This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: /FrVtYMasNi9LLPfR7JJ8cnMAU3dyV01Fp3Z8QkQrcM= Subject key identifier: 15:EA:8C:50:77:88:E7:62:E2:67:D6:5C:91:06:BB:8B:70:9F:B6:D1 Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: 015A Signing time: Tue 23 Dec 2025 03:09:03 +0000 Manifest this update: Tue 23 Dec 2025 03:09:02 +0000 Manifest next update: Tue 30 Dec 2025 03:09:02 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: RD/fSY5MKHBn5+jxoZXlEX+5SiDXFgYG2n3ArzR00U4=) 2: 7447BEF0928411EFB854A522C4F9AE02.roa (hash: 8r1ggxGUtscfFUhVNnn2tSXuD/VeviYdi6zXjlI+agM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: Dec 23 03:09:02 2025 GMT Not After : Dec 30 03:09:02 2025 GMT Subject: CN=694a07cf-487e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bc:34:13:ee:1f:6b:1d:23:75:bf:ec:40:2d: 92:d2:c2:83:68:14:f0:7f:4a:36:e7:8b:82:de:3b: 64:1a:45:fb:eb:15:02:8a:62:83:d4:a3:22:8b:57: eb:d7:28:fd:9a:8d:15:43:34:ef:91:0f:75:cc:53: 5b:f0:a0:94:69:99:e7:e9:d2:a3:a4:ad:8f:15:8f: d4:c1:d1:b9:6a:65:b3:71:92:2d:70:8a:5e:a1:41: d0:c8:ef:81:1a:19:19:76:6d:7d:f2:e8:5c:de:3c: e6:3b:40:e4:ef:77:23:1e:6a:cd:6b:a9:df:55:23: bf:07:56:c9:21:0b:54:be:f3:db:92:c4:4d:91:ee: 68:6e:19:b2:68:b0:97:cc:1a:92:bc:07:3b:0a:c5: cc:e1:e3:63:d2:08:b7:58:4e:1d:b4:52:2a:e8:4b: a4:94:e6:13:c7:f1:fa:f0:73:27:85:d1:cf:d7:53: 75:45:05:65:cc:d9:70:e5:03:d8:cf:fc:96:44:61: 21:7c:f8:29:5d:73:04:51:22:19:7a:a8:34:3f:42: 6b:25:8c:dd:ff:d7:9d:d4:b2:11:3e:e5:93:c6:c7: 4e:aa:38:24:30:fa:b9:75:1d:32:30:66:45:5a:90: df:47:54:53:e1:e7:e3:b0:93:61:63:9d:3e:9e:51: f8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:EA:8C:50:77:88:E7:62:E2:67:D6:5C:91:06:BB:8B:70:9F:B6:D1 X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:92:8a:f1:8e:8d:3a:63:93:c8:b7:7b:1c:2d:f8:1c:f3:f8: 1c:89:85:71:88:6c:fb:eb:14:22:f9:e6:a7:94:f3:5d:bf:5e: 6c:54:2b:f0:0c:59:ce:4b:8b:15:2c:ea:93:f3:6b:35:62:3d: 64:cf:2b:f4:2b:3e:a2:4f:fe:25:e7:11:3f:c7:44:60:41:2b: de:ac:83:72:07:c7:44:9d:16:09:6b:6c:67:35:24:db:f3:10: 3e:05:6d:fc:9a:03:c1:c3:cd:7b:37:27:b9:9a:f4:4a:9b:bd: f7:ea:5b:9c:ba:54:0b:ca:40:0e:44:27:5c:23:1a:94:e5:79: ca:87:d2:0f:c6:e6:1a:87:f4:9c:54:8a:37:a3:fd:34:52:6a: 32:63:48:be:dc:44:71:eb:7c:76:04:af:aa:79:d5:85:83:1f: c9:8a:bf:a4:a1:99:da:3b:d0:23:38:b9:2d:1a:df:76:15:9b: 74:d4:64:48:dd:bd:2c:cf:b3:50:bf:9e:b7:aa:99:4c:1f:86: 9a:ba:7b:c6:34:9a:08:48:73:5b:64:11:41:f8:48:91:02:7c: eb:3d:4f:75:8d:50:58:9b:a6:61:1e:25:4d:e1:be:1a:2e:9a: f2:b4:da:b1:c3:28:d6:6c:54:f7:06:2c:78:bb:c5:ef:89:b4: a5:3a:ff:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKDYyNjEwOUJCRUNDOThCQTUyRTdGMzk5QjgwOTYyRDNB RkU1QUIyRDQwHhcNMjUxMjIzMDMwOTAyWhcNMjUxMjMwMDMwOTAyWjAYMRYwFAYD VQQDDA02OTRhMDdjZi00ODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrw0E+4fax0jdb/sQC2S0sKDaBTwf0o254uC3jtkGkX76xUCimKD1KMii1fr 1yj9mo0VQzTvkQ91zFNb8KCUaZnn6dKjpK2PFY/UwdG5amWzcZItcIpeoUHQyO+B GhkZdm198uhc3jzmO0Dk73cjHmrNa6nfVSO/B1bJIQtUvvPbksRNke5obhmyaLCX zBqSvAc7CsXM4eNj0gi3WE4dtFIq6EuklOYTx/H68HMnhdHP11N1RQVlzNlw5QPY z/yWRGEhfPgpXXMEUSIZeqg0P0JrJYzd/9ed1LIRPuWTxsdOqjgkMPq5dR0yMGZF WpDfR1RT4efjsJNhY50+nlH4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXqjFB3 iOdi4mfWXJEGu4twn7bRMB8GA1UdIwQYMBaAFGJhCbvsyYulLn85m4CWLTr+WrLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FRTMxRDg3NEQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2VXVmem1iZ0pZdE92NWFz dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FRTMxRDg3NEQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2 VXVmem1iZ0pZdE92NWFzdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUkorxjo06Y5PIt3scLfgc8/gciYVxiGz76xQi+eanlPNdv15sVCvw DFnOS4sVLOqT82s1Yj1kzyv0Kz6iT/4l5xE/x0RgQSverINyB8dEnRYJa2xnNSTb 8xA+BW38mgPBw817Nye5mvRKm7336luculQLykAORCdcIxqU5XnKh9IPxuYah/Sc VIo3o/00UmoyY0i+3ERx63x2BK+qedWFgx/Jir+koZnaO9AjOLktGt92FZt01GRI 3b0sz7NQv563qplMH4aaunvGNJoISHNbZBFB+EiRAnzrPU91jVBYm6ZhHiVN4b4a LprytNqxwyjWbFT3Bix4u8XvibSlOv/W -----END CERTIFICATE-----Generated at Wed Dec 24 21:24:01 2025 by rpki-client