This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: 5lEXtuquCJUpwA/c2fTKluU/YQ1pOu9mFpZdBedfKMU= Subject key identifier: 6F:35:AE:A7:60:60:23:B6:AD:02:8C:AA:B8:A9:EF:1D:98:61:01:03 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 013D Signing time: Tue 23 Dec 2025 03:25:17 +0000 Manifest this update: Tue 23 Dec 2025 03:25:16 +0000 Manifest next update: Tue 30 Dec 2025 03:25:16 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: ZTS/Ql/ktuogGY5YW50bIylHzsqscvQuL6ik06CSmz0=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Dec 23 03:25:16 2025 GMT Not After : Dec 30 03:25:16 2025 GMT Subject: CN=694a0b9d-7571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:66:e5:7d:57:44:13:0a:4c:d1:8a:a3:a0:d5: d6:8f:62:96:f3:4b:2e:69:92:ba:7c:32:6d:b4:f6: 52:55:5b:eb:dd:c4:76:6e:5d:98:b4:03:88:39:28: 76:db:18:49:45:ea:04:73:7d:dd:c2:63:ba:a8:ee: 06:dc:cb:96:14:bf:45:71:47:f5:69:d3:44:d2:4b: ce:e4:ef:c3:d3:e6:68:bf:b5:95:ba:38:77:19:4e: 08:72:58:04:cc:c2:d1:9f:81:c9:b2:03:f6:30:f3: c7:b6:0d:0a:cc:bb:af:9d:35:d1:15:18:0c:71:fc: 95:04:6e:10:e2:d6:ea:cb:2d:89:5b:76:8b:27:3d: cf:17:f6:43:20:e5:8a:32:34:ce:69:1e:26:d3:ce: 6e:b5:78:20:ad:c6:9d:15:bc:aa:42:0a:a8:a0:e7: 85:d1:2a:f5:a3:84:78:dc:58:4f:cf:be:da:43:8c: c6:cd:a8:ae:98:39:40:24:d3:35:e5:4a:d0:96:bc: e6:79:58:ae:be:0d:17:b2:d9:b2:62:c2:6b:c6:12: aa:dc:26:23:83:de:f0:79:ab:72:7f:06:83:f1:06: a1:82:ab:1f:37:14:f2:a8:7c:3e:e9:56:89:b5:a2: 80:65:b8:79:fe:98:c5:44:54:b7:ec:1d:c9:3a:78: f8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:35:AE:A7:60:60:23:B6:AD:02:8C:AA:B8:A9:EF:1D:98:61:01:03 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:70:5a:32:23:e4:66:83:06:7d:5c:fd:2e:ca:df:bd:6e:e2: 71:dc:44:a2:cf:91:39:83:d5:34:b7:2e:68:51:b2:ea:52:15: 22:a1:50:33:26:8d:a0:7c:8a:87:73:79:59:0e:e5:40:b5:af: 74:f0:b4:f5:25:56:6d:fd:9e:70:42:07:6b:40:f7:f3:9e:64: d3:14:ff:85:35:96:26:25:ab:ef:ae:12:25:b3:60:2a:17:00: ad:7a:c0:73:78:b6:63:7c:63:8f:73:50:a1:d4:02:13:14:12: b4:a4:ab:a4:21:e5:0c:f0:ab:fc:f8:6e:d4:cd:36:79:d8:b9: 1d:75:20:45:89:61:70:c6:00:02:96:87:b8:cf:40:3f:8c:8e: 32:39:7a:10:c8:b0:a5:20:ca:3b:4c:69:22:84:9f:14:97:f4: 0b:78:33:a4:11:2d:7a:00:a5:66:1a:97:c3:16:1b:c1:47:ac: e9:9d:a2:60:a8:2f:00:3d:32:c7:bd:07:e9:d4:e4:23:b1:b3: 63:70:b6:24:e1:2a:95:a7:58:20:33:47:35:2c:45:0e:c7:6c: 90:a5:9b:cf:59:43:fd:bb:bd:9e:a7:bb:6f:32:27:c7:19:6d: e2:8b:34:73:9b:98:37:13:dd:52:bd:e4:fd:3e:b5:38:b8:a8: ad:41:5f:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUxMjIzMDMyNTE2WhcNMjUxMjMwMDMyNTE2WjAYMRYwFAYD VQQDDA02OTRhMGI5ZC03NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WblfVdEEwpM0YqjoNXWj2KW80suaZK6fDJttPZSVVvr3cR2bl2YtAOIOSh2 2xhJReoEc33dwmO6qO4G3MuWFL9FcUf1adNE0kvO5O/D0+Zov7WVujh3GU4IclgE zMLRn4HJsgP2MPPHtg0KzLuvnTXRFRgMcfyVBG4Q4tbqyy2JW3aLJz3PF/ZDIOWK MjTOaR4m085utXggrcadFbyqQgqooOeF0Sr1o4R43FhPz77aQ4zGzaiumDlAJNM1 5UrQlrzmeViuvg0XstmyYsJrxhKq3CYjg97weatyfwaD8QahgqsfNxTyqHw+6VaJ taKAZbh5/pjFRFS37B3JOnj4oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG81rqdg YCO2rQKMqrip7x2YYQEDMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpcFoyI+RmgwZ9XP0uyt+9buJx3ESiz5E5g9U0ty5oUbLqUhUioVAz Jo2gfIqHc3lZDuVAta908LT1JVZt/Z5wQgdrQPfznmTTFP+FNZYmJavvrhIls2Aq FwCtesBzeLZjfGOPc1Ch1AITFBK0pKukIeUM8Kv8+G7UzTZ52LkddSBFiWFwxgAC loe4z0A/jI4yOXoQyLClIMo7TGkihJ8Ul/QLeDOkES16AKVmGpfDFhvBR6zpnaJg qC8APTLHvQfp1OQjsbNjcLYk4SqVp1ggM0c1LEUOx2yQpZvPWUP9u72ep7tvMifH GW3iizRzm5g3E91SveT9PrU4uKitQV+p -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:45 2025 by rpki-client