This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: K3vUZuV2HoFv4wNMCm8+fKarLk1hLjHKurpd95hIag4= Subject key identifier: 6A:5D:4E:3E:CE:29:C7:EB:86:5F:54:45:19:87:14:60:ED:D9:16:7B Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 021F Signing time: Tue 23 Dec 2025 01:09:38 +0000 Manifest this update: Tue 23 Dec 2025 01:09:37 +0000 Manifest next update: Tue 30 Dec 2025 01:09:37 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: wTWK36j93TmGg1S3WfeXHeKbJyJKIBAo01ZWcuCMj7s=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Dec 23 01:09:37 2025 GMT Not After : Dec 30 01:09:37 2025 GMT Subject: CN=6949ebd2-c7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e1:07:52:bc:a7:f9:44:eb:a2:40:18:44:66: aa:ee:b1:e4:18:c2:e9:96:76:06:aa:e9:a8:2d:87: 99:12:4e:03:e1:2d:45:eb:f8:65:73:61:1e:fc:c2: b3:2d:04:05:7d:1c:06:ab:3b:20:e8:6f:67:f4:04: df:b5:87:34:52:92:d8:cd:c7:88:4e:a8:fd:40:61: 06:70:08:7b:b4:39:c4:38:e5:0e:0e:09:ed:4f:3f: fa:ee:59:0c:4f:a0:21:ab:02:88:62:34:2e:35:38: b7:66:bd:01:88:5e:6f:3b:56:e0:4a:c1:e8:cf:12: ae:b5:bd:f7:c2:21:c6:18:3b:3f:99:4f:3b:fe:ae: c6:24:14:4b:e6:9e:23:8a:fc:8a:4c:94:31:8d:0e: 09:23:d8:3c:85:55:9a:99:ff:de:ee:23:a3:df:43: d2:25:36:57:67:65:82:0d:ca:ec:27:65:4e:5f:c3: 28:96:22:24:a1:9f:0e:20:bf:ec:63:6d:99:66:1e: 1f:c7:f1:62:e7:ff:d6:ff:4d:87:78:0b:e2:b6:42: f8:ae:08:27:67:b1:00:dd:bc:e1:9b:19:7b:f8:83: 56:0e:2b:41:6f:a1:9a:80:b6:2e:60:f0:2d:55:10: e3:ff:32:c1:7e:60:b5:d0:2e:34:26:f3:5b:d3:d1: 0e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5D:4E:3E:CE:29:C7:EB:86:5F:54:45:19:87:14:60:ED:D9:16:7B X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:f4:9c:ff:dd:1c:d4:e0:30:89:b5:7f:12:5e:d5:00:cc:57: 3c:1d:90:a1:7a:fe:b3:d4:73:3a:ed:40:c3:c4:f1:81:e8:3b: 3c:78:17:92:1b:87:f6:47:85:b1:47:d6:1c:51:f2:c9:31:b8: dd:44:29:4c:55:17:0e:58:71:ba:58:4f:3c:8e:e9:89:12:08: f1:d2:ac:1c:d1:ce:a2:d1:3d:ed:4e:16:d9:4b:84:db:03:0c: 08:d4:b9:59:16:a8:ed:2b:27:2b:27:45:5c:74:7a:ba:45:03: 49:51:c0:57:30:33:8e:c3:90:97:27:dc:b7:27:ce:11:40:21: 58:f8:12:d1:8e:b5:d5:56:bf:33:d1:9e:49:80:79:1f:25:b0: e3:85:fd:29:a7:59:27:fa:26:90:bd:ab:0c:75:99:15:37:35: 87:79:b6:3b:87:65:f8:06:3f:c2:bc:fe:55:66:33:66:12:8d: 8d:32:69:6d:03:68:6f:af:05:b8:8b:2e:85:71:f8:83:39:1e: 4c:dc:24:00:19:0f:9f:1c:3f:d2:be:8f:a6:80:49:d6:65:47: ff:f7:53:b4:b1:17:b2:d0:09:78:76:9a:f5:a9:ce:29:ff:2b: 50:46:bd:77:ba:9a:b3:7d:0e:7f:d0:d6:d5:fd:29:36:ac:60: 19:d0:73:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUxMjIzMDEwOTM3WhcNMjUxMjMwMDEwOTM3WjAYMRYwFAYD VQQDDA02OTQ5ZWJkMi1jN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOEHUryn+UTrokAYRGaq7rHkGMLplnYGqumoLYeZEk4D4S1F6/hlc2Ee/MKz LQQFfRwGqzsg6G9n9ATftYc0UpLYzceITqj9QGEGcAh7tDnEOOUODgntTz/67lkM T6AhqwKIYjQuNTi3Zr0BiF5vO1bgSsHozxKutb33wiHGGDs/mU87/q7GJBRL5p4j ivyKTJQxjQ4JI9g8hVWamf/e7iOj30PSJTZXZ2WCDcrsJ2VOX8MoliIkoZ8OIL/s Y22ZZh4fx/Fi5//W/02HeAvitkL4rggnZ7EA3bzhmxl7+INWDitBb6GagLYuYPAt VRDj/zLBfmC10C40JvNb09EOkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpdTj7O Kcfrhl9URRmHFGDt2RZ7MB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj9Jz/3RzU4DCJtX8SXtUAzFc8HZChev6z1HM67UDDxPGB6Ds8eBeS G4f2R4WxR9YcUfLJMbjdRClMVRcOWHG6WE88jumJEgjx0qwc0c6i0T3tThbZS4Tb AwwI1LlZFqjtKycrJ0VcdHq6RQNJUcBXMDOOw5CXJ9y3J84RQCFY+BLRjrXVVr8z 0Z5JgHkfJbDjhf0pp1kn+iaQvasMdZkVNzWHebY7h2X4Bj/CvP5VZjNmEo2NMmlt A2hvrwW4iy6FcfiDOR5M3CQAGQ+fHD/Svo+mgEnWZUf/91O0sRey0Al4dpr1qc4p /ytQRr13upqzfQ5/0NbV/Sk2rGAZ0HMz -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:43 2025 by rpki-client