This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: +HdBz2ZsVzrn5uHuDANMCtFyavFUmHNUbRVAvuXG/4Q= Subject key identifier: 6A:48:E6:55:6F:41:81:12:6B:CF:84:3E:D1:78:89:13:15:84:A9:01 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: 010C Signing time: Tue 23 Dec 2025 03:58:23 +0000 Manifest this update: Tue 23 Dec 2025 03:58:23 +0000 Manifest next update: Tue 30 Dec 2025 03:58:23 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: Kv5koKp8aw4+yC9eg6JYJbGi+M4pALHnmSd4yu0Kjmc=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Dec 23 03:58:23 2025 GMT Not After : Dec 30 03:58:23 2025 GMT Subject: CN=694a135f-988e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:29:ce:54:5d:79:49:13:86:82:37:ef:10:de: 3d:93:38:9c:bb:bd:4b:11:35:b5:cc:b4:17:c4:8c: 31:de:d8:a9:24:f7:59:18:46:29:6b:8c:ae:16:e4: 9e:a3:ec:ed:be:a7:b6:a2:f2:2e:4c:0a:8e:05:62: a1:5a:3d:f7:55:fb:60:77:cb:fa:bc:46:46:8d:ef: c2:72:ed:8b:7d:08:8a:75:12:bf:b8:35:e6:3b:ce: 05:1f:47:86:34:45:74:9d:2d:1c:8a:f2:dc:3e:5b: f4:3d:94:10:1b:b4:fa:50:7c:76:0b:51:e8:5b:a6: 19:6e:2c:c1:67:bb:af:12:13:c3:0e:59:f7:e5:a5: 46:cd:85:8f:78:84:08:9d:ab:52:19:ff:5f:da:6e: 73:13:5b:40:ba:22:54:5f:72:e3:06:72:b8:be:e6: b0:0f:2b:4f:0a:69:86:cf:fa:fc:03:b4:93:b5:8d: 56:ee:8e:40:59:58:c4:ed:1c:fb:92:d0:43:cf:ee: 2a:ef:2d:69:0e:8a:2e:ae:45:48:40:f8:e3:a4:87: 68:8b:21:3d:f8:d4:44:0e:03:c2:64:a3:14:01:71: 2e:ae:95:45:9b:2a:7b:aa:52:25:51:b8:3e:0f:72: 81:4c:7a:c8:6f:b2:3b:3f:aa:a8:d9:71:f9:50:db: 4e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:48:E6:55:6F:41:81:12:6B:CF:84:3E:D1:78:89:13:15:84:A9:01 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fe:4c:84:da:93:77:1b:f9:a5:ef:58:98:d5:4b:ec:8c:c8: 48:ec:9e:a7:1f:6d:a8:c8:26:ca:32:81:de:52:88:09:b8:a8: 96:8c:96:d8:da:2e:ab:de:4d:e9:09:86:3e:47:87:fe:d4:1c: 3d:cb:65:6e:5b:54:ce:a5:1c:97:d4:fa:e3:ec:fb:c6:cc:ef: 94:6d:cd:a1:2b:cd:1a:7c:7e:59:08:71:27:87:f8:7c:88:61: 13:c5:75:5e:c0:74:ea:9d:46:8b:b9:ef:89:b6:3e:85:2c:1c: 97:b2:37:b8:34:9d:80:ff:e7:86:26:65:2e:f7:a3:e0:f4:01: d3:b6:e2:ee:06:3b:32:79:7a:32:90:18:3c:11:29:41:24:ac: eb:d6:28:3b:40:f7:2b:cf:db:15:50:8d:76:55:bf:7c:e9:23: f3:42:4a:fd:9a:a1:6a:ca:14:e4:b2:3e:bc:3d:8d:41:a6:3b: 81:3c:55:15:2f:85:4a:61:74:b3:18:70:89:96:83:1f:8a:bd: fd:cb:72:6f:c2:a3:50:56:9b:73:95:01:d2:97:94:fc:52:f2: 75:55:76:e4:9a:00:03:40:c3:0d:88:5c:a1:37:9e:6e:f4:ca: f1:19:5a:05:4e:7e:14:fe:86:1a:e1:1d:25:41:dd:ad:11:48: 0f:e4:f8:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUxMjIzMDM1ODIzWhcNMjUxMjMwMDM1ODIzWjAYMRYwFAYD VQQDDA02OTRhMTM1Zi05ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSnOVF15SROGgjfvEN49kzicu71LETW1zLQXxIwx3tipJPdZGEYpa4yuFuSe o+ztvqe2ovIuTAqOBWKhWj33Vftgd8v6vEZGje/Ccu2LfQiKdRK/uDXmO84FH0eG NEV0nS0civLcPlv0PZQQG7T6UHx2C1HoW6YZbizBZ7uvEhPDDln35aVGzYWPeIQI natSGf9f2m5zE1tAuiJUX3LjBnK4vuawDytPCmmGz/r8A7STtY1W7o5AWVjE7Rz7 ktBDz+4q7y1pDoourkVIQPjjpIdoiyE9+NREDgPCZKMUAXEurpVFmyp7qlIlUbg+ D3KBTHrIb7I7P6qo2XH5UNtOZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpI5lVv QYESa8+EPtF4iRMVhKkBMB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN/kyE2pN3G/ml71iY1UvsjMhI7J6nH22oyCbKMoHeUogJuKiWjJbY 2i6r3k3pCYY+R4f+1Bw9y2VuW1TOpRyX1Prj7PvGzO+Ubc2hK80afH5ZCHEnh/h8 iGETxXVewHTqnUaLue+Jtj6FLByXsje4NJ2A/+eGJmUu96Pg9AHTtuLuBjsyeXoy kBg8ESlBJKzr1ig7QPcrz9sVUI12Vb986SPzQkr9mqFqyhTksj68PY1BpjuBPFUV L4VKYXSzGHCJloMfir39y3JvwqNQVptzlQHSl5T8UvJ1VXbkmgADQMMNiFyhN55u 9MrxGVoFTn4U/oYa4R0lQd2tEUgP5PjZ -----END CERTIFICATE-----Generated at Tue Dec 23 07:05:55 2025 by rpki-client