This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft File: -Y6-IGkPLysjShVIfdCVIfPUdTw.mft (raw, json) Hash identifier: ISmNlYjN4ctkx0926pBJetLBJtjkPJ8c1aJdsGS05eE= Subject key identifier: 86:45:DD:FA:55:B6:D2:0F:7A:67:86:22:B7:FA:00:E2:E4:9D:6D:0A Authority key identifier: F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C Certificate issuer: /CN=A91BCC44/serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Certificate serial: 0B57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft Manifest number: 0B50 Signing time: Mon 22 Dec 2025 18:42:02 +0000 Manifest this update: Mon 22 Dec 2025 18:42:02 +0000 Manifest next update: Mon 29 Dec 2025 18:42:02 +0000 Files and hashes: 1: -Y6-IGkPLysjShVIfdCVIfPUdTw.crl (hash: ht5tIL9UsHB7NmwlTn/oqtR17UL4XaU74utDiWWFWqQ=) 2: B69F45F6480C11EAA7171874C4F9AE02.roa (hash: gMyJ+7eXQOz2lZ7oRn13QHvOh0RqD5UbZBYLXAXV9no=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC44, serialNumber=F98EBE20690F2F2B234A15487DD09521F3D4753C Validity Not Before: Dec 22 18:42:02 2025 GMT Not After : Dec 29 18:42:02 2025 GMT Subject: CN=694990fa-cfdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:e0:34:85:5b:77:d9:9e:ac:d3:27:c4:82: be:95:0b:00:8a:28:b7:2f:a1:d8:b6:e2:b4:bb:d1: 40:d8:1b:fc:80:36:85:4a:4e:93:99:6f:f2:26:65: a1:34:54:28:10:d3:08:33:a2:62:8c:65:9b:f2:fa: cb:e3:e6:8c:da:9e:09:c9:ba:41:ce:0b:32:9d:7a: 72:69:37:c3:07:a7:00:c6:b7:5a:5e:9e:9a:14:d8: b2:3a:63:53:e7:a3:9a:4e:55:22:3e:c3:fd:b5:09: 92:d8:4b:57:ed:3f:96:a3:c0:9e:5b:a0:9f:e7:71: 03:51:ec:7f:7e:b6:b9:d2:47:2c:02:c2:b2:27:0b: 4b:58:54:9f:96:13:b3:36:c5:01:db:67:e4:95:6b: f1:07:8a:99:81:83:9f:ca:b4:90:cb:d8:8e:8f:91: 77:0f:5c:b1:f1:a1:44:da:a8:83:fe:c5:bf:b5:2e: fb:f7:5a:10:43:8c:db:3b:91:35:dc:49:af:95:61: 1d:f4:89:b2:bf:64:b2:26:f7:b3:d6:32:d2:8f:f6: 88:44:6d:36:6b:f1:58:86:86:f5:8e:f3:20:b3:65: b2:42:e8:5f:b9:8a:10:5a:0f:8b:ff:22:d0:b2:37: ef:19:c5:99:80:fe:ff:68:c3:b4:47:60:a9:1f:87: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:45:DD:FA:55:B6:D2:0F:7A:67:86:22:B7:FA:00:E2:E4:9D:6D:0A X509v3 Authority Key Identifier: keyid:F9:8E:BE:20:69:0F:2F:2B:23:4A:15:48:7D:D0:95:21:F3:D4:75:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y6-IGkPLysjShVIfdCVIfPUdTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC44/C160FCAC480A11EA9811906DC4F9AE02/-Y6-IGkPLysjShVIfdCVIfPUdTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:fa:72:9d:39:5d:11:b4:4f:77:46:73:9f:31:32:f9:ae:b8: 