This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: cE8qzpxdJAb6irbM5RwvhhmFUE+3EzzkZreoSWBsB4w= Subject key identifier: 15:F5:33:36:DE:70:F3:F2:05:D0:7D:5D:14:59:F1:22:4A:F8:24:B5 Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 0587 Signing time: Sat 20 Dec 2025 22:33:18 +0000 Manifest this update: Sat 20 Dec 2025 22:33:18 +0000 Manifest next update: Sat 27 Dec 2025 22:33:18 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: lvrNigsXFA4itpEwX5iDcpdkQcbkjwGRsWACETrFMlA=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: azq2/w0vOg+2swjHdLzDRr5hvzTCb3H9CNSdtAvO6hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Dec 20 22:33:18 2025 GMT Not After : Dec 27 22:33:18 2025 GMT Subject: CN=6947242e-5857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:ad:94:ab:05:77:0e:14:1c:ed:9a:f6:ab: cc:44:4f:fa:29:5c:e7:73:01:a4:5c:fb:4c:55:0c: 28:f8:37:b5:e3:7c:1d:82:e6:88:02:38:4f:c3:87: 27:09:7a:a6:b1:08:92:b8:36:8c:af:ba:b8:29:2a: 7c:74:03:89:f9:b9:bc:e3:64:39:27:82:8b:19:0f: 16:c8:24:56:0b:eb:87:da:a4:02:55:78:21:fe:b1: 39:95:e1:17:20:91:a3:cc:dc:a5:be:26:47:71:e7: 20:0a:bb:76:4a:a5:67:1f:19:eb:2d:f8:62:cb:79: 5e:e9:80:f4:48:f0:3b:5d:02:60:9f:b1:bc:c0:63: 02:2f:80:8d:4d:5b:41:36:70:61:66:21:bd:45:49: da:d7:c8:b5:21:95:12:05:60:1e:2d:d7:c4:c0:89: b0:3b:40:08:a3:8b:8c:8e:4c:c1:a8:86:ed:ec:9b: 75:60:fb:db:5f:64:2f:95:b2:93:63:82:83:7b:c6: bb:7a:2d:d9:5e:3c:f9:a9:4d:db:81:70:ae:73:c3: 0b:c0:21:cc:19:37:46:c7:3a:8a:44:15:67:86:7b: 96:2e:d4:73:6f:25:91:d9:54:79:93:29:ba:d6:f4: 80:46:33:98:af:11:bb:5c:a8:6c:a6:b2:5d:31:38: 1d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F5:33:36:DE:70:F3:F2:05:D0:7D:5D:14:59:F1:22:4A:F8:24:B5 X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:02:ab:48:08:a4:24:90:c4:43:89:22:ec:48:f6:f1:63:7b: c0:0a:eb:dd:35:4b:ea:3a:52:53:a2:b6:e1:80:a4:40:90:8b: 2d:29:06:c9:e6:71:20:05:a0:c3:2a:c5:95:9a:e6:9b:34:60: ae:99:6a:1c:10:52:e4:c1:a4:20:a4:35:d5:0c:f2:a3:5e:45: 12:52:76:e7:b5:e7:49:1e:8f:85:1c:29:b4:48:fe:48:cf:9c: 84:9a:99:ab:06:fa:ef:9a:70:bb:8b:b2:ab:9c:b1:54:ce:4c: 4f:e0:ae:25:8e:fc:7c:46:e6:81:e0:25:ed:7a:42:39:54:53: 0b:26:39:55:e1:5b:37:10:bb:49:69:57:a6:e9:53:ea:c0:ae: 0e:30:fc:c1:b6:d2:bf:53:c2:e2:b5:13:61:df:aa:67:03:db: bd:f7:53:f1:7e:00:8c:f3:6a:b6:f8:26:39:5c:a8:0e:ce:eb: 0d:b3:0e:ed:11:ce:d8:e0:30:dc:e2:56:ca:d8:e0:68:a3:29: b2:1b:88:d8:8c:b2:e5:6f:ba:e0:ac:da:d2:14:47:5c:91:ad: 6d:95:73:4b:0f:63:19:93:97:52:0a:3b:45:11:5d:f3:5f:1a: a9:58:c7:c7:1d:ae:91:3e:49:4b:b6:7e:9f:21:73:8e:ad:48: b2:a3:95:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUxMjIwMjIzMzE4WhcNMjUxMjI3MjIzMzE4WjAYMRYwFAYD VQQDDA02OTQ3MjQyZS01ODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRWtlKsFdw4UHO2a9qvMRE/6KVzncwGkXPtMVQwo+De143wdguaIAjhPw4cn CXqmsQiSuDaMr7q4KSp8dAOJ+bm842Q5J4KLGQ8WyCRWC+uH2qQCVXgh/rE5leEX IJGjzNylviZHcecgCrt2SqVnHxnrLfhiy3le6YD0SPA7XQJgn7G8wGMCL4CNTVtB NnBhZiG9RUna18i1IZUSBWAeLdfEwImwO0AIo4uMjkzBqIbt7Jt1YPvbX2QvlbKT Y4KDe8a7ei3ZXjz5qU3bgXCuc8MLwCHMGTdGxzqKRBVnhnuWLtRzbyWR2VR5kym6 1vSARjOYrxG7XKhsprJdMTgdXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBX1Mzbe cPPyBdB9XRRZ8SJK+CS1MB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGAqtICKQkkMRDiSLsSPbxY3vACuvdNUvqOlJTorbhgKRAkIstKQbJ 5nEgBaDDKsWVmuabNGCumWocEFLkwaQgpDXVDPKjXkUSUnbntedJHo+FHCm0SP5I z5yEmpmrBvrvmnC7i7KrnLFUzkxP4K4ljvx8RuaB4CXtekI5VFMLJjlV4Vs3ELtJ aVem6VPqwK4OMPzBttK/U8LitRNh36pnA9u991PxfgCM82q2+CY5XKgOzusNsw7t Ec7Y4DDc4lbK2OBooymyG4jYjLLlb7rgrNrSFEdcka1tlXNLD2MZk5dSCjtFEV3z XxqpWMfHHa6RPklLtn6fIXOOrUiyo5Ul -----END CERTIFICATE-----Generated at Mon Dec 22 22:36:55 2025 by rpki-client