This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: RZv4fxxG1qtTojBzMh+Xew5mp3cKexBYZ3at15fJeDk= Subject key identifier: 4F:22:17:24:F5:95:1E:93:AA:93:12:2E:C6:47:68:A8:6C:9D:D0:EB Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 0187 Signing time: Tue 23 Dec 2025 02:36:34 +0000 Manifest this update: Tue 23 Dec 2025 02:36:33 +0000 Manifest next update: Tue 30 Dec 2025 02:36:33 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: jF87j9ccxtSCkdAls+hQbgpxqww8KPsxX6rrOi/4av8=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: kfUd7cLCmHmQ/k7ENeRjEkFUrum5OXV/qc4Vt8EOcIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Dec 23 02:36:33 2025 GMT Not After : Dec 30 02:36:33 2025 GMT Subject: CN=694a0032-c05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:6d:f8:67:c4:73:ed:dc:6e:02:61:c3:69: 70:5e:56:9f:06:b8:e0:12:e4:0f:c4:5f:26:0c:e9: 28:10:2a:14:c1:93:bb:4d:9f:0d:3e:3e:08:1b:a4: 31:e1:bd:29:7b:65:cd:df:a5:05:64:53:56:45:c3: 8f:e5:26:7c:e5:42:2a:e7:63:97:6b:61:5e:b4:eb: b1:be:5b:3d:ce:00:0b:91:64:83:91:0e:d5:70:1d: dd:28:3f:54:16:92:06:da:73:79:93:99:04:31:82: 87:0d:92:14:2a:63:07:ee:02:94:12:3b:7f:30:2f: 44:4a:14:4d:60:e7:11:73:53:52:3d:7d:d6:88:0c: f6:ac:ec:22:64:75:2b:37:60:fc:43:5c:9c:5d:b0: 42:3e:ed:94:e0:04:97:50:55:b3:92:42:88:6a:9a: 1e:6b:90:11:b0:5a:22:74:34:95:f2:49:0f:d6:c8: bc:47:80:f0:1b:38:a6:d5:8f:27:5c:d0:13:99:12: 38:e6:e2:94:87:f5:3d:ff:5d:ca:b9:ac:30:7b:25: ea:e7:bf:1b:b0:08:ed:45:4d:f6:eb:64:3b:67:53: 22:aa:b8:d3:fb:5a:ff:48:62:00:78:e1:13:3d:e7: 64:94:64:04:c3:06:c2:4e:df:a3:a8:d9:4d:09:0d: 18:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:22:17:24:F5:95:1E:93:AA:93:12:2E:C6:47:68:A8:6C:9D:D0:EB X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:bf:14:f1:c6:5c:85:cf:d4:3a:34:83:45:ef:9c:d3:11:3b: cb:6e:25:27:aa:59:41:dd:6c:9c:31:b7:9c:1d:e0:ec:c9:74: 74:4a:fd:c4:19:78:c1:a0:57:4e:ff:d4:08:6d:a7:0b:9e:38: bf:c4:cc:0c:be:73:64:e3:90:fa:cf:f5:8a:95:07:df:c6:9a: 5e:df:d8:91:b9:06:06:ad:c3:b4:e2:8a:cc:18:cc:f6:cc:62: 6f:c4:ee:56:42:63:0d:6d:fa:83:9e:e2:34:6c:67:48:d9:b0: 57:92:66:bd:57:e5:57:21:32:c6:0c:61:24:af:b5:67:4c:a9: 8d:88:34:bf:10:1b:02:f9:09:e6:79:e5:1a:4e:26:f3:ef:81: 9f:b0:5c:81:32:cd:75:84:a1:8f:bb:98:a8:96:9b:03:44:e5: 78:6e:d2:a2:6b:3c:01:ad:b7:10:ae:26:73:bd:5b:a8:e7:4d: 85:3b:67:ea:ff:39:b3:1c:a4:17:8f:c4:88:ea:aa:02:d3:78: bc:1f:9e:cc:0a:d6:38:93:96:ef:05:ef:a6:bb:f6:f6:64:57: 50:5f:38:fb:fc:e5:95:5c:5f:21:49:e5:4a:a3:2c:a4:d7:a6: b8:92:51:2e:56:ee:91:6a:7e:5a:a8:87:af:37:57:0b:eb:86: 71:a1:be:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUxMjIzMDIzNjMzWhcNMjUxMjMwMDIzNjMzWjAYMRYwFAYD VQQDDA02OTRhMDAzMi1jMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmJt+GfEc+3cbgJhw2lwXlafBrjgEuQPxF8mDOkoECoUwZO7TZ8NPj4IG6Qx 4b0pe2XN36UFZFNWRcOP5SZ85UIq52OXa2FetOuxvls9zgALkWSDkQ7VcB3dKD9U FpIG2nN5k5kEMYKHDZIUKmMH7gKUEjt/MC9EShRNYOcRc1NSPX3WiAz2rOwiZHUr N2D8Q1ycXbBCPu2U4ASXUFWzkkKIapoea5ARsFoidDSV8kkP1si8R4DwGzim1Y8n XNATmRI45uKUh/U9/13KuawweyXq578bsAjtRU3262Q7Z1MiqrjT+1r/SGIAeOET PedklGQEwwbCTt+jqNlNCQ0YaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8iFyT1 lR6TqpMSLsZHaKhsndDrMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqvxTxxlyFz9Q6NINF75zTETvLbiUnqllB3WycMbecHeDsyXR0Sv3E GXjBoFdO/9QIbacLnji/xMwMvnNk45D6z/WKlQffxppe39iRuQYGrcO04orMGMz2 zGJvxO5WQmMNbfqDnuI0bGdI2bBXkma9V+VXITLGDGEkr7VnTKmNiDS/EBsC+Qnm eeUaTibz74GfsFyBMs11hKGPu5iolpsDROV4btKiazwBrbcQriZzvVuo502FO2fq /zmzHKQXj8SI6qoC03i8H57MCtY4k5bvBe+mu/b2ZFdQXzj7/OWVXF8hSeVKoyyk 16a4klEuVu6Ran5aqIevN1cL64Zxob7P -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:57 2025 by rpki-client