This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft File: Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft (raw, json) Hash identifier: kn0FN0epeWk5UR4hKyznqyMYZrLpdCN3rGDSLo4OXxY= Subject key identifier: E9:D1:35:77:59:CB:63:01:42:D3:6E:B1:CA:40:F2:DD:D5:1B:9A:69 Authority key identifier: 63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E Certificate issuer: /CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Certificate serial: 0BC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft Manifest number: 1485 Signing time: Mon 22 Dec 2025 18:27:49 +0000 Manifest this update: Mon 22 Dec 2025 18:27:48 +0000 Manifest next update: Mon 29 Dec 2025 18:27:48 +0000 Files and hashes: 1: Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl (hash: ahaDPKpAqcsZOHG86TkLQhK4eCMlZ9z6wP1ClaHhHnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Validity Not Before: Dec 22 18:27:48 2025 GMT Not After : Dec 29 18:27:48 2025 GMT Subject: CN=69498da4-c668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:f3:60:c1:1d:06:ee:85:26:e9:0a:30:ab: 31:dd:1f:ea:89:85:02:58:2e:20:5a:b1:0b:41:90: f6:d5:3d:53:dd:10:bf:fa:79:3f:56:33:48:43:51: 9b:19:34:38:b5:d3:c6:aa:54:8f:63:92:d6:c6:75: 13:0e:90:0a:34:69:62:96:5d:d4:9f:e8:93:5b:20: c6:39:fc:fe:63:47:fd:7c:1e:2e:ec:03:53:48:93: 1a:e3:cd:46:9c:8d:fb:35:01:97:1e:3f:d9:37:5f: 9b:7c:95:a2:41:f2:e1:af:fa:31:80:29:ac:d8:e4: 0e:06:7c:e0:b8:c6:77:3a:73:7a:1f:89:dd:cd:ad: b7:0b:3a:3b:84:53:e8:4d:e6:53:4d:ff:18:bb:53: a5:11:78:ea:86:cc:71:16:87:5c:fb:3c:cb:53:a5: 52:ef:64:c7:7a:53:44:f7:a4:b0:03:78:fb:c4:a7: c1:05:fd:20:da:df:24:d7:94:6b:0a:18:19:29:26: 0e:9c:3a:7b:b8:ee:34:eb:a4:cf:42:b4:0e:3f:5c: 35:21:30:b9:82:fd:13:39:3b:a5:02:c2:72:bf:08: b1:b3:c8:6c:1f:68:7b:4b:c5:3e:85:98:75:72:ff: 8c:9d:1c:81:d1:14:8e:9a:4a:eb:ac:b6:b8:dc:51: 4d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D1:35:77:59:CB:63:01:42:D3:6E:B1:CA:40:F2:DD:D5:1B:9A:69 X509v3 Authority Key Identifier: keyid:63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:7f:49:eb:46:12:ec:8a:84:ee:8e:42:ae:ed:15:f2:cf:30: 96:32:38:9e:ba:77:9e:56:7d:9b:a8:6e:7e:20:c2:41:b4:13: 64:76:a3:d7:49:c8:97:f6:5c:13:ab:24:34:03:b8:3a:ed:c4: 92:29:be:c0:c6:b8:90:7f:c2:2d:92:ad:13:41:5b:c3:ef:03: 8d:f8:80:be:15:7f:d4:85:4c:b9:ed:33:f8:14:a5:e0:8b:f3: 73:16:8c:2f:14:f5:6d:18:f3:a5:1d:ed:a5:3a:b8:f5:0c:7f: c4:97:de:43:1a:82:73:44:e7:9d:69:d2:c7:16:d3:f7:15:df: 47:5b:60:a1:87:bf:c6:c5:b8:80:0b:11:e4:0a:91:17:68:04: 45:8d:c3:b3:23:5a:df:fb:60:bc:6b:b7:3d:87:f7:f1:55:97: df:34:ee:79:1a:61:c7:a9:61:a5:ce:af:34:8a:72:24:e9:5e: a6:cc:4c:93:fc:ce:e8:9c:87:45:58:4d:da:4f:69:d1:34:ef: 8b:6c:22:69:9e:15:6b:cf:a0:7b:34:aa:be:5a:fb:4c:f5:29: df:94:2f:98:3f:d6:48:80:6e:73:af:3b:44:7e:d9:5a:4d:88: 72:a8:fa:d6:80:bc:c8:30:b8:48:3f:70:85:f9:ad:b1:d8:2d: e7:e4:a6:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKDYzRUJBNDg1MDI1MTEzNDBCODI1MjYxRDVFQzIwQTkx MjdBRjI5NUUwHhcNMjUxMjIyMTgyNzQ4WhcNMjUxMjI5MTgyNzQ4WjAYMRYwFAYD VQQDDA02OTQ5OGRhNC1jNjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9vzYMEdBu6FJukKMKsx3R/qiYUCWC4gWrELQZD21T1T3RC/+nk/VjNIQ1Gb GTQ4tdPGqlSPY5LWxnUTDpAKNGlill3Un+iTWyDGOfz+Y0f9fB4u7ANTSJMa481G nI37NQGXHj/ZN1+bfJWiQfLhr/oxgCms2OQOBnzguMZ3OnN6H4ndza23Czo7hFPo TeZTTf8Yu1OlEXjqhsxxFodc+zzLU6VS72THelNE96SwA3j7xKfBBf0g2t8k15Rr ChgZKSYOnDp7uO4066TPQrQOP1w1ITC5gv0TOTulAsJyvwixs8hsH2h7S8U+hZh1 cv+MnRyB0RSOmkrrrLa43FFN+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnRNXdZ y2MBQtNuscpA8t3VG5ppMB8GA1UdIwQYMBaAFGPrpIUCURNAuCUmHV7CCpEnryle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUwQzRKU1lkWHNJS2tTZXZL VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktdWtoUUpSRTBDNEpTWWRYc0lLa1NldktWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUw QzRKU1lkWHNJS2tTZXZLVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQf0nrRhLsioTujkKu7RXyzzCWMjieuneeVn2bqG5+IMJBtBNkdqPX SciX9lwTqyQ0A7g67cSSKb7AxriQf8Itkq0TQVvD7wON+IC+FX/UhUy57TP4FKXg i/NzFowvFPVtGPOlHe2lOrj1DH/El95DGoJzROedadLHFtP3Fd9HW2Chh7/GxbiA CxHkCpEXaARFjcOzI1rf+2C8a7c9h/fxVZffNO55GmHHqWGlzq80inIk6V6mzEyT /M7onIdFWE3aT2nRNO+LbCJpnhVrz6B7NKq+WvtM9SnflC+YP9ZIgG5zrztEftla TYhyqPrWgLzIMLhIP3CF+a2x2C3n5KYh -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:52 2025 by rpki-client