This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft File: 1Ycen8b73n3HG36JXIoEw9ACHYU.mft (raw, json) Hash identifier: ylUveWC8MMy8+QK38f1IbeKfW6cwnJTy/lYiGQD+M0g= Subject key identifier: 45:57:91:BD:4A:DD:30:88:37:47:F5:AE:CC:3E:15:E4:D6:4D:01:68 Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft Manifest number: 01B7 Signing time: Tue 23 Dec 2025 02:09:46 +0000 Manifest this update: Tue 23 Dec 2025 02:09:45 +0000 Manifest next update: Tue 30 Dec 2025 02:09:45 +0000 Files and hashes: 1: 1Ycen8b73n3HG36JXIoEw9ACHYU.crl (hash: SKaROX9IfBHXcUKcGVRQkqk25m425/COFCVK57D2nas=) 2: B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa (hash: yOezlN4+53IwwnSsCKNCBTmWXo8aQEvNaQEYhS9yato=) 3: A355C1A8B6D511F089793D6DC4F9AE02.roa (hash: 0SnBjCkd1/QSiUJjvI651mo+kVttGehwO0xz/nqsNeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49, serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: Dec 23 02:09:45 2025 GMT Not After : Dec 30 02:09:45 2025 GMT Subject: CN=6949f9ea-b928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:c4:7d:0a:df:d1:d5:10:a7:37:a2:1e:ca: fb:87:24:25:a3:8d:3f:0d:22:57:48:5d:a8:17:42: 21:67:c3:18:ac:26:2a:b2:02:43:cf:5e:9c:8e:52: 45:2f:28:49:21:3b:41:88:14:c2:c0:cb:4e:e9:2b: 92:e1:f8:2d:6b:a6:65:90:dd:1b:32:74:ae:1b:6a: 79:58:f5:0d:ac:6f:fe:f4:fe:08:0e:63:b1:bc:7e: 9c:ba:ca:9d:27:24:d4:10:6d:21:34:fc:a3:30:14: 7c:3b:ce:c8:7c:87:20:e3:74:76:5e:c1:09:60:06: 05:ef:c7:5f:97:a7:17:30:ee:38:53:ac:b6:97:85: 9e:b1:96:85:54:bf:d8:c1:fa:77:b8:15:b1:ae:d4: 67:96:cb:fb:02:7c:66:73:2c:55:6d:1a:ba:aa:32: 22:86:05:40:41:f8:ea:08:b6:70:69:4b:4c:1d:fd: bc:3a:5d:ab:9e:4a:3a:91:c9:c7:a1:4b:a5:95:3c: 5f:93:e9:08:0c:19:b3:bb:b8:82:12:19:ac:cf:b9: 4c:13:e9:fb:be:60:e6:42:70:1b:35:ad:ed:1f:10: 85:5d:5d:c7:77:3f:85:25:60:d9:c3:9a:eb:ce:50: de:26:11:2b:79:f9:77:ee:49:3b:6f:66:27:e1:b8: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:57:91:BD:4A:DD:30:88:37:47:F5:AE:CC:3E:15:E4:D6:4D:01:68 X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:a0:e9:f9:a9:ba:8a:61:11:cc:60:56:87:a2:35:10:b1:79: 43:58:d4:5d:63:77:08:d8:a2:4a:2d:04:f9:9c:3f:bd:69:bb: 4b:d4:d4:5e:19:68:b5:5e:43:3c:4d:b8:b3:25:2f:fe:5f:8a: e7:92:60:3d:43:24:4a:f6:87:9e:07:95:a8:74:b3:72:d3:98: 57:a6:15:0c:48:08:06:90:47:bb:16:06:81:c4:0c:6d:d0:12: 69:08:ea:2e:a5:95:27:a5:89:79:c7:e5:b8:a8:12:b0:75:f0: 94:02:13:56:dd:db:e1:07:22:ed:7b:4f:f5:d4:ae:cc:33:13: 54:bd:1a:7f:14:1b:33:a2:ee:09:55:16:50:88:3e:87:bf:4a: c4:66:6d:db:84:95:a2:b8:76:d0:b1:be:2a:9b:d4:72:e8:a7: ea:37:d1:b0:87:01:79:9f:f2:23:22:b6:ad:47:a8:c3:9e:53: d9:e8:90:a8:fd:84:4d:cb:01:a4:0f:f0:89:a2:85:45:9c:7b: ef:9b:0f:02:6d:d3:54:63:0e:17:44:d8:ad:2e:6b:7f:a6:a4: 55:1f:e2:44:38:34:1a:f4:39:4c:87:ad:52:03:20:3f:2e:7d: e9:8d:14:4d:0d:09:f8:c7:48:71:be:ff:b8:c0:aa:d4:8f:b6: 57:20:64:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDkxMTAvBgNVBAUTKEQ1ODcxRTlGQzZGQkRFN0RDNzFCN0U4OTVDOEEwNEMz RDAwMjFEODUwHhcNMjUxMjIzMDIwOTQ1WhcNMjUxMjMwMDIwOTQ1WjAYMRYwFAYD VQQDDA02OTQ5ZjllYS1iOTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9/EfQrf0dUQpzeiHsr7hyQlo40/DSJXSF2oF0IhZ8MYrCYqsgJDz16cjlJF LyhJITtBiBTCwMtO6SuS4fgta6ZlkN0bMnSuG2p5WPUNrG/+9P4IDmOxvH6cusqd JyTUEG0hNPyjMBR8O87IfIcg43R2XsEJYAYF78dfl6cXMO44U6y2l4WesZaFVL/Y wfp3uBWxrtRnlsv7AnxmcyxVbRq6qjIihgVAQfjqCLZwaUtMHf28Ol2rnko6kcnH oUullTxfk+kIDBmzu7iCEhmsz7lME+n7vmDmQnAbNa3tHxCFXV3Hdz+FJWDZw5rr zlDeJhErefl37kk7b2Yn4bj09wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVXkb1K 3TCIN0f1rsw+FeTWTQFoMB8GA1UdIwQYMBaAFNWHHp/G+959xxt+iVyKBMPQAh2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0OS80N0QwNDQ2NDQ3 QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNuM0hHMzZKWElvRXc5QUNI WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNu M0hHMzZKWElvRXc5QUNIWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsoOn5qbqKYRHMYFaHojUQsXlDWNRdY3cI2KJKLQT5nD+9abtL1NRe GWi1XkM8TbizJS/+X4rnkmA9QyRK9oeeB5WodLNy05hXphUMSAgGkEe7FgaBxAxt 0BJpCOoupZUnpYl5x+W4qBKwdfCUAhNW3dvhByLte0/11K7MMxNUvRp/FBszou4J VRZQiD6Hv0rEZm3bhJWiuHbQsb4qm9Ry6KfqN9GwhwF5n/IjIratR6jDnlPZ6JCo /YRNywGkD/CJooVFnHvvmw8CbdNUYw4XRNitLmt/pqRVH+JEODQa9DlMh61SAyA/ Ln3pjRRNDQn4x0hxvv+4wKrUj7ZXIGTC -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:45 2025 by rpki-client