This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft File: YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft (raw, json) Hash identifier: liGYGp+3yZPVMN2wC2RuYv5pjwGMlP0laCqjnS0uLVg= Subject key identifier: F3:77:F8:F3:07:1F:BF:96:5B:17:46:7B:08:F0:B9:1A:96:F7:5C:49 Authority key identifier: 62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B Certificate issuer: /CN=A91DD1F9/serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft Manifest number: 0107 Signing time: Tue 23 Dec 2025 04:01:04 +0000 Manifest this update: Tue 23 Dec 2025 04:01:03 +0000 Manifest next update: Tue 30 Dec 2025 04:01:03 +0000 Files and hashes: 1: YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl (hash: dXWlvGrR/ccje3CcxlfI1e3c+phb6wPLDSXN+l7MLWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=62CA9C126E14FFBBBC3D6407105EBE151B99605B Validity Not Before: Dec 23 04:01:03 2025 GMT Not After : Dec 30 04:01:03 2025 GMT Subject: CN=694a1400-a4e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:de:c0:d4:14:8f:f5:8e:c3:8b:e5:17:4c: 82:d5:d7:ba:08:2a:5d:ed:08:c9:a3:66:a2:12:aa: e5:e1:c8:82:f4:c4:a8:b2:26:c0:66:20:b1:0c:68: 7f:4c:3f:45:00:68:0f:9b:8a:aa:dc:e5:a7:6e:7d: 8e:86:d1:80:77:33:9a:01:b4:68:28:c4:3b:06:79: 33:b6:5b:69:cb:f6:85:44:96:e2:bf:18:94:16:71: 25:4c:1d:32:48:88:fd:69:ff:8b:e6:90:cc:03:ee: df:d7:06:40:4b:56:32:83:3d:ff:4b:b0:09:58:bc: c9:40:07:77:b3:a9:47:9c:15:7e:1e:a8:00:c5:2a: da:db:02:04:c4:c8:ae:6c:c5:7b:09:35:01:13:30: 9e:4c:e2:61:84:87:b5:ec:74:24:7e:f1:39:ca:17: 34:cb:59:d4:46:4b:eb:d8:46:8e:13:e8:ae:ea:fd: d7:ea:19:cb:c7:2c:c0:bf:87:ea:7f:a3:ba:85:33: dc:6d:73:7f:cb:cc:bf:d8:bd:9e:5f:e6:4a:0a:07: 97:3d:66:02:50:6c:14:68:63:a8:ac:78:5c:e1:e0: 96:cc:ad:1c:c6:15:db:aa:61:0f:09:9a:a0:c6:42: 74:be:2f:52:43:67:04:be:8c:c5:7f:aa:52:bd:3f: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:77:F8:F3:07:1F:BF:96:5B:17:46:7B:08:F0:B9:1A:96:F7:5C:49 X509v3 Authority Key Identifier: keyid:62:CA:9C:12:6E:14:FF:BB:BC:3D:64:07:10:5E:BE:15:1B:99:60:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsqcEm4U_7u8PWQHEF6-FRuZYFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/484F26E64ACF11EFB8218E15C4F9AE02/YsqcEm4U_7u8PWQHEF6-FRuZYFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c9:00:9b:31:86:25:5d:19:f8:a1:08:9b:0d:c5:74:9f:27: fe:b5:08:96:a5:68:92:bb:03:28:d2:4d:5e:4e:12:82:c2:52: e1:dc:5d:71:1d:09:12:ef:45:ca:52:db:d5:a3:61:50:be:ee: 64:db:7e:d0:6a:88:83:86:be:85:49:58:51:b8:5b:25:7f:68: 0d:fd:8c:fc:9f:9b:02:13:99:76:ef:7e:c3:7a:82:08:aa:cf: b2:86:a7:8f:a7:5c:d1:f2:dc:65:95:00:42:02:d7:15:78:9a: 8a:80:81:9c:ac:f4:e8:a5:e2:63:d3:4e:c7:77:75:4a:0c:77: 74:65:19:aa:6a:67:43:63:96:8d:9a:fe:9f:87:72:b8:59:9d: 69:3e:03:e6:43:d6:7b:fb:90:63:7c:9f:7d:99:b8:be:b4:7e: 60:f4:00:36:c4:56:e1:8d:c1:82:7f:da:6f:f7:a7:2d:25:68: b9:75:72:b9:74:e3:44:b2:94:9a:4d:3f:c0:3d:ff:41:c7:b9: 7c:2a:36:37:eb:41:fd:1d:37:e4:7a:21:1f:40:f4:96:9f:1d: 36:57:a8:0b:c4:a7:c2:b3:dd:85:82:c8:9e:d2:a1:9b:5c:96: f0:77:ec:78:e8:bb:1f:da:de:31:1d:c7:8f:31:c6:67:c3:1f: 4c:9b:7e:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKDYyQ0E5QzEyNkUxNEZGQkJCQzNENjQwNzEwNUVCRTE1 MUI5OTYwNUIwHhcNMjUxMjIzMDQwMTAzWhcNMjUxMjMwMDQwMTAzWjAYMRYwFAYD VQQDDA02OTRhMTQwMC1hNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzTewNQUj/WOw4vlF0yC1de6CCpd7QjJo2aiEqrl4ciC9MSosibAZiCxDGh/ TD9FAGgPm4qq3OWnbn2OhtGAdzOaAbRoKMQ7Bnkztltpy/aFRJbivxiUFnElTB0y SIj9af+L5pDMA+7f1wZAS1Yygz3/S7AJWLzJQAd3s6lHnBV+HqgAxSra2wIExMiu bMV7CTUBEzCeTOJhhIe17HQkfvE5yhc0y1nURkvr2EaOE+iu6v3X6hnLxyzAv4fq f6O6hTPcbXN/y8y/2L2eX+ZKCgeXPWYCUGwUaGOorHhc4eCWzK0cxhXbqmEPCZqg xkJ0vi9SQ2cEvozFf6pSvT+CywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN3+PMH H7+WWxdGewjwuRqW91xJMB8GA1UdIwQYMBaAFGLKnBJuFP+7vD1kBxBevhUbmWBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80ODRGMjZFNjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi9Zc3FjRW00VV83dThQV1FIRUY2LUZSdVpZ RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzcWNFbTRVXzd1OFBXUUhFRjYtRlJ1WllGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDFGOS80ODRGMjZFNjRBQ0YxMUVGQjgyMThFMTVDNEY5QUUwMi9Zc3FjRW00VV83 dThQV1FIRUY2LUZSdVpZRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/yQCbMYYlXRn4oQibDcV0nyf+tQiWpWiSuwMo0k1eThKCwlLh3F1x HQkS70XKUtvVo2FQvu5k237QaoiDhr6FSVhRuFslf2gN/Yz8n5sCE5l2737DeoII qs+yhqePp1zR8txllQBCAtcVeJqKgIGcrPTopeJj007Hd3VKDHd0ZRmqamdDY5aN mv6fh3K4WZ1pPgPmQ9Z7+5BjfJ99mbi+tH5g9AA2xFbhjcGCf9pv96ctJWi5dXK5 dONEspSaTT/APf9Bx7l8KjY360H9HTfkeiEfQPSWnx02V6gLxKfCs92Fgsie0qGb XJbwd+x46Lsf2t4xHcePMcZnwx9Mm34z -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:30 2025 by rpki-client