This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: ffcqDNMj0LfVmcK79eTuPMJ5NIOw6VmQNDFLLJsW0yo= Subject key identifier: D7:77:94:64:45:BE:EB:29:2C:B7:2E:55:5E:A2:87:36:33:43:57:0E Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 3501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34FB Signing time: Thu 18 Dec 2025 14:42:16 +0000 Manifest this update: Thu 18 Dec 2025 14:42:15 +0000 Manifest next update: Thu 25 Dec 2025 14:42:15 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: P1BDqFi/n9LmVrlSC7iB443AQG4QXhiAw3/HNh1AXJs=) 2: 4731AAD2D9A211F092913C6268D3641D.roa (hash: 9I/aQr6sgxc6dIwQzYUlc8auTinO+9HPObIlo6LbZHs=) 3: 5D8B2B06D90B11F0A960BEC67CD3641D.roa (hash: azYdkvf28Hm+el5cCXE3/Bju5Cb90/2fU/85uVO1sCM=) 4: 4821776AD9A211F092913C6268D3641D.roa (hash: cKf3TaoYAlPwDB+K3qIkWpJNLCSUjbzcobiZY86mFj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Dec 18 14:42:15 2025 GMT Not After : Dec 25 14:42:15 2025 GMT Subject: CN=694412c7-2feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:de:ab:0a:ca:60:5b:65:64:9d:00:bc:5d:12: 0d:eb:b6:d6:24:cf:2b:27:81:2f:2e:7a:e2:35:75: e1:93:23:a6:ad:63:90:23:d2:0d:ad:21:a4:fe:0d: c3:d3:a7:eb:ba:a8:14:8e:d1:0b:4b:c3:5d:fb:5c: be:31:18:71:48:a3:d7:f7:bc:ff:d0:b3:6c:8c:c7: 65:f1:9b:47:bd:de:07:f2:52:f2:f9:87:c8:23:1b: 8d:da:c7:c2:87:84:da:78:d8:32:d6:a5:22:f0:90: 81:85:fe:fd:9b:20:09:9d:5e:d1:d2:ca:52:d8:ba: 71:b1:89:ed:ff:85:fe:b8:e9:8f:72:5c:47:6f:0b: f1:d3:d8:6c:36:8a:a3:4c:e8:21:31:7f:90:98:0d: 88:cf:0d:49:c2:2d:90:45:2d:c1:01:37:f1:7a:85: 9f:5b:49:1a:7c:47:58:b9:18:27:89:be:bf:35:84: 8f:a1:d7:04:c0:8b:2a:3e:7a:13:93:6a:46:fc:99: 12:6b:ca:e6:42:fb:91:d9:33:e4:47:a4:60:ae:6e: 37:2f:1b:9f:5e:90:cc:1a:5a:04:b6:1b:f9:e6:9d: fd:b8:3e:a1:2c:c1:b4:15:73:d8:63:f2:8a:32:76: 66:be:48:c1:7e:cb:9b:14:8d:78:4f:c6:06:56:6c: 1d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:77:94:64:45:BE:EB:29:2C:B7:2E:55:5E:A2:87:36:33:43:57:0E X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:e4:95:77:a5:d7:96:ce:fe:8d:e1:37:49:c4:48:f7:5b:b2: 1e:92:21:69:51:a6:c3:62:1c:bc:f5:a8:97:1d:91:8b:81:1e: 92:bf:5b:4a:4b:0a:c5:14:c8:12:62:e5:de:cb:41:4f:a4:01: cd:d7:6a:a5:d2:62:99:66:16:9b:f3:9f:46:ea:1f:31:bc:f8: a1:4c:5d:bd:76:30:89:09:bc:f9:0c:36:e9:4a:38:7f:db:49: 02:ed:7a:14:f2:79:8d:a7:c9:71:43:ef:e0:44:04:93:a2:18: 1c:e6:e1:40:6c:0c:94:9f:0d:88:33:10:ac:32:f9:83:77:85: 07:14:c9:36:ce:2f:fc:b1:f0:fa:0f:0a:c6:cc:07:bb:10:34: e7:89:16:16:c9:08:b4:48:76:9e:c6:6f:64:e2:f7:c3:71:e8: fa:6f:31:05:f6:78:0c:7e:e6:1e:f0:49:8c:d0:ea:7d:ab:fb: bd:c9:e1:6b:60:7c:25:e0:39:09:d0:69:8a:d8:3c:50:07:83: 21:35:5b:00:31:b9:30:97:fe:0e:cc:c9:1f:34:fa:d2:b3:03: 4d:ed:f3:e6:f2:a6:33:8f:0c:5a:04:fe:9d:55:b5:5d:fe:06: fe:14:81:f9:5d:8c:fd:f6:46:80:b3:0c:75:7e:0a:e5:17:87: df:0d:ec:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUxMjE4MTQ0MjE1WhcNMjUxMjI1MTQ0MjE1WjAYMRYwFAYD VQQDDA02OTQ0MTJjNy0yZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3t6rCspgW2VknQC8XRIN67bWJM8rJ4EvLnriNXXhkyOmrWOQI9INrSGk/g3D 06fruqgUjtELS8Nd+1y+MRhxSKPX97z/0LNsjMdl8ZtHvd4H8lLy+YfIIxuN2sfC h4TaeNgy1qUi8JCBhf79myAJnV7R0spS2LpxsYnt/4X+uOmPclxHbwvx09hsNoqj TOghMX+QmA2Izw1Jwi2QRS3BATfxeoWfW0kafEdYuRgnib6/NYSPodcEwIsqPnoT k2pG/JkSa8rmQvuR2TPkR6Rgrm43LxufXpDMGloEthv55p39uD6hLMG0FXPYY/KK MnZmvkjBfsubFI14T8YGVmwdEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNd3lGRF vuspLLcuVV6ihzYzQ1cOMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA5JV3pdeWzv6N4TdJxEj3W7IekiFpUabDYhy89aiXHZGLgR6Sv1tK SwrFFMgSYuXey0FPpAHN12ql0mKZZhab859G6h8xvPihTF29djCJCbz5DDbpSjh/ 20kC7XoU8nmNp8lxQ+/gRASTohgc5uFAbAyUnw2IMxCsMvmDd4UHFMk2zi/8sfD6 DwrGzAe7EDTniRYWyQi0SHaexm9k4vfDcej6bzEF9ngMfuYe8EmM0Op9q/u9yeFr YHwl4DkJ0GmK2DxQB4MhNVsAMbkwl/4OzMkfNPrSswNN7fPm8qYzjwxaBP6dVbVd /gb+FIH5XYz99kaAswx1fgrlF4ffDeya -----END CERTIFICATE-----Generated at Fri Dec 19 10:40:51 2025 by rpki-client