This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: 8euDxa9LeDHh+LPppBntfzuD7HbwJdoqT/94mL3ledw= Subject key identifier: 35:DF:4F:CA:C1:8C:48:65:EA:1A:F6:F1:F2:14:A9:9F:3C:77:78:40 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F82 Signing time: Mon 22 Dec 2025 17:13:21 +0000 Manifest this update: Mon 22 Dec 2025 17:13:21 +0000 Manifest next update: Mon 29 Dec 2025 17:13:21 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: dibyR4Yw+TODLrw1ypKH0oLBzC6YyhGu05Nw4NmnuQ8=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3979 (0xf8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Dec 22 17:13:21 2025 GMT Not After : Dec 29 17:13:21 2025 GMT Subject: CN=69497c31-72f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:4f:21:40:ea:14:ab:b4:4e:c7:15:58:5a: 57:43:94:41:8e:03:65:63:bc:ca:12:c8:f3:ca:92: 74:44:05:a2:bc:30:d2:4f:af:03:75:a5:5f:ff:fc: 22:e5:aa:9e:23:c4:47:86:b9:f1:e5:4b:de:d8:7c: 9b:72:7f:63:64:63:5a:23:58:d8:93:ab:09:bf:bc: 9e:d9:f6:30:ac:83:68:51:63:a0:22:2e:10:22:01: 19:70:e2:6f:69:1b:b7:a6:04:c6:06:d6:c8:78:fb: 05:b6:7a:f2:d1:ce:c5:ce:51:2c:d4:4e:eb:16:72: 67:fc:eb:b4:fd:b5:71:45:fe:ca:07:11:dd:8c:88: 54:00:19:45:c8:ba:53:b2:cb:fd:0e:aa:13:1f:56: b9:3f:fe:f8:e8:f9:39:5a:34:41:f9:59:04:8e:b6: c2:86:72:67:fc:1f:30:85:de:1f:62:b3:e1:43:2c: 1b:2c:10:4f:c1:3a:25:41:3e:c4:b2:f5:45:76:e6: ed:47:56:f0:fd:9f:8d:42:82:f9:e0:6b:40:0b:c5: 34:b5:38:de:c5:d7:dc:b2:6b:18:4c:8e:23:f1:eb: 4b:12:2c:82:db:b0:c2:0c:b6:ed:b5:3f:f0:a2:6d: 66:95:61:d4:3b:4f:8c:18:f3:7a:f6:a3:10:f6:5b: f7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DF:4F:CA:C1:8C:48:65:EA:1A:F6:F1:F2:14:A9:9F:3C:77:78:40 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:99:6e:b4:fe:bd:ad:55:bc:f5:dd:0c:95:a0:62:54:52:bf: 59:55:13:b6:a9:f7:e0:55:b4:f5:e4:42:4f:28:0a:56:25:6a: df:65:f9:b5:09:13:4c:9a:c4:d7:b6:a2:ad:9f:81:5d:41:1d: 93:97:80:6e:c7:62:0c:17:7e:a6:03:ba:a9:4e:1d:fe:46:3a: 34:31:b0:a3:2f:e6:d9:ee:6b:b0:92:80:54:00:0e:1b:98:03: 93:a3:46:7c:11:72:e7:e0:4d:f4:6d:57:8a:72:63:f3:0b:6b: 85:08:f8:a8:ee:bc:25:04:dc:50:e9:60:c1:0f:4e:06:77:97: 55:5b:f0:00:bb:56:8a:5f:d8:86:39:dc:8e:37:c9:cf:73:d5: f7:49:4f:59:49:c8:fb:1e:a4:41:38:fb:48:7d:dd:ff:d0:db: 9e:5f:fe:67:1f:65:31:86:78:4e:c4:8d:b9:93:c1:02:2a:9d: 95:26:56:78:b1:01:5b:db:db:1d:35:0e:2c:77:37:2b:55:61: 93:2e:8e:df:c3:59:ab:a7:0f:4a:fe:4b:cf:b9:b9:63:a1:52: 04:f7:2b:30:5f:6d:b1:74:69:78:20:51:3e:59:dc:1d:8b:06: a1:e1:e0:c7:01:8b:f8:5b:29:f3:ab:99:1e:7a:98:e7:79:c4: 58:54:e0:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUxMjIyMTcxMzIxWhcNMjUxMjI5MTcxMzIxWjAYMRYwFAYD VQQDDA02OTQ5N2MzMS03MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoglPIUDqFKu0TscVWFpXQ5RBjgNlY7zKEsjzypJ0RAWivDDST68DdaVf//wi 5aqeI8RHhrnx5Uve2Hybcn9jZGNaI1jYk6sJv7ye2fYwrINoUWOgIi4QIgEZcOJv aRu3pgTGBtbIePsFtnry0c7FzlEs1E7rFnJn/Ou0/bVxRf7KBxHdjIhUABlFyLpT ssv9DqoTH1a5P/746Pk5WjRB+VkEjrbChnJn/B8whd4fYrPhQywbLBBPwTolQT7E svVFdubtR1bw/Z+NQoL54GtAC8U0tTjexdfcsmsYTI4j8etLEiyC27DCDLbttT/w om1mlWHUO0+MGPN69qMQ9lv3sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXfT8rB jEhl6hr28fIUqZ88d3hAMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBomW60/r2tVbz13QyVoGJUUr9ZVRO2qffgVbT15EJPKApWJWrfZfm1 CRNMmsTXtqKtn4FdQR2Tl4Bux2IMF36mA7qpTh3+Rjo0MbCjL+bZ7muwkoBUAA4b mAOTo0Z8EXLn4E30bVeKcmPzC2uFCPio7rwlBNxQ6WDBD04Gd5dVW/AAu1aKX9iG OdyON8nPc9X3SU9ZScj7HqRBOPtIfd3/0NueX/5nH2UxhnhOxI25k8ECKp2VJlZ4 sQFb29sdNQ4sdzcrVWGTLo7fw1mrpw9K/kvPubljoVIE9yswX22xdGl4IFE+Wdwd iwah4eDHAYv4Wynzq5keepjnecRYVOCX -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:08 2025 by rpki-client