6f:a6:d1:c7:9f:38:b0:96:ab:2a:b2:29:61:47:a5:b7:19:6d: 10:b9:f4:95:2d:5f:80:d8:fd:99:b3:99:96:23:94:a2:77:fa: 8e:eb:81:5e:75:87:71:3d:ec:f8:0f:c8:e7:05:b7:0c:b2:e0: e9:80:cc:f0:54:5f:e5:96:4e:8b:2d:98:5b:7d:6b:b5:7f:60: d2:dd:19:44:51:2d:05:8d:4c:b4:59:ab:de:16:bc:9a:61:d4: 38:eb:b3:27:ba:33:6c:8e:a2:26:ca:1a:79:87:29:d5:79:a2: b2:c1:4b:33:36:5e:3b:7d:6e:b8:37:53:2c:34:03:89:99:e4: 3a:7a:71:a7:9c:a0:cb:f2:0d:f1:d1:88:de:0f:12:79:4e:90: ff:88:d0:ad:ed:0f:05:c2:c6:bb:f4:6a:da:86:8c:e8:48:f6: 45:fd:7c:1a:6b:93:5b:14:b3:2c:a8:f5:9e:c3:ff:28:95:58: 96:74:d3:1a:6a:30:ca:78:30:e2:5a:90:92:3a:f4:a4:e4:cb: a1:46:44:4f:c7:c8:d8:47:f6:e7:03:85:9d:dc:76:a8:e6:0e: bd:0f:84:3c:8d:65:f4:94:9e:42:6a:3d:42:39:42:8e:72:c7: 35:48:f4:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDNDQxMTAvBgNVBAUTKEY5OEVCRTIwNjkwRjJGMkIyMzRBMTU0ODdERDA5NTIx RjNENDc1M0MwHhcNMjUxMjIyMTg0MjAyWhcNMjUxMjI5MTg0MjAyWjAYMRYwFAYD VQQDDA02OTQ5OTBmYS1jZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxozgNIVbd9merNMnxIK+lQsAiii3L6HYtuK0u9FA2Bv8gDaFSk6TmW/yJmWh NFQoENMIM6JijGWb8vrL4+aM2p4JybpBzgsynXpyaTfDB6cAxrdaXp6aFNiyOmNT 56OaTlUiPsP9tQmS2EtX7T+Wo8CeW6Cf53EDUex/fra50kcsAsKyJwtLWFSflhOz NsUB22fklWvxB4qZgYOfyrSQy9iOj5F3D1yx8aFE2qiD/sW/tS7791oQQ4zbO5E1 3EmvlWEd9Imyv2SyJvez1jLSj/aIRG02a/FYhob1jvMgs2WyQuhfuYoQWg+L/yLQ sjfvGcWZgP7/aMO0R2CpH4f9LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZF3fpV ttIPemeGIrf6AOLknW0KMB8GA1UdIwQYMBaAFPmOviBpDy8rI0oVSH3QlSHz1HU8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0M0NC9DMTYwRkNBQzQ4 MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5c2pTaFZJZmRDVklmUFVk VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZNi1JR2tQTHlzalNoVklmZENWSWZQVWRUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0M0NC9DMTYwRkNBQzQ4MEExMUVBOTgxMTkwNkRDNEY5QUUwMi8tWTYtSUdrUEx5 c2pTaFZJZmRDVklmUFVkVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0+nKdOV0RtE93RnOfMTL5rrhvptHHnziwlqsqsilhR6W3GW0QufSV LV+A2P2Zs5mWI5Sid/qO64FedYdxPez4D8jnBbcMsuDpgMzwVF/llk6LLZhbfWu1 f2DS3RlEUS0FjUy0WaveFryaYdQ467MnujNsjqImyhp5hynVeaKywUszNl47fW64 N1MsNAOJmeQ6enGnnKDL8g3x0YjeDxJ5TpD/iNCt7Q8Fwsa79GrahozoSPZF/Xwa a5NbFLMsqPWew/8olViWdNMaajDKeDDiWpCSOvSk5MuhRkRPx8jYR/bnA4Wd3Hao 5g69D4Q8jWX0lJ5Caj1COUKOcsc1SPSS -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:21 2025 by rpki-client