This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft File: Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft (raw, json) Hash identifier: k+oGbJEYPooWvtWAIWnEvW5iYLbjrGChufvVrMn+lro= Subject key identifier: 1B:0B:4A:C2:C7:9B:B1:B1:2E:2D:5E:50:D2:73:55:FC:CE:2E:FA:88 Authority key identifier: 63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 Certificate issuer: /CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Certificate serial: 0829 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft Manifest number: 0820 Signing time: Mon 22 Dec 2025 20:14:44 +0000 Manifest this update: Mon 22 Dec 2025 20:14:44 +0000 Manifest next update: Mon 29 Dec 2025 20:14:44 +0000 Files and hashes: 1: Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl (hash: HcPcasQeAHAeOwS2WfCcdE6yuEvDVvxzY5+IeZRvhTM=) 2: 7634D328351411EBBF864670C4F9AE02.roa (hash: gJ6rfZA4kdz2sP4zhVk5qWSiiFvdYYEjJ3d1LC4TVQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB238, serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Validity Not Before: Dec 22 20:14:44 2025 GMT Not After : Dec 29 20:14:44 2025 GMT Subject: CN=6949a6b4-bc71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ce:4f:35:26:cc:e2:fc:d9:bd:ae:10:e2:bc: d7:66:94:6c:5d:13:77:e1:0a:b2:bf:a8:c8:d8:2d: 12:af:03:34:b5:9f:81:21:7b:82:3d:e7:c0:1b:68: 98:f3:e8:1d:07:94:1f:89:46:1b:51:bf:e8:fe:ee: 48:c2:ab:ad:8e:d5:e4:10:83:0b:11:bc:1c:ba:38: b1:6d:36:45:2e:37:28:8e:cb:33:a2:5e:49:62:32: d8:5e:d7:10:fe:40:fb:34:8d:7d:d3:cd:60:fd:a4: 76:66:99:e3:ff:63:e2:70:54:e9:33:29:7d:3e:c1: 7f:30:76:74:6a:4f:da:40:a2:b0:f1:e9:79:dd:d4: 81:06:64:ec:16:8e:31:0f:eb:b0:34:74:82:67:d9: e7:00:59:b0:1c:c4:a1:da:de:0b:c1:f0:1f:0f:50: 7a:71:d3:4a:dd:78:c5:9d:2e:73:11:a6:23:c8:d1: b3:c9:d1:17:35:42:7b:5d:cb:6b:0e:f5:ca:32:7b: e9:34:01:26:66:c7:7c:57:a9:13:ea:93:eb:ec:59: 13:cd:b6:9e:1b:96:90:65:c4:eb:74:ef:e2:74:49: 3d:73:50:fb:b5:c2:16:ed:54:a7:21:02:b1:fb:8f: 36:76:c3:34:83:4f:4b:16:4c:00:93:a4:23:00:e7: 9a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0B:4A:C2:C7:9B:B1:B1:2E:2D:5E:50:D2:73:55:FC:CE:2E:FA:88 X509v3 Authority Key Identifier: keyid:63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c5:98:85:eb:7a:3e:17:29:2e:63:31:58:1d:e2:36:df:4d: b5:cd:ee:d0:08:62:63:4c:07:09:dd:b2:0d:9f:54:52:b2:8e: 51:ee:f1:93:e2:8b:ad:23:f8:56:85:12:f4:43:94:e1:05:12: cb:bc:27:0a:8b:ad:8b:51:2d:cb:d2:0b:5e:27:09:91:0e:b6: 39:e8:a7:61:74:0e:fe:c2:92:f1:8a:44:7c:6d:9a:84:88:f0: 7f:0a:03:2a:a6:98:23:a1:de:a5:b0:f3:b0:c7:50:c8:be:f4: b3:4a:08:60:1f:9c:21:96:48:3d:15:a0:8e:4b:45:14:12:a9: 62:1d:43:b6:e2:95:fc:47:9b:fd:ef:35:90:a4:ad:02:91:52: 37:7e:07:13:c1:81:bd:ff:3e:aa:08:eb:94:41:fd:74:6f:13: aa:c7:b1:23:b3:91:c4:b4:b0:ba:6e:64:68:3e:98:bc:46:50: 60:ea:b7:ac:0b:e7:8e:75:db:a3:1f:e7:25:55:ef:3a:df:10: bd:14:83:43:27:51:f1:21:b3:82:8a:53:0b:a7:3e:ad:81:7a: 44:58:a4:41:55:ed:79:0d:1d:ef:0d:bb:22:66:5e:47:2a:ef: 2f:dc:4a:d3:45:14:05:06:e1:bf:0f:6e:9c:49:7b:bd:99:3e: d8:fa:d8:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMzgxMTAvBgNVBAUTKDYzRkFGNEQyM0U2ODNFOTNGNjA3NjMwRERGRkQ0QjFB RjYzMzNGMDAwHhcNMjUxMjIyMjAxNDQ0WhcNMjUxMjI5MjAxNDQ0WjAYMRYwFAYD VQQDDA02OTQ5YTZiNC1iYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M5PNSbM4vzZva4Q4rzXZpRsXRN34Qqyv6jI2C0SrwM0tZ+BIXuCPefAG2iY 8+gdB5QfiUYbUb/o/u5IwqutjtXkEIMLEbwcujixbTZFLjcojsszol5JYjLYXtcQ /kD7NI19081g/aR2Zpnj/2PicFTpMyl9PsF/MHZ0ak/aQKKw8el53dSBBmTsFo4x D+uwNHSCZ9nnAFmwHMSh2t4LwfAfD1B6cdNK3XjFnS5zEaYjyNGzydEXNUJ7Xctr DvXKMnvpNAEmZsd8V6kT6pPr7FkTzbaeG5aQZcTrdO/idEk9c1D7tcIW7VSnIQKx +482dsM0g09LFkwAk6QjAOeaxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsLSsLH m7GxLi1eUNJzVfzOLvqIMB8GA1UdIwQYMBaAFGP69NI+aD6T9gdjDd/9Sxr2Mz8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIzOC84QzdBMzM2OEZE RkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1BwUDJCMk1OM18xTEd2WXpQ d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfcjAwajVvUHBQMkIyTU4zXzFMR3ZZelB3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIzOC84QzdBMzM2OEZERkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1Bw UDJCMk1OM18xTEd2WXpQd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcxZiF63o+FykuYzFYHeI23021ze7QCGJjTAcJ3bINn1RSso5R7vGT 4outI/hWhRL0Q5ThBRLLvCcKi62LUS3L0gteJwmRDrY56KdhdA7+wpLxikR8bZqE iPB/CgMqppgjod6lsPOwx1DIvvSzSghgH5whlkg9FaCOS0UUEqliHUO24pX8R5v9 7zWQpK0CkVI3fgcTwYG9/z6qCOuUQf10bxOqx7Ejs5HEtLC6bmRoPpi8RlBg6res C+eOddujH+clVe863xC9FINDJ1HxIbOCilMLpz6tgXpEWKRBVe15DR3vDbsiZl5H Ku8v3ErTRRQFBuG/D26cSXu9mT7Y+tjf -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:32 2025 by rpki-client