This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: jORaLjQP3/Y24KNPXxZWjVaYIMUtEOKN+M2iCeK6JcY= Subject key identifier: DE:C5:8B:A1:43:BF:F0:F8:A3:5F:9A:04:D8:A1:9F:E4:BD:66:68:44 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: E8 Signing time: Tue 23 Dec 2025 04:22:23 +0000 Manifest this update: Tue 23 Dec 2025 04:22:23 +0000 Manifest next update: Tue 30 Dec 2025 04:22:23 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: u+sSV1qoxwTRONG2kREpV1KEPYOcCV5YvzMUREkpzsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Dec 23 04:22:23 2025 GMT Not After : Dec 30 04:22:23 2025 GMT Subject: CN=694a18ff-d0b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:b6:4d:99:f2:6a:6f:0c:6b:2c:75:cb:3b:e9: 5b:60:37:f0:77:92:38:e4:b3:fa:44:49:ac:df:73: 66:e8:43:3d:04:cc:de:fe:a4:0f:33:2b:59:80:0e: a9:c3:5b:b2:64:73:0f:fb:a9:59:37:07:99:1e:e9: bb:06:04:f4:39:da:23:ec:4d:fa:9c:18:36:97:ff: 84:3e:35:0f:53:dc:26:0d:f3:5f:02:7d:bd:36:a1: 4f:af:47:be:ad:a8:19:65:5a:65:0e:60:b4:aa:e4: 78:58:9a:d6:ac:b5:ad:a4:c9:45:82:22:6f:78:9d: cb:09:5a:d3:1b:f5:9a:84:14:be:f1:95:1a:90:cd: 45:d0:86:e0:8a:d8:df:9a:ee:e3:a9:84:56:86:96: f3:6e:78:ef:0c:61:4e:99:09:c9:09:8d:0d:20:89: ce:16:f6:b3:bf:1b:8c:a8:0e:38:a0:1e:76:8a:2c: 1c:27:07:50:7e:fb:01:82:d7:ab:00:53:10:ce:8b: 92:f7:28:4a:3d:26:c2:c8:4e:87:41:86:49:b5:5f: ae:e1:d5:76:c7:02:f3:76:1f:41:e8:93:98:a2:7b: 04:2f:70:e0:f1:39:d2:81:52:13:23:d9:5b:ef:78: ca:e3:88:14:84:1b:98:cf:74:b9:79:38:57:56:54: 42:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C5:8B:A1:43:BF:F0:F8:A3:5F:9A:04:D8:A1:9F:E4:BD:66:68:44 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b6:00:0c:16:2c:62:e2:8c:06:43:b2:c1:94:4a:31:d3:ed: b3:1f:3a:6e:57:f1:2d:d8:83:f7:4e:27:44:86:15:12:3a:da: 1a:e5:17:bf:d2:63:90:76:ac:ce:94:a2:eb:ec:89:0c:30:bc: e0:55:ed:ab:82:15:e7:ec:80:e9:9c:25:ac:11:6e:b3:f2:bf: fb:c5:63:68:f7:16:45:b8:6f:4b:e2:d3:0d:ad:6d:8d:34:6f: c8:47:3e:7e:f9:57:c1:d2:5b:04:c3:1a:a1:e9:ea:15:fd:93: ee:0c:4e:74:e6:41:32:e0:2b:49:0a:75:4b:66:7c:40:f3:65: 29:c0:87:fd:87:37:3c:2c:48:02:3e:2a:af:49:c3:32:8b:b8: 52:3c:74:51:53:5f:6d:09:2d:47:06:f3:b6:bf:db:75:b1:7c: 5b:ae:bd:9c:69:00:ed:5e:0e:10:da:8b:55:8c:f4:b3:3c:5f: da:74:2e:05:5b:f5:0e:c3:79:1f:d8:fe:87:d8:66:ac:21:21: 0c:03:5c:5e:65:df:d3:e3:10:e8:49:3d:cc:89:a5:2e:77:ed: 05:69:90:69:af:d3:8e:59:33:28:66:59:b6:ef:4b:1c:60:d2: 4a:5f:3d:f8:13:97:1c:a4:14:63:ad:04:dd:35:c1:54:55:a2: 69:50:19:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUxMjIzMDQyMjIzWhcNMjUxMjMwMDQyMjIzWjAYMRYwFAYD VQQDDA02OTRhMThmZi1kMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh7ZNmfJqbwxrLHXLO+lbYDfwd5I45LP6REms33Nm6EM9BMze/qQPMytZgA6p w1uyZHMP+6lZNweZHum7BgT0Odoj7E36nBg2l/+EPjUPU9wmDfNfAn29NqFPr0e+ ragZZVplDmC0quR4WJrWrLWtpMlFgiJveJ3LCVrTG/WahBS+8ZUakM1F0Ibgitjf mu7jqYRWhpbzbnjvDGFOmQnJCY0NIInOFvazvxuMqA44oB52iiwcJwdQfvsBgter AFMQzouS9yhKPSbCyE6HQYZJtV+u4dV2xwLzdh9B6JOYonsEL3Dg8TnSgVITI9lb 73jK44gUhBuYz3S5eThXVlRCNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7Fi6FD v/D4o1+aBNihn+S9ZmhEMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUtgAMFixi4owGQ7LBlEox0+2zHzpuV/Et2IP3TidEhhUSOtoa5Re/ 0mOQdqzOlKLr7IkMMLzgVe2rghXn7IDpnCWsEW6z8r/7xWNo9xZFuG9L4tMNrW2N NG/IRz5++VfB0lsEwxqh6eoV/ZPuDE505kEy4CtJCnVLZnxA82UpwIf9hzc8LEgC PiqvScMyi7hSPHRRU19tCS1HBvO2v9t1sXxbrr2caQDtXg4Q2otVjPSzPF/adC4F W/UOw3kf2P6H2GasISEMA1xeZd/T4xDoST3MiaUud+0FaZBpr9OOWTMoZlm270sc YNJKXz34E5ccpBRjrQTdNcFUVaJpUBlS -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:09 2025 by rpki-client