This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: Rge9fLeqKWpKqFnjImqm+8HVJkzwZ7hjL34V7SMjkOE= Subject key identifier: 3F:6A:A9:E6:78:D6:F2:D4:0A:4A:74:88:BE:52:B1:DF:DB:F4:C2:1A Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 0A0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 0A04 Signing time: Mon 22 Dec 2025 19:14:59 +0000 Manifest this update: Mon 22 Dec 2025 19:14:59 +0000 Manifest next update: Mon 29 Dec 2025 19:14:59 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: Tr4d5/0JKHYXEYAx7FNjLWu5BkR3hoE0Fh+i2TaYTvU=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: 2eavA5MnM8j9MsEorxYmL8jVbA9inLFPJYXoSo6cKDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Dec 22 19:14:59 2025 GMT Not After : Dec 29 19:14:59 2025 GMT Subject: CN=694998b3-a3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ec:50:d4:9a:c5:33:c8:f2:20:af:b0:49:69: 00:9a:fa:2f:70:80:a0:e0:7b:6f:9b:45:99:b0:7b: 9c:dd:63:24:ee:df:96:54:09:ee:ef:e6:d2:c0:ac: 24:b1:ba:65:c0:05:c6:56:7e:e2:a9:f2:5c:07:1d: 58:35:6f:33:49:b1:bf:bf:32:64:01:ae:c5:30:51: d9:be:f6:cb:62:00:4d:e4:00:8a:a9:32:71:d0:b0: 90:68:cc:5e:5a:e7:c1:fe:9d:f1:8c:b3:46:53:06: b9:67:16:10:cc:62:62:7c:5b:3d:e6:dd:f4:d0:25: b9:96:88:3a:6f:93:b5:64:ff:48:d1:22:54:c3:1f: 7a:73:18:80:7c:42:54:fd:0b:e0:aa:2d:74:8f:5b: 6d:ec:23:90:29:aa:21:40:19:e2:a0:a1:2e:9f:44: 97:cd:2c:0d:20:fb:09:5d:57:2a:15:a0:3c:b0:24: 7a:dd:60:79:3c:3f:39:40:57:06:60:25:17:ef:53: 4a:f2:67:c3:22:65:0e:23:a0:d1:67:ae:99:03:8a: ed:ae:e0:7b:9c:05:82:58:32:a5:9e:be:f8:0b:79: 67:11:97:ee:fd:28:d1:67:dd:4f:bc:f5:72:7e:6a: 1b:c3:23:75:04:ab:82:e6:8c:14:62:fd:9e:13:bb: 35:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6A:A9:E6:78:D6:F2:D4:0A:4A:74:88:BE:52:B1:DF:DB:F4:C2:1A X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ee:ec:8d:c3:5f:56:83:d6:69:90:c0:c8:c4:ae:f0:67:2d: f7:c4:c1:ca:53:e0:b1:72:c2:9a:f8:cd:e4:7e:f1:11:a7:0f: e8:c8:f9:e5:1f:c5:52:26:e1:15:35:e2:1f:5f:d1:2e:86:c6: bc:44:45:f2:92:1e:06:68:c9:7e:fb:b1:ac:ca:de:14:ec:63: 9a:a9:be:bc:09:9b:7a:89:db:25:14:8f:a5:1d:8a:90:a0:5b: 78:de:be:47:73:c8:1e:1f:1e:d4:38:bb:70:39:98:a1:e9:06: 4e:39:2a:ae:4d:3d:86:d2:ab:34:e0:f0:0c:65:4d:4b:ce:81: 0c:77:36:b5:a6:45:08:91:d4:a1:a1:85:ec:af:4c:d9:f5:7d: 24:8e:f2:98:47:44:42:cc:76:a2:40:8e:fe:9a:55:96:6f:a1: 94:2d:e6:d6:f0:77:6b:3c:de:22:93:b4:8d:49:cc:42:cf:a0: 11:a2:00:e9:25:b5:77:75:0b:0c:50:1f:e6:78:9e:c4:39:0a: ba:68:c2:d7:22:76:f9:da:51:f8:a3:ec:e4:1b:75:ff:69:43: 86:03:f8:22:34:56:cb:53:71:94:dd:9e:ad:bf:cf:70:d8:68: 4c:c1:07:46:61:81:18:06:7a:35:be:ec:4a:70:7a:81:59:00: dc:b1:93:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUxMjIyMTkxNDU5WhcNMjUxMjI5MTkxNDU5WjAYMRYwFAYD VQQDDA02OTQ5OThiMy1hM2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArexQ1JrFM8jyIK+wSWkAmvovcICg4Htvm0WZsHuc3WMk7t+WVAnu7+bSwKwk sbplwAXGVn7iqfJcBx1YNW8zSbG/vzJkAa7FMFHZvvbLYgBN5ACKqTJx0LCQaMxe WufB/p3xjLNGUwa5ZxYQzGJifFs95t300CW5log6b5O1ZP9I0SJUwx96cxiAfEJU /Qvgqi10j1tt7COQKaohQBnioKEun0SXzSwNIPsJXVcqFaA8sCR63WB5PD85QFcG YCUX71NK8mfDImUOI6DRZ66ZA4rtruB7nAWCWDKlnr74C3lnEZfu/SjRZ91PvPVy fmobwyN1BKuC5owUYv2eE7s1qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9qqeZ4 1vLUCkp0iL5Ssd/b9MIaMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/7uyNw19Wg9ZpkMDIxK7wZy33xMHKU+CxcsKa+M3kfvERpw/oyPnl H8VSJuEVNeIfX9Euhsa8REXykh4GaMl++7Gsyt4U7GOaqb68CZt6idslFI+lHYqQ oFt43r5Hc8geHx7UOLtwOZih6QZOOSquTT2G0qs04PAMZU1LzoEMdza1pkUIkdSh oYXsr0zZ9X0kjvKYR0RCzHaiQI7+mlWWb6GULebW8HdrPN4ik7SNScxCz6ARogDp JbV3dQsMUB/meJ7EOQq6aMLXInb52lH4o+zkG3X/aUOGA/giNFbLU3GU3Z6tv89w 2GhMwQdGYYEYBno1vuxKcHqBWQDcsZNS -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:29 2025 by rpki-client