This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft File: yGA2V1UkSO1buu1xck0iIPA798Y.mft (raw, json) Hash identifier: JU5ois3qDvc8ck1J7u+C5hT02GJkdqtx4X9MmoEMzGI= Subject key identifier: 8F:81:3A:05:E1:1B:A9:33:1C:50:6D:E9:30:E4:4E:12:02:05:DB:94 Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft Manifest number: 010C Signing time: Sun 07 Dec 2025 03:18:38 +0000 Manifest this update: Sun 07 Dec 2025 03:18:37 +0000 Manifest next update: Sun 14 Dec 2025 03:18:37 +0000 Files and hashes: 1: yGA2V1UkSO1buu1xck0iIPA798Y.crl (hash: YkMvZOoL/xQbbk5U248hVfWHZ5BUE0MP0tj5vQidtDE=) 2: 68EBA63A48B911EFB80D9535C4F9AE02.roa (hash: SDdYRvXnG416X1QTBXKH/HiVb0zTXNC7wcw8Ko4jVbs=) 3: C006CA2248B311EFB8A4C178C4F9AE02.roa (hash: BB5/p5ExgMeQd5Go8UNqIFMq/xQWZ4tohFPvDD4Zv98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Dec 7 03:18:37 2025 GMT Not After : Dec 14 03:18:37 2025 GMT Subject: CN=6934f20e-3121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ea:9a:f9:af:48:5c:44:3d:89:2e:b8:47:05: 5d:47:a5:a9:53:7b:d3:c4:62:ea:31:c0:36:e7:2d: f3:e5:91:08:af:f0:be:76:bd:33:85:d0:43:d2:7e: 1d:c0:5e:13:77:34:c7:3e:5b:65:07:ae:91:bc:2f: 34:9f:f4:b1:3d:03:4f:0c:b8:5f:78:3e:8a:e2:c2: 32:33:e6:43:16:32:c1:33:13:03:9d:b5:f3:9e:d1: 3c:d7:a2:56:40:01:c4:3b:5e:ec:44:eb:5c:3e:12: db:2a:06:1b:9e:46:18:9a:4f:95:ca:1d:d5:ab:cf: 6d:ee:9c:29:26:95:4f:6c:cd:5f:49:69:a1:1b:9c: 11:dd:c2:19:db:94:86:ca:99:8b:37:00:82:a2:0e: 4b:c1:ea:92:1c:ab:83:32:27:81:5c:fa:cb:cf:24: d1:13:5d:e5:fc:38:6e:5c:3e:58:86:55:cb:d8:ee: 36:61:b6:e6:8b:b9:d6:67:f8:59:9a:5e:90:6c:94: c1:9a:dd:32:1d:e4:6f:a0:10:26:fe:34:16:ef:47: 3b:3f:9f:77:98:9e:3e:52:fa:e4:b5:1e:91:40:f3: 3f:83:0b:8f:84:d6:28:ad:ed:72:aa:2a:33:74:0e: 85:d6:ea:89:81:5b:9b:fa:c5:c4:42:cb:05:86:db: ed:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:81:3A:05:E1:1B:A9:33:1C:50:6D:E9:30:E4:4E:12:02:05:DB:94 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d7:6a:47:8e:2b:46:6f:3d:d3:99:9a:80:c7:0e:82:8b:a2: 69:6b:68:88:2f:d0:ac:af:17:6e:4c:4c:7b:c2:e4:cc:dc:b7: 70:9d:fa:01:8d:84:3e:6a:e1:7f:5b:cb:b3:67:ed:59:85:e5: ae:25:84:52:24:4a:61:ec:54:de:3c:53:9d:9d:b8:2c:9b:c0: 73:e4:77:3a:cf:79:f3:67:db:46:6a:49:33:40:6b:3c:2f:0c: 09:ad:cf:27:30:67:87:04:49:b5:11:65:e0:ad:4f:a7:b9:1e: 8e:ab:e9:70:f4:8c:f6:e6:20:6a:0c:df:d9:91:3a:aa:2c:42: 97:94:57:bc:55:5d:05:3b:b2:5f:ff:06:6b:bf:3e:51:14:74: 86:dd:8f:ca:c8:f2:60:64:1d:18:38:fb:70:28:5e:49:73:19: 8a:05:07:f5:42:f2:e1:84:f3:e2:50:6a:a4:0e:e2:20:ed:15: 90:fe:a6:8c:94:5d:44:54:29:b4:7d:b0:98:17:13:cd:db:56: e2:d5:06:6a:d5:e9:79:47:a6:d3:17:d7:ac:25:ce:1f:28:fa: 75:67:60:80:29:dc:a8:05:97:fd:7d:9a:29:b3:da:1b:90:a5: b0:22:79:3a:a4:2e:57:17:d4:53:5d:10:05:2e:36:3e:4a:10: 47:09:17:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjUxMjA3MDMxODM3WhcNMjUxMjE0MDMxODM3WjAYMRYwFAYD VQQDEw02OTM0ZjIwZS0zMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+qa+a9IXEQ9iS64RwVdR6WpU3vTxGLqMcA25y3z5ZEIr/C+dr0zhdBD0n4d wF4TdzTHPltlB66RvC80n/SxPQNPDLhfeD6K4sIyM+ZDFjLBMxMDnbXzntE816JW QAHEO17sROtcPhLbKgYbnkYYmk+Vyh3Vq89t7pwpJpVPbM1fSWmhG5wR3cIZ25SG ypmLNwCCog5LweqSHKuDMieBXPrLzyTRE13l/DhuXD5YhlXL2O42Ybbmi7nWZ/hZ ml6QbJTBmt0yHeRvoBAm/jQW70c7P593mJ4+UvrktR6RQPM/gwuPhNYore1yqioz dA6F1uqJgVub+sXEQssFhtvtGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+BOgXh G6kzHFBt6TDkThICBduUMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi82RDIwNzVGNjQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NP MWJ1dTF4Y2swaUlQQTc5OFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc12pHjitGbz3TmZqAxw6Ci6Jpa2iIL9CsrxduTEx7wuTM3LdwnfoB jYQ+auF/W8uzZ+1ZheWuJYRSJEph7FTePFOdnbgsm8Bz5Hc6z3nzZ9tGakkzQGs8 LwwJrc8nMGeHBEm1EWXgrU+nuR6Oq+lw9Iz25iBqDN/ZkTqqLEKXlFe8VV0FO7Jf /wZrvz5RFHSG3Y/KyPJgZB0YOPtwKF5JcxmKBQf1QvLhhPPiUGqkDuIg7RWQ/qaM lF1EVCm0fbCYFxPN21bi1QZq1el5R6bTF9esJc4fKPp1Z2CAKdyoBZf9fZops9ob kKWwInk6pC5XF9RTXRAFLjY+ShBHCRfC -----END CERTIFICATE-----Generated at Sun Dec 7 11:14:35 2025 by rpki-client