This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: 7w4JkMo9MqYuex0gwKCWxsxGIf/Lkme6p+t7NIGrILw= Subject key identifier: 2E:1F:32:AA:E0:26:99:45:1C:3C:8F:B7:63:52:20:0F:D6:F0:7F:12 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 014B Signing time: Tue 23 Dec 2025 03:17:31 +0000 Manifest this update: Tue 23 Dec 2025 03:17:30 +0000 Manifest next update: Tue 30 Dec 2025 03:17:30 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: EqkyTowWK+6+bdh4Sh6CnWImSW58mGhbXrPQx/P8KCA=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: NSJGyrEWDrkxD54heabP960jKMt1bxB8Ljqg2B9Pmbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Dec 23 03:17:30 2025 GMT Not After : Dec 30 03:17:30 2025 GMT Subject: CN=694a09ca-42ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3b:13:01:2f:a1:3c:e6:a8:32:31:e7:fc:24: 3c:97:95:c4:b0:be:a0:ed:82:7e:4b:95:c7:d5:8e: d8:2c:35:fc:28:01:34:ca:6a:3d:2a:cc:99:6e:21: 3f:22:8b:06:e2:5b:fe:22:23:85:b5:c3:0c:dd:4a: 6c:3e:98:a2:2d:c2:d1:07:60:5e:07:d7:c9:00:14: 32:c6:d4:84:ef:e8:bd:f6:69:d9:c0:92:1b:c2:6b: 10:60:4a:1b:af:dc:45:6a:f3:ce:51:25:2e:4d:6f: 2e:c1:f8:a9:6e:c8:15:3c:d8:04:fc:b8:07:c9:3d: 6a:47:31:8c:05:53:b7:c0:7d:fc:d0:a6:82:c7:be: 99:05:b9:12:2a:23:c5:fb:17:90:b6:eb:79:26:4e: 08:cb:ea:a8:4a:1b:a1:92:0b:c2:bc:68:d3:0f:d5: e9:c4:4c:94:7d:21:a1:54:65:98:f5:1c:bc:2a:f1: 54:a8:22:8e:58:de:81:d3:d1:9e:2e:9f:74:35:0a: 02:a6:de:4b:78:49:9b:ab:4a:f2:1d:c7:85:eb:58: a9:1f:3c:de:0e:30:8e:9a:85:75:4e:a9:d0:58:b1: 1f:83:f5:07:be:47:9a:8a:6a:81:72:25:ea:cf:c0: b7:01:1f:70:73:13:bc:03:06:5e:53:a9:d9:5a:bd: de:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1F:32:AA:E0:26:99:45:1C:3C:8F:B7:63:52:20:0F:D6:F0:7F:12 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:c0:75:b4:7a:95:bc:2b:66:9e:32:8f:dd:c5:36:67:13:4c: 0b:df:df:b1:29:73:20:3c:85:a2:e9:4e:80:37:8a:7a:62:11: a3:e3:29:ed:15:d2:ed:e9:26:7a:6a:59:5b:da:a2:f8:4d:a3: f3:ba:dc:b6:b2:a5:25:a6:8e:1c:61:a1:dd:fa:05:5d:0b:71: 92:2d:e0:46:0f:5d:36:26:d5:24:39:f6:65:17:75:18:6d:ff: 81:80:b6:a0:4a:7d:a4:94:a1:4d:03:27:d3:80:58:07:f8:4b: 62:48:da:d6:c7:11:20:1f:6b:47:17:ee:02:11:9a:06:8a:84: 5b:2d:98:97:6f:fa:92:bb:42:7c:23:94:56:32:fe:ff:94:9b: 9f:dc:0e:81:fe:64:f1:4b:ef:56:db:48:a2:46:e9:42:32:f5: 63:fe:40:3c:cb:3e:3d:15:92:95:de:1f:f5:87:13:9c:ee:fe: 47:1f:c1:96:e4:91:ba:eb:89:bf:59:f2:82:52:be:e3:5c:88: ed:75:e5:48:63:c1:db:af:ed:93:44:76:85:bd:ef:73:cf:4c: 33:7c:2a:50:01:79:80:d3:6d:7e:f1:41:50:b4:6a:29:d1:7b: 18:27:f7:c4:d2:c2:66:6e:ad:d4:05:e2:ac:c2:44:c9:5f:77: eb:57:d3:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUxMjIzMDMxNzMwWhcNMjUxMjMwMDMxNzMwWjAYMRYwFAYD VQQDDA02OTRhMDljYS00MmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jsTAS+hPOaoMjHn/CQ8l5XEsL6g7YJ+S5XH1Y7YLDX8KAE0ymo9KsyZbiE/ IosG4lv+IiOFtcMM3UpsPpiiLcLRB2BeB9fJABQyxtSE7+i99mnZwJIbwmsQYEob r9xFavPOUSUuTW8uwfipbsgVPNgE/LgHyT1qRzGMBVO3wH380KaCx76ZBbkSKiPF +xeQtut5Jk4Iy+qoShuhkgvCvGjTD9XpxEyUfSGhVGWY9Ry8KvFUqCKOWN6B09Ge Lp90NQoCpt5LeEmbq0ryHceF61ipHzzeDjCOmoV1TqnQWLEfg/UHvkeaimqBciXq z8C3AR9wcxO8AwZeU6nZWr3e2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4fMqrg JplFHDyPt2NSIA/W8H8SMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCwHW0epW8K2aeMo/dxTZnE0wL39+xKXMgPIWi6U6AN4p6YhGj4ynt FdLt6SZ6allb2qL4TaPzuty2sqUlpo4cYaHd+gVdC3GSLeBGD102JtUkOfZlF3UY bf+BgLagSn2klKFNAyfTgFgH+EtiSNrWxxEgH2tHF+4CEZoGioRbLZiXb/qSu0J8 I5RWMv7/lJuf3A6B/mTxS+9W20iiRulCMvVj/kA8yz49FZKV3h/1hxOc7v5HH8GW 5JG664m/WfKCUr7jXIjtdeVIY8Hbr+2TRHaFve9zz0wzfCpQAXmA021+8UFQtGop 0XsYJ/fE0sJmbq3UBeKswkTJX3frV9N6 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:48 2025 by rpki-client