This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: anYJgoNkNndfK2ZX3foLepkKYR3q40ThftMGLtT3/u4= Subject key identifier: B4:38:83:55:18:FE:FB:01:47:DC:E1:4A:AB:01:27:57:4F:D2:49:CF Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0CDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0CD0 Signing time: Mon 22 Dec 2025 17:49:30 +0000 Manifest this update: Mon 22 Dec 2025 17:49:30 +0000 Manifest next update: Mon 29 Dec 2025 17:49:30 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: I5SekHn2DpXSI4lkl5O4wIbbhNNmu4SLMuJpEMUEG5M=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: g/Wu5qsnOXz/tO3fGn1wnKRg6cUfPAvWhJqnHgDxhLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3295 (0xcdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B, serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Dec 22 17:49:30 2025 GMT Not After : Dec 29 17:49:30 2025 GMT Subject: CN=694984aa-8559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:bf:6b:ce:07:52:8a:ea:e6:d9:cd:4e:ce: 9a:f3:8b:81:cb:99:28:62:26:cd:ac:d6:f1:4d:c0: ac:ae:b4:bf:69:a6:e9:87:09:86:a4:6c:55:89:7f: 27:9c:79:77:5a:a9:27:bb:2e:93:c4:ec:48:a6:38: ab:0b:22:cf:dc:70:e3:da:ec:26:4e:70:5a:31:54: 98:9b:50:18:14:02:94:e1:78:a1:59:c5:a9:68:15: d6:06:b0:e1:4b:35:df:fb:69:d4:16:7f:95:93:a2: 1a:72:6d:50:68:8a:8d:e1:b1:12:c7:fd:47:4c:ce: 27:fc:02:65:86:21:65:32:ab:a1:ee:1b:90:44:71: 9b:b6:e0:7b:54:56:df:7a:24:d1:64:ab:aa:d8:05: e8:ea:7c:37:12:47:80:22:74:d4:45:33:62:1c:03: b0:83:a7:b8:dd:13:ef:6d:9b:f7:ac:5a:71:8c:6e: a7:80:8e:47:4e:45:9d:57:fc:c6:90:14:67:1f:ac: c6:7f:bc:2d:43:c2:4d:d7:d6:39:a5:33:11:f1:7f: 2d:ab:0d:1e:78:46:94:7b:eb:c7:20:bc:14:33:95: 38:ce:1a:e3:05:87:f1:a1:e5:77:43:16:f2:73:eb: e2:7d:74:e3:03:26:25:1c:73:62:28:38:dc:4e:d8: 74:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:38:83:55:18:FE:FB:01:47:DC:E1:4A:AB:01:27:57:4F:D2:49:CF X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:4b:99:2f:c8:4d:db:71:ba:67:ef:4b:0b:fd:3c:f2:4e:cd: e5:83:e4:6d:93:e1:1a:18:38:94:45:b7:37:1f:df:40:eb:ca: bd:f2:e8:f2:d2:9d:25:bb:3b:02:7b:5f:bb:50:97:32:85:b5: 58:8a:89:6f:55:10:a1:50:8c:f9:df:23:63:30:94:22:3a:f6: 3a:73:f1:7c:32:84:d7:86:6f:ae:d2:d4:52:28:fc:33:31:41: cb:0b:ca:60:a1:23:2d:17:10:46:6d:de:71:43:60:58:16:7c: 82:95:29:ec:15:a3:f2:47:60:8f:76:50:d5:d9:f6:b0:86:c8: 59:9f:a1:16:ff:65:6a:7a:7d:9f:3d:68:65:f2:be:2b:60:e6: 0f:17:64:81:ec:7a:75:5b:d8:2c:1a:2a:21:35:83:7b:b9:51: 20:ea:84:1f:48:ae:ce:85:11:07:a0:d8:f2:91:88:4f:95:70: 71:d0:3f:2c:f8:74:bd:d0:34:7a:4d:09:a9:1b:f4:87:1b:30: 1d:62:07:66:42:8b:61:43:55:51:7f:f4:47:e1:74:95:c1:d3: fd:8a:12:60:19:8b:ea:e8:5b:d3:fd:11:7b:b4:73:a1:0a:46: 46:4e:cf:b4:43:a3:e6:a1:2d:d8:cb:44:fa:d9:4b:f5:5e:52: 12:ab:32:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUxMjIyMTc0OTMwWhcNMjUxMjI5MTc0OTMwWjAYMRYwFAYD VQQDDA02OTQ5ODRhYS04NTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUi/a84HUorq5tnNTs6a84uBy5koYibNrNbxTcCsrrS/aabphwmGpGxViX8n nHl3Wqknuy6TxOxIpjirCyLP3HDj2uwmTnBaMVSYm1AYFAKU4XihWcWpaBXWBrDh SzXf+2nUFn+Vk6Iacm1QaIqN4bESx/1HTM4n/AJlhiFlMquh7huQRHGbtuB7VFbf eiTRZKuq2AXo6nw3EkeAInTURTNiHAOwg6e43RPvbZv3rFpxjG6ngI5HTkWdV/zG kBRnH6zGf7wtQ8JN19Y5pTMR8X8tqw0eeEaUe+vHILwUM5U4zhrjBYfxoeV3Qxby c+vifXTjAyYlHHNiKDjcTth0OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQ4g1UY /vsBR9zhSqsBJ1dP0knPMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1S5kvyE3bcbpn70sL/TzyTs3lg+Rtk+EaGDiURbc3H99A68q98ujy 0p0luzsCe1+7UJcyhbVYiolvVRChUIz53yNjMJQiOvY6c/F8MoTXhm+u0tRSKPwz MUHLC8pgoSMtFxBGbd5xQ2BYFnyClSnsFaPyR2CPdlDV2fawhshZn6EW/2Vqen2f PWhl8r4rYOYPF2SB7Hp1W9gsGiohNYN7uVEg6oQfSK7OhREHoNjykYhPlXBx0D8s +HS90DR6TQmpG/SHGzAdYgdmQothQ1VRf/RH4XSVwdP9ihJgGYvq6FvT/RF7tHOh CkZGTs+0Q6PmoS3Yy0T62Uv1XlISqzLB -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:18 2025 by rpki-client