This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: afu+1opjS2mW/9St0Y7IYIjDut1vSV+6NJgJwTcAW5I= Subject key identifier: D8:FD:02:37:13:B8:29:38:DA:92:04:C7:B6:EF:86:B9:34:89:B6:84 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 122B Signing time: Mon 22 Dec 2025 17:19:33 +0000 Manifest this update: Mon 22 Dec 2025 17:19:32 +0000 Manifest next update: Mon 29 Dec 2025 17:19:32 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: +ybi65PzouOEaJ2kT02qX9HvTmK8lfBuzLSvxlH+GA4=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Dec 22 17:19:32 2025 GMT Not After : Dec 29 17:19:32 2025 GMT Subject: CN=69497da5-04b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2b:d5:52:a0:6f:5d:f3:46:11:14:a9:ac:11: d8:3c:e3:7a:7c:a6:17:bc:4a:87:73:bf:03:58:be: c2:68:47:3b:69:92:ec:87:63:8b:d4:50:97:0c:9c: b5:ba:f8:c5:41:50:0a:c9:b8:f3:e5:6e:ad:11:42: 11:e3:4e:eb:2f:e4:94:2e:8e:34:10:e4:14:a9:d1: ae:d7:46:9d:b7:bb:74:c5:84:2a:e7:e5:c6:a7:2d: 69:8c:a9:3e:58:52:91:4a:2a:d7:9e:a9:72:03:da: 00:7a:46:ce:e3:22:6f:70:e0:b0:47:13:44:6f:7a: 99:a2:88:1a:61:9e:f5:d4:c7:d8:db:60:5b:f4:fb: c0:17:ae:73:3c:da:4c:9e:89:6e:4f:1c:61:0a:3a: 8a:c2:24:57:10:b5:03:90:9e:7f:8e:16:d7:b3:3f: 8a:c9:19:af:e2:80:93:5a:93:9e:43:21:92:1b:11: f1:54:3a:05:44:6c:60:43:1e:d9:da:cd:43:49:06: 8f:bd:26:eb:3d:fc:42:08:54:0f:7a:99:46:f6:3b: 91:20:16:9e:96:8b:49:49:5a:f5:22:c1:07:d7:5a: fa:c8:6c:9f:ee:76:ec:40:31:a3:6a:e4:2c:82:7e: f1:1e:e1:72:cb:1d:fd:9c:8d:a3:18:cc:1e:57:e6: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FD:02:37:13:B8:29:38:DA:92:04:C7:B6:EF:86:B9:34:89:B6:84 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e2:88:ce:89:6e:d2:93:df:b4:21:3e:76:c7:43:54:8f:40: bf:e6:aa:02:65:6b:29:e3:a7:26:d3:70:2e:52:0b:90:3e:b6: 60:c2:e3:b3:6c:7f:e8:da:15:bb:6d:74:d9:7a:50:91:30:f1: 00:d5:77:50:01:10:6e:aa:23:0e:be:02:3b:f8:54:64:4d:3a: 9d:1c:e8:48:b9:6d:d5:c4:6e:fa:9d:5c:5b:24:1a:d6:f2:31: 99:ae:90:de:df:44:db:2a:89:44:44:07:c5:14:55:2b:a4:43: 1c:de:61:d1:01:3a:91:87:87:cc:31:a3:0e:34:f4:52:f2:0b: a3:7c:41:5d:6e:56:2a:ed:d6:81:48:92:7b:87:41:b0:23:01: 0c:9f:c0:40:54:72:90:41:ea:bf:ed:ce:10:fb:53:07:1c:92: aa:ca:0f:2e:e2:48:80:cb:d6:c9:72:8d:32:e0:e5:20:77:5a: 2d:5f:17:d6:1a:96:1c:50:1f:da:25:7d:2e:3e:80:2b:ba:ab: 50:19:eb:1f:a3:c2:d5:42:35:82:6a:06:e6:23:25:4a:45:a3: a3:12:23:65:f0:df:1a:2d:76:62:53:9c:f6:ae:58:ae:a7:7f: e2:21:6a:a1:24:9f:2e:d4:41:4c:e4:cb:7f:ec:d9:6c:6a:63: 19:ae:08:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUxMjIyMTcxOTMyWhcNMjUxMjI5MTcxOTMyWjAYMRYwFAYD VQQDDA02OTQ5N2RhNS0wNGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCvVUqBvXfNGERSprBHYPON6fKYXvEqHc78DWL7CaEc7aZLsh2OL1FCXDJy1 uvjFQVAKybjz5W6tEUIR407rL+SULo40EOQUqdGu10adt7t0xYQq5+XGpy1pjKk+ WFKRSirXnqlyA9oAekbO4yJvcOCwRxNEb3qZoogaYZ711MfY22Bb9PvAF65zPNpM noluTxxhCjqKwiRXELUDkJ5/jhbXsz+KyRmv4oCTWpOeQyGSGxHxVDoFRGxgQx7Z 2s1DSQaPvSbrPfxCCFQPeplG9juRIBaelotJSVr1IsEH11r6yGyf7nbsQDGjauQs gn7xHuFyyx39nI2jGMweV+az9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj9AjcT uCk42pIEx7bvhrk0ibaEMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw4ojOiW7Sk9+0IT52x0NUj0C/5qoCZWsp46cm03AuUguQPrZgwuOz bH/o2hW7bXTZelCRMPEA1XdQARBuqiMOvgI7+FRkTTqdHOhIuW3VxG76nVxbJBrW 8jGZrpDe30TbKolERAfFFFUrpEMc3mHRATqRh4fMMaMONPRS8gujfEFdblYq7daB SJJ7h0GwIwEMn8BAVHKQQeq/7c4Q+1MHHJKqyg8u4kiAy9bJco0y4OUgd1otXxfW GpYcUB/aJX0uPoAruqtQGesfo8LVQjWCagbmIyVKRaOjEiNl8N8aLXZiU5z2rliu p3/iIWqhJJ8u1EFM5Mt/7NlsamMZrgi3 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:28 2025 by rpki-client