This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: P1O5hejGGdDIM14Y1iohCrqAQgVKQlNasDStVwTogFk= Subject key identifier: F8:68:B0:74:A5:C1:5A:A4:5A:A1:1E:A5:72:4B:16:D4:12:57:E3:54 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A71 Signing time: Wed 10 Dec 2025 18:43:48 +0000 Manifest this update: Wed 10 Dec 2025 18:43:48 +0000 Manifest next update: Wed 17 Dec 2025 18:43:48 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: Y09tRtXzZ7zw+OyD75oEsAq2cfqydzZI2v33JLG3xtE=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: uSN3Gv1mPyytVdfiVFWC/qduqPudyKGyOZQwN01E8xE=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: zcOpYALMg85NqdJptG4eC86fQdzmEleTfcf+2WTyKGE=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: mV1bCNXfD7w4ttjCRjT99a/5iAZCupAPYyeXcu8Us3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 18:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Dec 10 18:43:48 2025 GMT Not After : Dec 17 18:43:48 2025 GMT Subject: CN=6939bf64-a8b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d7:6e:cb:9e:ef:7e:52:93:0e:04:7b:3b:d6: 54:c3:b7:35:f9:84:bc:d5:b7:2e:58:c4:2a:87:23: ba:79:7e:14:f2:4e:e1:a5:ea:2d:b2:8d:2d:ee:53: fd:65:e7:2a:e1:f5:7e:9f:0d:c3:29:87:8a:c1:53: fa:2f:27:6d:5e:06:cf:86:47:9c:a5:e2:98:4a:6d: b9:e6:b3:61:fb:74:5f:46:45:1b:71:a6:46:74:e1: 99:3c:58:c1:54:5e:ac:e0:b0:18:0d:20:04:ce:c0: d3:99:d5:e9:4b:3c:33:21:ed:61:eb:3c:64:2a:d3: c3:bd:7c:86:0b:e0:f2:cc:81:0b:59:27:eb:73:24: ef:d2:5f:9d:c1:2d:08:af:ab:45:13:e6:33:21:1f: 09:22:90:91:25:bc:94:b9:14:56:61:a7:3f:30:e8: ec:bb:6a:bd:ad:1e:f7:92:83:7c:0a:cd:4e:ce:37: ba:8a:3e:c1:65:15:c0:51:1d:b3:2b:78:bd:ed:a5: 4f:1b:cc:61:7a:d6:37:54:a0:1e:0a:f0:d6:36:f8: cd:a0:3f:6b:f6:a6:10:4b:f7:86:2d:7a:01:c2:2f: 6f:ac:6a:26:a0:b1:4f:4c:41:70:16:30:c6:32:ea: 0c:0f:09:64:27:49:c3:56:72:1c:8b:73:51:a2:16: f7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:68:B0:74:A5:C1:5A:A4:5A:A1:1E:A5:72:4B:16:D4:12:57:E3:54 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ff:f0:df:16:f6:b3:4d:02:17:45:d3:99:38:12:61:6b:98: e7:20:a7:5c:fe:8b:4d:f2:9a:f1:9b:81:f4:1d:77:44:cc:c3: a6:ef:40:bb:27:60:54:20:3c:89:fd:5f:1b:bd:bb:eb:c2:cc: a3:cd:15:2e:a7:92:50:8a:26:64:a2:25:d5:c6:d3:d8:44:f3: 74:22:ff:be:b9:72:2a:5b:a4:b6:ca:3f:e9:5d:89:85:3e:98: c8:50:ee:69:93:01:b5:c2:e5:4a:dd:db:ee:71:07:5b:e1:a0: 38:e8:93:09:74:9d:ab:89:75:43:5d:8d:26:56:d2:14:50:35: 4b:c8:eb:2d:d8:8f:f5:f1:71:c5:80:20:2c:ec:50:b5:cc:8f: 96:6a:36:c4:9c:90:eb:60:f4:b9:24:1d:b4:cf:2b:b4:d3:f9: 71:02:54:ba:dd:47:84:4f:00:c8:c8:9d:bd:47:f9:36:13:92: 4f:8a:77:41:17:b0:c2:78:90:c3:40:0b:ef:81:fa:26:6a:ff: e1:fa:8c:fc:17:54:44:c5:53:03:25:4d:b3:8a:0b:0a:fa:de: 5c:30:16:19:bf:bd:5e:b5:ce:52:9e:bf:c9:19:e4:e7:a9:b8: f2:d2:d9:cb:79:38:68:ac:ab:9e:fd:cb:a1:2d:e9:07:67:a9: 8e:1d:a6:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMjEwMTg0MzQ4WhcNMjUxMjE3MTg0MzQ4WjAYMRYwFAYD VQQDEw02OTM5YmY2NC1hOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdduy57vflKTDgR7O9ZUw7c1+YS81bcuWMQqhyO6eX4U8k7hpeotso0t7lP9 Zecq4fV+nw3DKYeKwVP6LydtXgbPhkecpeKYSm255rNh+3RfRkUbcaZGdOGZPFjB VF6s4LAYDSAEzsDTmdXpSzwzIe1h6zxkKtPDvXyGC+DyzIELWSfrcyTv0l+dwS0I r6tFE+YzIR8JIpCRJbyUuRRWYac/MOjsu2q9rR73koN8Cs1Ozje6ij7BZRXAUR2z K3i97aVPG8xhetY3VKAeCvDWNvjNoD9r9qYQS/eGLXoBwi9vrGomoLFPTEFwFjDG MuoMDwlkJ0nDVnIci3NRohb3wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhosHSl wVqkWqEepXJLFtQSV+NUMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj//DfFvazTQIXRdOZOBJha5jnIKdc/otN8prxm4H0HXdEzMOm70C7 J2BUIDyJ/V8bvbvrwsyjzRUup5JQiiZkoiXVxtPYRPN0Iv++uXIqW6S2yj/pXYmF PpjIUO5pkwG1wuVK3dvucQdb4aA46JMJdJ2riXVDXY0mVtIUUDVLyOst2I/18XHF gCAs7FC1zI+WajbEnJDrYPS5JB20zyu00/lxAlS63UeETwDIyJ29R/k2E5JPindB F7DCeJDDQAvvgfomav/h+oz8F1RExVMDJU2zigsK+t5cMBYZv71etc5Snr/JGeTn qbjy0tnLeThorKue/cuhLekHZ6mOHabm -----END CERTIFICATE-----Generated at Thu Dec 11 23:53:52 2025 by rpki-client