This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: B63D0M7HdkEvxkLDxVPI9ALLg9pDhFC8m105EnOqnFQ= Subject key identifier: AB:29:FE:71:87:C2:D1:F3:13:06:36:52:9D:99:0F:2E:5F:0C:40:E8 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: F5 Signing time: Tue 23 Dec 2025 04:13:32 +0000 Manifest this update: Tue 23 Dec 2025 04:13:32 +0000 Manifest next update: Tue 30 Dec 2025 04:13:32 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: HyJbcYCJ3xKvVyLtz0vnDBT4bEPP69wbB0Pbr7MifYs=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Dec 23 04:13:32 2025 GMT Not After : Dec 30 04:13:32 2025 GMT Subject: CN=694a16ec-0553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:84:0b:3d:5e:dd:e0:24:85:f9:50:d9:db:cf: c8:88:00:e3:ad:ba:9f:ca:d5:d6:96:6c:27:14:93: 73:f8:61:98:f0:05:42:d2:f9:65:9f:cd:9b:4b:33: 21:df:98:17:9f:1a:3b:12:53:a0:25:ba:06:96:c7: a8:87:d5:0c:c0:4c:8c:66:cb:8f:fe:82:73:48:58: 49:c0:db:c8:de:cb:8f:49:65:11:fa:7c:12:29:08: 02:a4:52:c2:5f:7a:b8:e6:1b:6b:e8:e2:81:92:69: dd:8c:c0:ef:b7:9f:a5:aa:4b:23:34:9b:df:85:60: e2:a5:44:58:57:33:53:0f:86:5b:34:ad:3d:59:a2: 76:f9:45:91:43:5e:e8:08:a3:77:49:71:53:c8:0a: 13:3c:53:d9:47:63:58:05:ba:06:2b:89:00:b0:c4: 92:f1:21:89:22:e6:23:f8:06:37:0f:63:e1:78:93: 86:42:16:0c:c8:1d:f6:e3:86:7d:07:29:56:ce:51: 4c:27:da:10:a4:f3:ee:a0:d9:48:e6:09:cd:73:5d: 37:3d:fa:27:38:da:dc:c7:32:5d:53:8d:f1:11:43: 86:9b:15:47:d5:23:04:d2:e6:42:ac:4d:74:ec:82: 19:94:1e:f2:27:f2:9c:52:78:a2:32:44:a0:39:99: 4a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:29:FE:71:87:C2:D1:F3:13:06:36:52:9D:99:0F:2E:5F:0C:40:E8 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:2a:dc:e1:9b:fe:bc:fd:05:dd:8f:45:99:19:22:bf:e5:99: e1:3e:58:0f:98:58:ea:96:d5:a3:3d:05:ba:b8:f7:27:7c:08: 70:fc:80:32:87:2f:61:bb:61:6c:a7:fa:69:87:49:7f:20:2b: 1b:ff:e5:7e:61:f2:db:74:5a:ba:9c:89:30:51:ed:d9:17:d5: 15:9b:65:7b:b8:3b:0c:91:5d:e2:2e:a1:74:cf:80:40:56:fb: c1:c6:5e:3a:81:eb:7a:95:65:d2:ff:aa:84:db:64:bf:a1:87: 38:69:e8:0d:2e:d0:48:c8:8a:a7:2b:68:64:d2:81:cc:bc:4e: af:1d:8a:27:7e:61:38:a2:54:1c:48:86:87:eb:00:9f:15:3a: 74:85:30:59:b9:d3:ce:e3:0f:81:0c:0b:80:8a:7e:04:5b:2f: 81:be:74:cf:06:46:a6:8e:5b:85:8d:99:ce:4c:2b:9a:13:bf: 52:35:09:df:c4:17:32:12:42:3d:fc:ab:64:20:24:4f:28:bb: 6b:81:21:d3:32:af:0b:99:03:2b:6c:c9:c3:0f:41:11:03:eb: 9d:ff:78:38:c2:eb:0a:28:13:cd:b3:ba:4a:8f:1c:d1:5c:be: 42:b9:b8:f3:48:6f:64:96:14:f8:10:38:17:9b:fb:02:88:ef: a2:55:94:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUxMjIzMDQxMzMyWhcNMjUxMjMwMDQxMzMyWjAYMRYwFAYD VQQDDA02OTRhMTZlYy0wNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IQLPV7d4CSF+VDZ28/IiADjrbqfytXWlmwnFJNz+GGY8AVC0vlln82bSzMh 35gXnxo7ElOgJboGlseoh9UMwEyMZsuP/oJzSFhJwNvI3suPSWUR+nwSKQgCpFLC X3q45htr6OKBkmndjMDvt5+lqksjNJvfhWDipURYVzNTD4ZbNK09WaJ2+UWRQ17o CKN3SXFTyAoTPFPZR2NYBboGK4kAsMSS8SGJIuYj+AY3D2PheJOGQhYMyB3244Z9 BylWzlFMJ9oQpPPuoNlI5gnNc103PfonONrcxzJdU43xEUOGmxVH1SME0uZCrE10 7IIZlB7yJ/KcUniiMkSgOZlKwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsp/nGH wtHzEwY2Up2ZDy5fDEDoMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIKtzhm/68/QXdj0WZGSK/5ZnhPlgPmFjqltWjPQW6uPcnfAhw/IAy hy9hu2Fsp/pph0l/ICsb/+V+YfLbdFq6nIkwUe3ZF9UVm2V7uDsMkV3iLqF0z4BA VvvBxl46get6lWXS/6qE22S/oYc4aegNLtBIyIqnK2hk0oHMvE6vHYonfmE4olQc SIaH6wCfFTp0hTBZudPO4w+BDAuAin4EWy+BvnTPBkamjluFjZnOTCuaE79SNQnf xBcyEkI9/KtkICRPKLtrgSHTMq8LmQMrbMnDD0ERA+ud/3g4wusKKBPNs7pKjxzR XL5CubjzSG9klhT4EDgXm/sCiO+iVZR3 -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:26 2025 by rpki-client