This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: b14s1QFsAsirwetrX1vR/ApNznCPruNdpPJd9u2v84c= Subject key identifier: 7D:8B:4A:A4:8A:95:D2:47:C7:1D:99:E5:4A:BD:63:08:FB:8A:86:A7 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 0159 Signing time: Tue 23 Dec 2025 03:07:55 +0000 Manifest this update: Tue 23 Dec 2025 03:07:54 +0000 Manifest next update: Tue 30 Dec 2025 03:07:54 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: oYARsDRKCCyYKXYH7NU9S8aoZayqcJ5cTTu8bzWgvs4=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Dec 23 03:07:54 2025 GMT Not After : Dec 30 03:07:54 2025 GMT Subject: CN=694a078a-6dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:6e:e5:2a:86:81:6a:e3:78:5a:b4:f7:26: 09:ab:6c:4c:b3:04:ef:e0:e8:0b:1b:57:9b:7c:c2: a0:de:d5:fa:49:55:df:e8:d1:22:87:58:8e:76:9e: 44:92:5a:34:87:57:22:eb:47:29:df:7b:79:78:2f: 8f:85:02:4a:92:35:3b:ca:2e:f7:7d:ea:ac:f4:49: 44:9c:16:2b:1b:25:ae:1e:b6:43:62:42:11:86:cb: 3b:86:bb:b8:dd:59:ae:c4:4e:82:07:fd:97:2d:2a: c2:d6:cc:68:cb:6c:58:0f:a6:ea:3d:61:a3:0e:c7: 33:63:e7:89:93:e7:be:6e:ef:1c:1d:b0:d1:b8:d8: 5c:83:e8:72:fc:36:fb:84:a8:04:7d:80:e9:21:26: e2:3d:af:ef:dc:56:b3:b3:84:ba:54:6e:25:aa:a1: 72:f4:b5:5c:b4:5b:9d:85:04:dc:c9:bc:40:0e:cd: 0f:32:4e:6c:cd:38:73:f4:04:36:46:6c:ae:2c:5f: ef:e1:ec:17:33:8c:5c:a0:0b:3e:2b:bf:4e:3b:8a: 21:cc:e9:01:95:e4:a2:23:55:00:40:e6:e4:d4:0d: 38:d6:22:55:7a:45:61:d5:a7:61:a4:9f:1f:65:73: 6e:b3:8e:69:dc:9b:b3:a5:1b:86:68:86:95:a1:e1: 2d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8B:4A:A4:8A:95:D2:47:C7:1D:99:E5:4A:BD:63:08:FB:8A:86:A7 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:7a:f7:1a:dc:5f:b7:72:f4:99:3e:cb:64:e2:8d:74:41:08: d9:27:0c:c1:c6:c9:2a:f5:a1:cc:1b:00:43:14:e1:f6:bb:51: b9:90:23:56:de:bd:9f:ea:19:5d:98:49:fe:e8:0f:85:47:e3: b4:e9:1b:ac:de:d2:de:a9:e4:c6:62:c2:2e:df:d5:27:3b:02: 8c:f0:e3:b6:94:75:13:d3:70:fc:34:f3:b9:65:e1:20:64:16: df:69:fc:e3:23:40:e3:70:de:99:f6:49:75:3d:78:18:c2:30: c5:c8:17:54:62:d5:b0:e4:be:55:79:88:e0:99:8c:0c:26:95: 8a:a7:c8:70:90:88:f2:86:3f:07:e8:92:8e:2c:ab:8b:33:b8: 55:71:01:95:01:6b:62:52:6e:12:17:fc:3b:8f:e8:ee:96:6b: 74:1b:08:f9:13:27:09:1b:14:4e:c4:13:6f:78:13:3a:20:54: 6f:77:af:31:a9:f7:4f:98:71:59:a2:0d:57:d7:db:46:6f:7b: 83:c7:7e:d9:75:e3:34:f3:ac:6a:5f:aa:ce:90:0e:06:fd:74: 3f:f3:0a:38:89:c0:4e:2f:4e:31:69:d6:9e:4b:99:7f:bc:ec: ec:6a:af:d9:74:d6:b8:07:c0:31:f0:bd:bd:d6:77:d2:b0:7b: 41:11:61:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUxMjIzMDMwNzU0WhcNMjUxMjMwMDMwNzU0WjAYMRYwFAYD VQQDDA02OTRhMDc4YS02ZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZRu5SqGgWrjeFq09yYJq2xMswTv4OgLG1ebfMKg3tX6SVXf6NEih1iOdp5E klo0h1ci60cp33t5eC+PhQJKkjU7yi73feqs9ElEnBYrGyWuHrZDYkIRhss7hru4 3VmuxE6CB/2XLSrC1sxoy2xYD6bqPWGjDsczY+eJk+e+bu8cHbDRuNhcg+hy/Db7 hKgEfYDpISbiPa/v3Fazs4S6VG4lqqFy9LVctFudhQTcybxADs0PMk5szThz9AQ2 RmyuLF/v4ewXM4xcoAs+K79OO4ohzOkBleSiI1UAQObk1A041iJVekVh1adhpJ8f ZXNus45p3JuzpRuGaIaVoeEt3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2LSqSK ldJHxx2Z5Uq9Ywj7ioanMB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5evca3F+3cvSZPstk4o10QQjZJwzBxskq9aHMGwBDFOH2u1G5kCNW 3r2f6hldmEn+6A+FR+O06Rus3tLeqeTGYsIu39UnOwKM8OO2lHUT03D8NPO5ZeEg ZBbfafzjI0DjcN6Z9kl1PXgYwjDFyBdUYtWw5L5VeYjgmYwMJpWKp8hwkIjyhj8H 6JKOLKuLM7hVcQGVAWtiUm4SF/w7j+julmt0Gwj5EycJGxROxBNveBM6IFRvd68x qfdPmHFZog1X19tGb3uDx37ZdeM086xqX6rOkA4G/XQ/8wo4icBOL04xadaeS5l/ vOzsaq/ZdNa4B8Ax8L291nfSsHtBEWGC -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:10 2025 by rpki-client