This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json) Hash identifier: kpDO/Hr7MAsEU/UpKdH3+1T9WOqh+JMM4OLTKBoOp38= Subject key identifier: 81:85:6C:9B:E7:F8:68:09:06:DB:F0:FC:4C:D9:E0:38:B2:26:88:E7 Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Certificate serial: 0EAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft Manifest number: 0E99 Signing time: Tue 02 Dec 2025 17:22:03 +0000 Manifest this update: Tue 02 Dec 2025 17:22:02 +0000 Manifest next update: Tue 09 Dec 2025 17:22:02 +0000 Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: kLnTatDBfJr/FNGmJhoblBifwarGoxPPxzy43BsQvT0=) 2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: ecUYAzKP1VHNDV8/DURQ3XmWYJTnzDR9mLUMMYKH7wE=) 3: 79395BE68EB311EF9A8DFC3CC4F9AE02.roa (hash: RU2Bp78eGDXSscZxxDiygRwZ64V3JmS10+rUng9roo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3759 (0xeaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54 Validity Not Before: Dec 2 17:22:02 2025 GMT Not After : Dec 9 17:22:02 2025 GMT Subject: CN=692f203a-9964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:58:d1:70:72:62:3e:aa:24:4d:03:52:c1: d5:d9:52:a2:30:68:e1:15:45:9f:02:bd:ce:45:ce: 18:f5:e1:f8:65:a9:df:d5:81:2e:a6:a9:0f:26:47: df:c7:22:5e:8b:49:ff:a4:78:4b:46:d1:ea:a6:55: 40:d7:ff:8f:24:9c:c6:31:f8:24:e5:1c:bd:8d:cc: a6:55:da:a3:e3:f9:94:d9:a7:8e:7d:af:95:f6:9e: a1:16:4a:67:3b:d8:22:0f:9d:d1:b8:0b:e8:95:b3: df:bd:c4:1a:d7:6b:03:6d:3e:d9:be:c0:cf:c9:2c: ce:8b:bb:19:f2:3b:1e:ed:44:b5:2d:99:bf:fc:ed: 56:93:35:58:da:a6:20:2b:f8:af:27:5f:93:ad:ba: e0:62:57:c6:01:db:6e:03:7d:de:5b:60:ec:6a:9a: 13:17:90:2c:d2:d9:2f:b7:6b:37:06:d9:fe:49:fb: b2:db:e5:ff:d9:fd:84:b7:f6:6f:61:f7:4a:8d:7b: c2:b9:6e:1a:0d:aa:30:fa:d9:eb:5b:93:4d:50:d9: c7:7c:6d:b1:c3:d4:da:ae:12:e5:22:ef:9b:c2:3b: be:ae:58:b8:71:b1:70:11:85:21:ba:c7:e0:74:f9: 4c:78:d1:df:74:a7:ea:47:77:ec:41:0d:4b:ea:77: d0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:85:6C:9B:E7:F8:68:09:06:DB:F0:FC:4C:D9:E0:38:B2:26:88:E7 X509v3 Authority Key Identifier: keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:3a:33:40:9e:46:c6:3a:c7:fb:fe:14:cc:04:1f:e8:9a:aa: c3:4e:78:a2:3f:3e:6d:41:1f:da:53:0f:a6:f4:86:be:4e:9f: 70:b5:59:41:40:8d:79:0b:ee:e4:e3:44:7c:1b:45:62:f5:bd: af:df:2f:73:9b:f1:6d:b4:2e:4b:51:f0:50:9a:3c:59:0f:2f: 51:8d:22:29:e8:30:66:96:4d:44:d0:64:8c:a2:24:20:61:8f: 5e:f2:c7:6c:98:97:91:6e:c3:5f:04:da:16:b5:da:d8:7d:72: 88:0f:ce:6b:c9:aa:b1:c1:72:92:20:d5:5d:2a:05:51:db:bd: 5f:f2:18:98:c0:3d:e0:ba:77:28:9b:6b:b7:74:df:51:b6:10: c0:f5:5f:39:43:7c:97:fb:06:ac:e0:c0:d6:40:04:95:19:d7: ca:72:f3:8c:44:1a:7c:dc:ef:4f:a4:29:ca:90:f4:c9:0c:82: cc:12:d7:ec:75:94:93:55:23:84:02:60:69:8e:47:13:d1:cb: a6:c8:17:aa:34:e5:c0:c4:99:8a:60:80:8d:6f:3e:2a:29:bc: df:26:32:ef:f0:ec:40:0c:46:da:4b:b0:a9:7c:2e:fa:98:58: 3c:de:dc:66:f9:8d:1b:40:80:af:b1:e2:7c:67:e5:37:75:4e: 33:18:84:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKEM4NzNCQjYxMEI5MTNDM0VDREM3MDhBMjY1QTc0QjEx NDFBNzZGNTQwHhcNMjUxMjAyMTcyMjAyWhcNMjUxMjA5MTcyMjAyWjAYMRYwFAYD VQQDEw02OTJmMjAzYS05OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygNY0XByYj6qJE0DUsHV2VKiMGjhFUWfAr3ORc4Y9eH4Zanf1YEupqkPJkff xyJei0n/pHhLRtHqplVA1/+PJJzGMfgk5Ry9jcymVdqj4/mU2aeOfa+V9p6hFkpn O9giD53RuAvolbPfvcQa12sDbT7ZvsDPySzOi7sZ8jse7US1LZm//O1WkzVY2qYg K/ivJ1+TrbrgYlfGAdtuA33eW2DsapoTF5As0tkvt2s3Btn+Sfuy2+X/2f2Et/Zv YfdKjXvCuW4aDaow+tnrW5NNUNnHfG2xw9TarhLlIu+bwju+rli4cbFwEYUhusfg dPlMeNHfdKfqR3fsQQ1L6nfQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGFbJvn +GgJBtvw/EzZ4DiyJojnMB8GA1UdIwQYMBaAFMhzu2ELkTw+zccIomWnSxFBp29U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi84MkU0QzJBMEE2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBEN054d2lpWmFkTEVVR25i MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lITzdZUXVSUEQ3Tnh3aWlaYWRMRVVHbmIxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi84MkU0QzJBMEE2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi95SE83WVF1UlBE N054d2lpWmFkTEVVR25iMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7OjNAnkbGOsf7/hTMBB/omqrDTniiPz5tQR/aUw+m9Ia+Tp9wtVlB QI15C+7k40R8G0Vi9b2v3y9zm/FttC5LUfBQmjxZDy9RjSIp6DBmlk1E0GSMoiQg YY9e8sdsmJeRbsNfBNoWtdrYfXKID85ryaqxwXKSINVdKgVR271f8hiYwD3gunco m2u3dN9RthDA9V85Q3yX+was4MDWQASVGdfKcvOMRBp83O9PpCnKkPTJDILMEtfs dZSTVSOEAmBpjkcT0cumyBeqNOXAxJmKYICNbz4qKbzfJjLv8OxADEbaS7CpfC76 mFg83txm+Y0bQICvseJ8Z+U3dU4zGIQ8 -----END CERTIFICATE-----Generated at Wed Dec 3 17:16:34 2025 by rpki-client