifier: 67:A9:B9:43:3C:73:1C:24:9C:6A:E5:A1:7B:18:30:11:A0:19:23:57 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B88 Signing time: Mon 22 Dec 2025 18:32:58 +0000 Manifest this update: Mon 22 Dec 2025 18:32:57 +0000 Manifest next update: Mon 29 Dec 2025 18:32:57 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: a8MNK2rJULx/gtNgHog6ci4zFesjy1RrGAaIrmWFr3c=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Dec 22 18:32:57 2025 GMT Not After : Dec 29 18:32:57 2025 GMT Subject: CN=69498eda-c14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:58:75:96:38:46:46:13:49:65:4c:77:a5: 4f:25:fd:f5:3d:5f:66:e5:81:d8:ac:bf:80:d3:e0: d6:05:c8:ed:9a:75:0e:6f:3a:61:ac:11:25:6f:14: 9b:8e:22:e1:a7:b7:8e:d9:78:3b:90:7b:7c:5f:a8: aa:22:d6:25:d3:34:a7:65:64:54:8c:d9:32:9d:5a: ab:89:fa:50:28:49:2f:93:71:79:5e:a4:d6:6a:20: 4f:2f:06:84:10:64:05:72:c6:cd:d0:34:e6:f0:85: 2d:81:73:6e:60:c3:5a:c3:09:9e:08:ff:a5:2f:c7: f8:8d:c1:12:db:72:aa:df:02:d4:54:58:77:97:e0: 4c:9f:f3:bf:ae:b9:95:1b:75:b3:59:ef:eb:79:25: 24:df:6b:2a:4c:0f:48:7d:b0:b7:10:7b:e8:bc:de: 84:99:89:f1:48:63:80:98:ea:fc:26:66:2c:d4:db: 6f:65:ac:f1:4a:5d:17:18:25:80:b7:08:c4:d0:84: 1d:9c:01:88:60:8b:e2:48:a7:a8:28:66:3f:85:43: 11:11:68:f0:35:6c:a6:65:9c:84:25:ca:c9:c5:c9: 70:0c:ca:ac:ae:cf:a9:39:b9:6d:5a:35:f2:1a:28: 96:9b:58:02:82:b5:41:63:fc:f5:db:55:ad:8d:9a: 79:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A9:B9:43:3C:73:1C:24:9C:6A:E5:A1:7B:18:30:11:A0:19:23:57 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:37:7d:e4:8c:61:73:0b:f9:15:21:f4:d4:77:13:e6:bd:8b: ea:b9:6c:7f:c4:0b:a9:78:4d:74:f7:07:48:29:b4:8a:66:28: 41:94:8c:1a:72:7b:94:66:0b:da:dc:d7:1b:58:96:71:d7:c5: ef:a5:8d:b2:5b:36:6a:cb:38:e1:00:bc:2b:85:1d:82:02:5a: 85:a8:7b:8b:20:4d:1d:6a:92:d0:0e:d4:5b:88:9c:4f:05:17: 69:33:ef:73:0f:da:af:cb:23:2b:79:5b:16:0c:91:46:5f:5c: 7d:54:40:06:76:cb:1e:38:63:02:d5:e0:9c:d7:16:9b:48:46: a2:55:96:a0:e6:40:14:b5:fc:ac:1b:e5:89:64:c7:53:33:ed: 45:1a:38:1b:80:8c:41:2d:d4:53:13:50:9b:b7:da:56:18:c5: 2d:ad:de:cc:11:1c:95:c6:a9:5a:62:34:39:2e:7b:a6:d5:b8: 5e:c0:f4:99:fd:1b:fb:21:75:bb:e6:3d:11:95:67:10:aa:54: 9f:a7:86:4e:ab:3f:84:31:8e:30:f7:15:12:ee:9d:98:7c:ad: 39:2f:83:95:cf:42:13:42:e5:7d:c3:e1:5d:b8:92:3b:0c:98: 78:2a:43:b5:70:47:7a:c4:e6:10:d3:9f:62:b2:67:08:61:86: 16:00:52:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUxMjIyMTgzMjU3WhcNMjUxMjI5MTgzMjU3WjAYMRYwFAYD VQQDDA02OTQ5OGVkYS1jMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoctYdZY4RkYTSWVMd6VPJf31PV9m5YHYrL+A0+DWBcjtmnUObzphrBElbxSb jiLhp7eO2Xg7kHt8X6iqItYl0zSnZWRUjNkynVqrifpQKEkvk3F5XqTWaiBPLwaE EGQFcsbN0DTm8IUtgXNuYMNawwmeCP+lL8f4jcES23Kq3wLUVFh3l+BMn/O/rrmV G3WzWe/reSUk32sqTA9IfbC3EHvovN6EmYnxSGOAmOr8JmYs1NtvZazxSl0XGCWA twjE0IQdnAGIYIviSKeoKGY/hUMREWjwNWymZZyEJcrJxclwDMqsrs+pObltWjXy GiiWm1gCgrVBY/z121WtjZp57QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGepuUM8 cxwknGrloXsYMBGgGSNXMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdN33kjGFzC/kVIfTUdxPmvYvquWx/xAupeE109wdIKbSKZihBlIwa cnuUZgva3NcbWJZx18XvpY2yWzZqyzjhALwrhR2CAlqFqHuLIE0dapLQDtRbiJxP BRdpM+9zD9qvyyMreVsWDJFGX1x9VEAGdsseOGMC1eCc1xabSEaiVZag5kAUtfys G+WJZMdTM+1FGjgbgIxBLdRTE1Cbt9pWGMUtrd7MERyVxqlaYjQ5Lnum1bhewPSZ /Rv7IXW75j0RlWcQqlSfp4ZOqz+EMY4w9xUS7p2YfK05L4OVz0ITQuV9w+FduJI7 DJh4KkO1cEd6xOYQ059ismcIYYYWAFKF -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:00 2025 by rpki-client