This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: P9iN8UKSuE6dF1zy6OhW9ff50gAB/2gEKQz1vASQstA= Subject key identifier: 7E:AC:14:B0:CD:60:01:2A:65:50:56:DE:51:8E:BE:87:B4:E4:0C:78 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 60 Signing time: Tue 23 Dec 2025 05:58:29 +0000 Manifest this update: Tue 23 Dec 2025 05:58:28 +0000 Manifest next update: Tue 30 Dec 2025 05:58:28 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: 2j4HoL3cRpsYO60tiseDvSOtcmy385vdvcGpqNsQ9qM=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Dec 23 05:58:28 2025 GMT Not After : Dec 30 05:58:28 2025 GMT Subject: CN=694a2f84-aea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3e:6c:ac:14:3e:93:a2:33:c5:2f:2e:46:ea: 0e:79:d9:5e:85:b8:58:0b:f5:13:c7:c9:2d:39:58: a4:77:c5:69:af:6c:62:17:62:bd:a4:56:61:22:d7: 11:89:f7:94:dd:0c:57:8c:e3:b7:9a:4d:77:13:48: d2:23:58:f0:fe:a0:f1:cf:47:f6:16:e5:42:d4:8f: 48:7a:e9:66:a7:c2:08:e7:db:57:c8:1a:a3:7a:92: cd:c3:96:92:df:e2:f7:a7:44:98:a5:7f:c5:18:90: 95:50:4b:a5:de:bb:b7:f9:c5:09:f7:43:a0:24:e9: e0:91:78:27:a0:be:9c:b5:42:02:96:5f:67:1d:d9: 89:0b:d4:83:a4:38:c5:7e:69:d0:bf:38:7c:13:ec: b3:62:b7:e4:32:83:8d:54:4f:e5:b8:e6:8a:54:6b: 29:7b:fd:8a:e7:4e:ca:6e:d1:ab:45:67:38:5c:0e: 49:aa:9b:b5:ee:1e:b8:ef:46:ec:a0:a1:c9:24:a4: bf:5b:30:4e:43:f7:f0:84:df:ea:73:2c:c6:c8:a7: ff:e8:7a:7a:8f:cb:a4:a9:11:5f:88:d1:cc:d5:fa: b7:ea:02:f5:f5:b1:9a:40:22:41:ab:ba:c8:18:33: 74:47:bc:9b:c8:48:a3:1a:0c:1a:bf:63:ef:c6:40: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AC:14:B0:CD:60:01:2A:65:50:56:DE:51:8E:BE:87:B4:E4:0C:78 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e9:56:f9:0a:f5:14:aa:be:11:b9:8b:c1:da:0e:8c:8d:d7: 2b:35:48:90:f7:e7:ea:a5:d7:c2:42:1e:e3:92:5d:91:0c:64: 0a:9f:2f:05:ff:70:b4:5d:81:e7:91:23:e1:47:f4:e9:5b:05: 89:d7:79:36:b9:ec:b0:46:7a:9d:88:17:7e:86:77:2b:e1:16: 14:33:22:17:c0:6f:4a:a1:53:be:6f:05:79:21:2e:a9:13:a3: 26:d0:6a:4a:7e:7c:ca:cb:c7:2d:56:0a:9b:bf:93:6a:57:7b: 4f:f2:e7:b8:7d:26:4f:0d:ab:74:c1:e6:b1:1e:c5:52:d3:e2: 5a:6f:4e:31:65:85:23:3f:9b:01:03:8d:4a:c9:6f:91:9d:f9: f7:02:26:27:07:6b:1f:cc:be:7d:51:2a:81:38:65:92:d7:ae: 1f:04:67:c5:32:31:2f:75:68:5b:68:f9:1b:09:2c:a3:61:df: 1d:4a:07:54:9b:d3:1f:1c:0e:9e:4f:42:f4:42:1a:71:8b:dd: 61:b8:75:66:05:9c:f9:fe:31:d2:e5:e6:78:d2:c9:45:80:e6: d8:35:2f:86:bf:97:86:f0:3c:55:8f:82:4b:1a:82:a9:e0:7f: 0f:60:27:23:f1:7a:10:a0:a6:d1:ed:25:f2:6f:64:0c:fd:f3: bd:dd:99:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTEyMjMwNTU4MjhaFw0yNTEyMzAwNTU4MjhaMBgxFjAUBgNV BAMMDTY5NGEyZjg0LWFlYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNPmysFD6TojPFLy5G6g552V6FuFgL9RPHyS05WKR3xWmvbGIXYr2kVmEi1xGJ 95TdDFeM47eaTXcTSNIjWPD+oPHPR/YW5ULUj0h66Wanwgjn21fIGqN6ks3DlpLf 4venRJilf8UYkJVQS6Xeu7f5xQn3Q6Ak6eCReCegvpy1QgKWX2cd2YkL1IOkOMV+ adC/OHwT7LNit+Qyg41UT+W45opUayl7/YrnTspu0atFZzhcDkmqm7XuHrjvRuyg ockkpL9bME5D9/CE3+pzLMbIp//oenqPy6SpEV+I0czV+rfqAvX1sZpAIkGrusgY M3RHvJvISKMaDBq/Y+/GQBONAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfqwUsM1g ASplUFbeUY6+h7TkDHgwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD/pVvkK9RSqvhG5i8HaDoyN1ys1SJD35+ql18JCHuOSXZEMZAqfLwX/ cLRdgeeRI+FH9OlbBYnXeTa57LBGep2IF36GdyvhFhQzIhfAb0qhU75vBXkhLqkT oybQakp+fMrLxy1WCpu/k2pXe0/y57h9Jk8Nq3TB5rEexVLT4lpvTjFlhSM/mwED jUrJb5Gd+fcCJicHax/Mvn1RKoE4ZZLXrh8EZ8UyMS91aFto+RsJLKNh3x1KB1Sb 0x8cDp5PQvRCGnGL3WG4dWYFnPn+MdLl5njSyUWA5tg1L4a/l4bwPFWPgksagqng fw9gJyPxehCgptHtJfJvZAz9873dmS8= -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:19 2025 by rpki-client