This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: 5IubSDPVg9jcIikYO6HzHJSKaed2ZvU+VQwtU51dw9s= Subject key identifier: D5:9E:C7:E6:A9:46:0D:7C:C7:AF:E3:DD:05:82:3B:BE:25:4F:4E:36 Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: 0105 Signing time: Tue 02 Dec 2025 20:53:56 +0000 Manifest this update: Tue 02 Dec 2025 20:53:56 +0000 Manifest next update: Tue 09 Dec 2025 20:53:56 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: WJw+6XudqIJ3tdJKaXrwQQoI35S/nWjTBlrRBbGqhd0=) 2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: p1NZ9NnirQbZI+pUJKRFnk/LQesx95uqpmbnkuNBqak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 20:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Dec 2 20:53:56 2025 GMT Not After : Dec 9 20:53:56 2025 GMT Subject: CN=692f51e4-2503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:78:2f:c5:a3:94:5c:97:19:b0:8d:94:23:6e: 7a:f5:b1:d2:13:b9:7f:a0:c8:8a:ad:14:13:27:87: c9:68:8f:fc:82:8a:ee:4d:8d:64:30:f1:2c:4c:3e: 78:21:ea:a4:67:b4:60:03:3d:18:3c:d6:1c:e5:27: e7:ae:11:b0:9a:db:09:d7:db:e1:53:ee:96:b5:6e: 76:1b:9e:d4:da:af:94:fd:dc:56:23:ee:b5:4f:1e: 9a:35:c0:82:1c:8c:8d:c0:af:3d:e7:c9:a8:37:b4: fd:88:9b:76:b4:7e:d4:66:89:59:ee:80:e7:3a:16: da:de:86:c5:5d:0b:62:6c:5d:99:8a:b4:59:74:ff: 66:65:3f:ec:bc:7c:25:84:fc:39:79:af:ef:a4:c1: 1b:c5:4c:42:5f:2d:63:fe:99:e5:d2:5b:2f:d9:02: 79:a8:2b:51:95:b1:5e:54:4c:f5:09:77:81:bb:0a: 37:03:c9:9b:73:ab:28:fd:23:78:9f:cc:6f:c0:06: 8c:e8:34:83:f1:64:f2:8b:3b:03:30:8a:c4:d3:2b: 98:28:78:bf:cd:51:0a:b7:ff:9a:16:03:f8:8b:df: 41:76:51:a5:20:f3:29:b4:25:12:4f:4c:f1:b1:d6: ba:fd:96:52:b3:e2:2c:cc:75:66:c2:07:4f:03:72: 81:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9E:C7:E6:A9:46:0D:7C:C7:AF:E3:DD:05:82:3B:BE:25:4F:4E:36 X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:3a:19:92:16:28:df:2a:70:e2:1f:b0:d6:57:eb:b6:f4:63: 18:21:3d:93:a7:5e:17:71:27:26:7a:c2:a7:47:5d:0d:98:b9: f6:44:1a:fc:46:63:00:c1:4f:c1:67:d9:fe:6a:46:02:e4:ec: 47:65:fc:ec:8f:a7:06:3b:1a:92:bd:71:8d:0f:50:fe:e6:ec: ea:58:3c:95:7e:82:12:df:a1:be:6f:31:b8:a6:f8:96:d2:83: f4:60:3c:69:42:75:2a:0f:48:73:f1:79:08:da:d2:88:ec:43: 59:b1:8d:0f:e0:37:4d:6b:73:75:08:68:6a:b7:24:7e:1e:c5: 9d:a4:ea:4c:f5:5c:ab:44:cf:44:f4:33:80:e8:96:6c:25:d6: 9e:f1:6e:34:b2:05:4d:de:bb:e8:f2:04:7d:dd:c0:2f:a1:8b: 52:69:bd:63:df:2c:ed:36:4f:ac:fe:06:af:5c:db:74:24:ce: 0e:2d:7f:27:6f:1f:19:13:99:b6:74:d1:d7:56:af:28:07:9a: b4:28:39:7c:f0:47:7c:c7:be:57:b2:b1:8a:eb:6c:fa:f3:34: a0:b8:19:ca:30:de:a1:65:2d:f8:50:67:cd:e9:c4:3f:70:ff: f0:98:ee:7c:56:b5:11:54:1b:97:5a:12:87:8f:46:8e:eb:21: 49:61:c4:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUxMjAyMjA1MzU2WhcNMjUxMjA5MjA1MzU2WjAYMRYwFAYD VQQDEw02OTJmNTFlNC0yNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3gvxaOUXJcZsI2UI2569bHSE7l/oMiKrRQTJ4fJaI/8goruTY1kMPEsTD54 IeqkZ7RgAz0YPNYc5SfnrhGwmtsJ19vhU+6WtW52G57U2q+U/dxWI+61Tx6aNcCC HIyNwK8958moN7T9iJt2tH7UZolZ7oDnOhba3obFXQtibF2ZirRZdP9mZT/svHwl hPw5ea/vpMEbxUxCXy1j/pnl0lsv2QJ5qCtRlbFeVEz1CXeBuwo3A8mbc6so/SN4 n8xvwAaM6DSD8WTyizsDMIrE0yuYKHi/zVEKt/+aFgP4i99BdlGlIPMptCUST0zx sda6/ZZSs+IszHVmwgdPA3KBOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWex+ap Rg18x6/j3QWCO74lT042MB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2OhmSFijfKnDiH7DWV+u29GMYIT2Tp14XcScmesKnR10NmLn2RBr8 RmMAwU/BZ9n+akYC5OxHZfzsj6cGOxqSvXGND1D+5uzqWDyVfoIS36G+bzG4pviW 0oP0YDxpQnUqD0hz8XkI2tKI7ENZsY0P4DdNa3N1CGhqtyR+HsWdpOpM9VyrRM9E 9DOA6JZsJdae8W40sgVN3rvo8gR93cAvoYtSab1j3yztNk+s/gavXNt0JM4OLX8n bx8ZE5m2dNHXVq8oB5q0KDl88Ed8x75XsrGK62z68zSguBnKMN6hZS34UGfN6cQ/ cP/wmO58VrURVBuXWhKHj0aO6yFJYcQ7 -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:48 2025 by rpki-client