This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: Fu8zfanNMHE0wsFZamiPY+c42KydaHOW60jOixp0s6Q= Subject key identifier: 89:6E:23:F3:68:02:E8:CD:85:96:E3:41:9C:2D:D8:3E:AA:10:00:AE Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0C8E Signing time: Wed 24 Dec 2025 18:04:56 +0000 Manifest this update: Wed 24 Dec 2025 18:04:56 +0000 Manifest next update: Wed 31 Dec 2025 18:04:56 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: CtFPQwXSKgUMnzZKli4ljA7lp4TF+X9Ze6g03w9BpWo=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: UpR8nuBc/YxAqJ5KwZdD471HRL+h2X0H2SIoY13S/74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1, serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: Dec 24 18:04:56 2025 GMT Not After : Dec 31 18:04:56 2025 GMT Subject: CN=694c2b48-cbe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cd:1d:f7:5c:ca:05:44:41:b6:48:2b:2e:e8: 2b:00:3e:74:6d:9c:38:e1:11:47:e9:7f:d1:d4:45: c2:ba:a6:da:15:6f:cb:8a:72:3d:ca:b5:7c:86:18: 9f:9f:ad:11:ac:06:d7:5f:35:c8:5f:27:39:7b:54: 07:84:3e:f8:07:d8:02:75:01:08:8b:5c:f6:0a:e8: 0d:30:4f:a6:c5:b2:d2:71:7b:99:8d:55:c7:d0:3f: 8a:17:91:f4:30:34:dc:f3:66:5c:7d:ce:7c:1b:dc: a6:1a:1f:66:1d:fd:c2:67:b3:3f:2b:6c:2c:38:f9: aa:76:bb:84:03:ca:b5:cf:bf:49:6f:af:b3:b8:27: b6:f0:0f:78:12:ce:67:a8:45:13:ea:aa:ca:e4:3b: 6c:6c:ed:57:71:19:4b:22:3d:30:9c:f1:fd:e5:48: a0:eb:06:38:ea:8d:c7:7d:86:04:ce:88:c0:79:a8: fe:9d:69:f8:39:cf:d1:84:56:70:2c:42:86:cc:c0: cf:35:f1:73:28:38:1c:92:9a:fc:48:86:9c:d8:23: 45:c0:ef:4c:ef:58:21:68:85:98:bf:d5:78:38:a7: 9d:67:dd:0d:b8:44:8e:47:c2:5e:8b:2e:48:26:82: 15:8c:08:7e:72:c1:d7:ee:9e:5d:f4:d5:a9:48:5c: 42:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6E:23:F3:68:02:E8:CD:85:96:E3:41:9C:2D:D8:3E:AA:10:00:AE X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:89:9d:84:0a:dd:62:8c:db:8e:eb:a6:9b:47:f0:4b:c7:52: c4:5b:af:bf:2f:7c:64:e6:e5:00:ba:9c:e5:8b:e0:40:64:b4: b9:89:7e:ff:02:43:68:f2:e2:6a:89:c9:df:78:45:b9:ab:f4: ca:ac:8d:91:e8:c6:e8:3e:90:b8:18:04:65:d9:bf:a1:44:10: d8:3d:d8:fd:89:81:9e:1b:33:56:26:47:d9:79:f6:69:f5:f3: 51:c2:2a:aa:0b:02:40:d3:cf:cb:bb:f1:be:5c:e9:d9:36:ab: ef:e0:49:44:22:98:f6:f9:b4:62:65:d2:2d:b8:bc:94:bc:c8: 0e:d7:9c:4e:ec:46:63:39:95:15:5e:a1:e3:db:9a:95:e4:ee: 0e:69:61:f8:ca:8e:1f:fc:b4:70:ca:f9:65:83:f8:d4:6e:56: 89:5a:94:5a:ce:3f:c8:44:83:07:d0:33:ee:60:7c:c5:15:fa: 4a:51:d1:b3:62:89:f2:4b:65:9a:c1:0d:61:8c:a8:54:a4:97: 27:79:f2:1b:69:b0:90:42:84:4d:28:76:00:40:d0:8c:a4:e1: 92:cb:a5:11:20:24:a6:5a:9e:42:1e:e5:07:fd:5f:d8:76:8a: 72:78:29:c9:55:53:e2:45:7f:49:61:03:fd:60:dd:40:95:e4: d4:46:a3:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjUxMjI0MTgwNDU2WhcNMjUxMjMxMTgwNDU2WjAYMRYwFAYD VQQDDA02OTRjMmI0OC1jYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk80d91zKBURBtkgrLugrAD50bZw44RFH6X/R1EXCuqbaFW/LinI9yrV8hhif n60RrAbXXzXIXyc5e1QHhD74B9gCdQEIi1z2CugNME+mxbLScXuZjVXH0D+KF5H0 MDTc82Zcfc58G9ymGh9mHf3CZ7M/K2wsOPmqdruEA8q1z79Jb6+zuCe28A94Es5n qEUT6qrK5DtsbO1XcRlLIj0wnPH95Uig6wY46o3HfYYEzojAeaj+nWn4Oc/RhFZw LEKGzMDPNfFzKDgckpr8SIac2CNFwO9M71ghaIWYv9V4OKedZ90NuESOR8Jeiy5I JoIVjAh+csHX7p5d9NWpSFxCUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIluI/No AujNhZbjQZwt2D6qEACuMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFiZ2ECt1ijNuO66abR/BLx1LEW6+/L3xk5uUAupzli+BAZLS5iX7/ AkNo8uJqicnfeEW5q/TKrI2R6MboPpC4GARl2b+hRBDYPdj9iYGeGzNWJkfZefZp 9fNRwiqqCwJA08/Lu/G+XOnZNqvv4ElEIpj2+bRiZdItuLyUvMgO15xO7EZjOZUV XqHj25qV5O4OaWH4yo4f/LRwyvllg/jUblaJWpRazj/IRIMH0DPuYHzFFfpKUdGz YonyS2WawQ1hjKhUpJcnefIbabCQQoRNKHYAQNCMpOGSy6URICSmWp5CHuUH/V/Y dopyeCnJVVPiRX9JYQP9YN1AleTURqN4 -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:08 2025 by rpki-client