This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: CF33b7L7+9sEZQSWXS7Nz0Q4DdFs+UUFlOwg/YPxicA= Subject key identifier: 53:A7:2E:BD:5D:12:CF:7E:86:D9:0D:E5:D6:3B:5D:98:BB:14:03:68 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 60 Signing time: Fri 19 Dec 2025 06:04:42 +0000 Manifest this update: Fri 19 Dec 2025 06:04:42 +0000 Manifest next update: Fri 26 Dec 2025 06:04:42 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: HpNLpZVIH/AYj9SQBOGueYfPKzTt/0oasCI2Ei5OtJQ=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Dec 19 06:04:42 2025 GMT Not After : Dec 26 06:04:42 2025 GMT Subject: CN=6944eafa-10a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a6:70:8c:05:67:0a:4d:ae:fb:60:6a:15:cc: bd:0d:35:f3:17:84:9f:1b:12:33:10:96:23:ff:02: 11:5c:02:79:ef:0b:a9:db:b6:70:2e:0e:55:c6:65: a4:cc:64:f2:6d:15:77:6e:e6:6f:9b:d1:47:1c:7f: e2:8e:c1:aa:8f:9d:50:19:7a:69:42:e1:4d:1c:d9: f3:b0:80:62:17:a0:6d:47:7f:af:6b:37:aa:50:cc: 37:e4:12:e9:52:23:0a:da:d1:c2:9c:7c:7c:1c:7a: ff:bf:aa:02:02:6a:2a:10:6d:79:30:3b:0c:15:4c: 4c:36:5e:ac:3b:6b:ad:c9:55:3f:c3:a8:d1:00:0f: 53:c5:0d:8c:c9:e5:23:c5:ae:05:50:01:92:56:c2: 37:3a:39:cf:5c:90:c9:ae:d5:88:be:83:b5:e2:0a: 7a:54:28:04:99:7a:c5:62:2c:37:fd:44:de:89:d2: de:7b:64:f4:3f:0c:b6:9d:39:48:86:a2:6a:23:ba: 3e:1e:6b:dc:ba:e3:b0:c7:77:e7:70:c4:91:9a:e9: 9f:a9:d6:07:1b:29:93:10:62:81:61:02:b3:44:db: ac:ee:24:51:f2:0a:82:3d:58:22:c6:2b:9d:97:fa: ac:96:17:60:20:bc:90:03:dc:e8:51:6b:b9:bd:64: 89:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A7:2E:BD:5D:12:CF:7E:86:D9:0D:E5:D6:3B:5D:98:BB:14:03:68 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d4:e3:b8:09:98:75:9c:f7:83:bc:2d:61:8a:b4:ff:ea:a9: ab:71:6c:6f:6e:ef:74:98:36:47:43:f1:cf:fc:e3:e5:b0:b3: 61:5f:a6:95:b1:2f:90:fc:20:21:d2:44:3d:6e:1e:08:8b:07: fc:f0:20:f1:11:c8:39:09:b8:b8:cf:9b:5b:47:0a:ef:29:7d: 9b:30:75:09:51:29:a3:3e:dc:e2:89:d9:8d:43:66:03:5d:ef: e8:6e:88:1d:55:4b:99:7f:1f:e4:3d:03:97:85:8c:d9:d4:e2: 76:7e:41:10:43:17:af:2a:28:e1:b2:2c:05:2d:3a:31:2b:71: 57:cc:57:55:45:83:cd:15:98:d4:fb:0f:11:55:ce:39:58:79: 1e:0d:10:88:e2:24:69:d9:63:1c:fd:20:37:b5:08:c6:a5:d1: aa:fd:e6:d6:ca:51:f6:db:6e:f8:21:67:1a:0d:33:94:6c:b0: 4b:f8:2e:d7:89:76:78:8b:57:cf:55:7d:4a:f3:da:ce:71:5f: ae:9f:08:8d:c8:19:cb:a0:2d:ef:72:ef:bb:28:5f:46:44:03: 87:33:f1:ab:27:15:a0:e1:6c:a2:4b:10:55:0f:f8:84:5a:cc: dd:8b:e3:57:35:73:58:64:9f:c2:53:ff:67:ff:34:c1:16:39: 96:52:32:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNTEyMTkwNjA0NDJaFw0yNTEyMjYwNjA0NDJaMBgxFjAUBgNV BAMMDTY5NDRlYWZhLTEwYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtpnCMBWcKTa77YGoVzL0NNfMXhJ8bEjMQliP/AhFcAnnvC6nbtnAuDlXGZaTM ZPJtFXdu5m+b0Uccf+KOwaqPnVAZemlC4U0c2fOwgGIXoG1Hf69rN6pQzDfkEulS Iwra0cKcfHwcev+/qgICaioQbXkwOwwVTEw2Xqw7a63JVT/DqNEAD1PFDYzJ5SPF rgVQAZJWwjc6Oc9ckMmu1Yi+g7XiCnpUKASZesViLDf9RN6J0t57ZPQ/DLadOUiG omojuj4ea9y647DHd+dwxJGa6Z+p1gcbKZMQYoFhArNE26zuJFHyCoI9WCLGK52X +qyWF2AgvJAD3OhRa7m9ZInTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU6cuvV0S z36G2Q3l1jtdmLsUA2gwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG/U47gJmHWc94O8LWGKtP/qqatxbG9u73SYNkdD8c/84+Wws2FfppWx L5D8ICHSRD1uHgiLB/zwIPERyDkJuLjPm1tHCu8pfZswdQlRKaM+3OKJ2Y1DZgNd 7+huiB1VS5l/H+Q9A5eFjNnU4nZ+QRBDF68qKOGyLAUtOjErcVfMV1VFg80VmNT7 DxFVzjlYeR4NEIjiJGnZYxz9IDe1CMal0ar95tbKUfbbbvghZxoNM5RssEv4LteJ dniLV89VfUrz2s5xX66fCI3IGcugLe9y77soX0ZEA4cz8asnFaDhbKJLEFUP+IRa zN2L41c1c1hkn8JT/2f/NMEWOZZSMjk= -----END CERTIFICATE-----Generated at Sat Dec 20 20:00:30 2025 by rpki-client