This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: /8UUuJcg+0JMuS9xcvp21rp5kDwzIsTJipFpDHkA5tg= Subject key identifier: 41:0F:7E:33:76:D5:19:E9:D3:6B:E4:08:3A:E2:38:5D:95:5F:AD:E5 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0C63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0C59 Signing time: Mon 22 Dec 2025 18:11:38 +0000 Manifest this update: Mon 22 Dec 2025 18:11:37 +0000 Manifest next update: Mon 29 Dec 2025 18:11:37 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: H8Psn+3mOwTyqPFJsRNKNVDg4fULq6PwADiu3JHd2lc=) 2: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: d+PNEJYkgwfN/EWh9YAvK3NrsnGHrIa0Ji1QGqGUhS8=) 3: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: 3gAyCRS9eTrSpT6uGMaC2W//L+1mB9VyFAfUFmHY1AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Dec 22 18:11:37 2025 GMT Not After : Dec 29 18:11:37 2025 GMT Subject: CN=694989d9-15eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:24:36:bc:20:7b:d4:79:17:eb:48:fe:b4: 98:a3:d3:25:9c:2c:ac:d8:cf:c6:2d:97:2f:19:2c: 4d:d6:2d:c9:70:b4:d7:c2:62:0f:fe:c7:3c:0d:ce: ad:26:77:b6:77:9d:6d:54:32:2f:79:a8:44:5f:71: 18:19:5a:0b:73:c6:86:7d:ac:9e:79:1b:08:15:f9: 53:b9:11:e3:53:05:60:08:8e:89:56:4f:c6:8a:d0: 33:35:d0:81:3c:3a:c3:a7:d4:df:12:18:12:d3:b6: 2b:60:a4:15:0c:78:bd:a6:a6:8d:32:76:79:9f:21: 15:f1:ae:b7:e3:10:fd:08:6e:f5:df:d0:04:3a:ce: 18:03:da:aa:26:89:1e:40:56:f8:d8:73:bb:e7:61: 49:3a:32:fa:50:70:24:8a:4b:46:55:29:20:83:67: bb:69:23:c6:eb:70:a0:a9:3a:4b:ea:f4:d0:fb:e4: 65:94:8e:1d:78:3e:be:2a:17:cf:91:ad:51:8b:dc: 67:42:b1:f4:ff:37:5e:2d:80:81:05:f2:e2:de:99: e4:2b:47:50:3c:0e:1d:63:e8:69:c0:73:50:e2:5a: f9:c3:81:25:13:c9:81:cc:9a:a5:46:ad:b9:6c:4a: 6c:69:f7:98:7c:ed:f2:28:fb:37:34:9d:1d:de:a7: 80:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0F:7E:33:76:D5:19:E9:D3:6B:E4:08:3A:E2:38:5D:95:5F:AD:E5 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1a:63:df:17:2c:1c:b8:06:3a:89:8f:46:df:4d:c0:1a:25: 6b:57:18:f2:90:1f:cd:63:85:52:9c:f1:6f:f7:9c:84:02:1b: 34:a0:64:d5:7b:b8:d5:5f:e5:e9:ff:29:d1:5c:df:8d:e1:52: 19:d1:8a:28:63:30:1b:85:75:ee:0f:79:d2:27:0f:f8:f1:62: a2:13:a9:71:0d:a0:31:1c:3c:d4:78:bf:70:74:af:27:11:2c: 79:d9:fe:0c:40:15:fc:46:b7:28:f8:23:55:10:35:89:81:ea: 17:2f:4c:85:cf:e1:00:25:51:05:80:d5:97:96:3e:3a:59:32: 6e:76:63:d2:c5:b6:be:11:c4:8c:50:5b:59:83:59:74:6f:62: 96:80:d7:66:12:19:02:b8:de:f7:85:2c:07:93:d8:8b:6d:06: 70:34:70:34:aa:a3:40:4f:20:91:a2:b0:64:58:4b:81:31:d9: 31:b3:c4:29:73:80:86:8c:0b:95:cf:3e:b7:2b:e6:60:ff:1c: 0b:67:e1:fa:6c:10:15:62:d0:85:57:15:fa:a2:30:fb:db:b8: 0f:ef:2e:e7:bf:66:ab:f0:61:a8:24:d8:54:62:df:4b:a7:e4: 19:99:d2:3b:4d:a2:d8:cb:78:12:a1:be:96:10:c9:1d:02:4c: 66:1c:5b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjUxMjIyMTgxMTM3WhcNMjUxMjI5MTgxMTM3WjAYMRYwFAYD VQQDDA02OTQ5ODlkOS0xNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufokNrwge9R5F+tI/rSYo9MlnCys2M/GLZcvGSxN1i3JcLTXwmIP/sc8Dc6t Jne2d51tVDIveahEX3EYGVoLc8aGfayeeRsIFflTuRHjUwVgCI6JVk/GitAzNdCB PDrDp9TfEhgS07YrYKQVDHi9pqaNMnZ5nyEV8a634xD9CG7139AEOs4YA9qqJoke QFb42HO752FJOjL6UHAkiktGVSkgg2e7aSPG63CgqTpL6vTQ++RllI4deD6+KhfP ka1Ri9xnQrH0/zdeLYCBBfLi3pnkK0dQPA4dY+hpwHNQ4lr5w4ElE8mBzJqlRq25 bEpsafeYfO3yKPs3NJ0d3qeATwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEPfjN2 1Rnp02vkCDriOF2VX63lMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPGmPfFywcuAY6iY9G303AGiVrVxjykB/NY4VSnPFv95yEAhs0oGTV e7jVX+Xp/ynRXN+N4VIZ0YooYzAbhXXuD3nSJw/48WKiE6lxDaAxHDzUeL9wdK8n ESx52f4MQBX8Rrco+CNVEDWJgeoXL0yFz+EAJVEFgNWXlj46WTJudmPSxba+EcSM UFtZg1l0b2KWgNdmEhkCuN73hSwHk9iLbQZwNHA0qqNATyCRorBkWEuBMdkxs8Qp c4CGjAuVzz63K+Zg/xwLZ+H6bBAVYtCFVxX6ojD727gP7y7nv2ar8GGoJNhUYt9L p+QZmdI7TaLYy3gSob6WEMkdAkxmHFs0 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:13 2025 by rpki-client