This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: E10wRlGsEpRGZQ4A2/pv2+cm64PYek02n+YhOEX4Itc= Subject key identifier: 0B:A9:CD:8C:60:E4:BE:A7:2D:87:99:17:99:BA:64:27:9C:92:39:E4 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01F4 Signing time: Tue 23 Dec 2025 01:33:17 +0000 Manifest this update: Tue 23 Dec 2025 01:33:17 +0000 Manifest next update: Tue 30 Dec 2025 01:33:17 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: OqXhQwaODPdbGM6+BWNXFjvjas+kkj6IsYEKXE0tsOw=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: 1sa+ik65HDpM/qIP+SkfWWXEJCGddK6P6JEdVTcmfes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Dec 23 01:33:17 2025 GMT Not After : Dec 30 01:33:17 2025 GMT Subject: CN=6949f15d-6d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a4:cc:d9:65:54:f2:80:0a:f7:25:a1:69:f1: 03:d1:74:f8:0e:2b:fa:e2:64:cd:a7:b1:c2:dc:27: 94:77:56:a3:a0:84:9a:25:78:e4:c9:3d:27:70:00: 07:5a:83:7e:95:67:c0:a8:44:d9:2b:2c:90:03:bf: d1:14:6d:9c:26:71:7b:1d:7f:52:7e:b7:4f:36:ba: b1:c4:b1:8f:58:94:13:ce:b9:5c:a9:5d:a2:fc:b2: fc:61:7d:72:e4:2a:70:d0:a8:23:bd:3b:e5:e6:aa: 04:a3:ce:bd:e4:30:6b:ab:0f:0f:b2:62:06:2e:9b: 20:c5:39:39:5c:15:44:42:e6:10:37:6c:58:5d:58: 82:c0:f9:e6:43:f3:fb:a9:33:ae:da:8d:5a:f7:86: 27:bc:22:41:42:4b:50:05:13:a5:17:43:88:4b:8b: d3:51:6a:77:eb:aa:97:d1:9b:d3:5f:cd:13:43:f9: 3f:47:83:be:7f:ed:54:b2:64:b9:32:5e:e1:c7:38: 0f:c7:0a:6d:5d:fa:f6:4e:f1:e5:c2:08:94:b1:8a: 61:a8:51:43:03:a6:b4:f0:39:e2:64:6f:99:ac:d1: 29:6d:ef:74:ec:3d:79:b7:f5:d9:eb:70:8a:a1:c8: 8d:8d:3b:57:24:53:99:4d:2d:dd:70:cd:53:43:6f: 18:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A9:CD:8C:60:E4:BE:A7:2D:87:99:17:99:BA:64:27:9C:92:39:E4 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:49:8e:0f:7e:f6:76:e9:32:8c:7b:be:ec:c1:75:ff:13:bd: e5:97:6d:cc:e7:d4:d6:2f:c0:13:42:27:e1:71:06:7c:27:12: 7e:8c:2e:26:66:2b:77:6d:85:b2:2f:2a:f7:e8:39:1e:2d:78: 5e:9c:5a:20:e7:85:5f:30:15:8a:3c:fe:63:07:d9:9a:b4:f5: de:92:87:b6:4a:56:64:58:39:ea:45:d0:ee:28:3a:b9:56:79: 21:8c:6d:68:9b:07:4b:0c:0b:dc:b2:c3:ce:b9:ba:97:f1:34: 5f:e0:95:cf:6a:b4:c4:1e:2b:da:a8:91:ee:8e:3f:13:57:56: dd:d6:4c:f1:10:63:d6:64:78:f1:1b:01:83:35:e5:bc:72:34: 57:3c:d3:40:16:51:f4:f7:e7:c0:54:37:8d:7a:e7:8f:80:c9: d9:21:05:f6:6e:b8:cb:c0:9f:bc:c0:cb:48:16:41:8f:04:d1: 04:49:7c:17:b3:2e:0a:cf:56:aa:45:25:34:a3:98:ae:fc:94: 81:0f:53:83:89:cc:0d:30:17:3c:35:4d:a8:af:de:f9:59:7f: 0d:a0:d6:0e:8c:0a:cf:5e:9f:88:01:bf:22:ab:1f:bb:07:79: d8:9e:0d:50:55:3e:d8:31:f1:c4:70:ae:2a:7c:cf:eb:c2:f4: 6c:56:69:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUxMjIzMDEzMzE3WhcNMjUxMjMwMDEzMzE3WjAYMRYwFAYD VQQDDA02OTQ5ZjE1ZC02ZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6TM2WVU8oAK9yWhafED0XT4Div64mTNp7HC3CeUd1ajoISaJXjkyT0ncAAH WoN+lWfAqETZKyyQA7/RFG2cJnF7HX9SfrdPNrqxxLGPWJQTzrlcqV2i/LL8YX1y 5Cpw0KgjvTvl5qoEo8695DBrqw8PsmIGLpsgxTk5XBVEQuYQN2xYXViCwPnmQ/P7 qTOu2o1a94YnvCJBQktQBROlF0OIS4vTUWp366qX0ZvTX80TQ/k/R4O+f+1UsmS5 Ml7hxzgPxwptXfr2TvHlwgiUsYphqFFDA6a08DniZG+ZrNEpbe907D15t/XZ63CK ociNjTtXJFOZTS3dcM1TQ28Y7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAupzYxg 5L6nLYeZF5m6ZCeckjnkMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDSY4PfvZ26TKMe77swXX/E73ll23M59TWL8ATQifhcQZ8JxJ+jC4m Zit3bYWyLyr36DkeLXhenFog54VfMBWKPP5jB9matPXekoe2SlZkWDnqRdDuKDq5 VnkhjG1omwdLDAvcssPOubqX8TRf4JXParTEHivaqJHujj8TV1bd1kzxEGPWZHjx GwGDNeW8cjRXPNNAFlH09+fAVDeNeuePgMnZIQX2brjLwJ+8wMtIFkGPBNEESXwX sy4Kz1aqRSU0o5iu/JSBD1ODicwNMBc8NU2or975WX8NoNYOjArPXp+IAb8iqx+7 B3nYng1QVT7YMfHEcK4qfM/rwvRsVmnd -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:36 2025 by rpki-client