This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft File: Yb6mqjOAZskOtcsyQAxq52BciKQ.mft (raw, json) Hash identifier: bY7sN6WqfQAAf+TX973HMFlFnotvSoLV8Mmeo8qp1i4= Subject key identifier: 1E:58:27:72:7E:8F:A0:16:B3:F6:E6:A5:11:D9:E8:38:BF:28:75:ED Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 100A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft Manifest number: 1003 Signing time: Mon 22 Dec 2025 17:08:25 +0000 Manifest this update: Mon 22 Dec 2025 17:08:24 +0000 Manifest next update: Mon 29 Dec 2025 17:08:24 +0000 Files and hashes: 1: Yb6mqjOAZskOtcsyQAxq52BciKQ.crl (hash: joK3wfc78KcocHNFP7EF8/LGdWNuG8YAT5BsWhzJDu0=) 2: ECB38BAA5C3211E9816E7981C4F9AE02.roa (hash: cCIRQV7ckuHtyIWMyZbPGhi3IsjwZT86WZjPdbGRO6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4106 (0x100a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B, serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: Dec 22 17:08:24 2025 GMT Not After : Dec 29 17:08:24 2025 GMT Subject: CN=69497b09-c10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:81:6b:a3:e0:d0:e0:ba:da:cc:a8:1f:e8:f9: e6:41:66:d6:36:e5:bc:40:e4:96:ef:bc:cc:9b:04: 79:1c:ec:b5:08:4d:e1:2b:a7:df:af:04:59:6f:2a: 40:f4:3b:7c:3f:b6:1c:f0:66:9b:51:0d:0c:c8:df: 40:99:53:33:ec:e9:3b:02:ff:48:7c:48:5b:2e:44: 08:36:fd:14:90:6e:d9:21:f2:b6:e7:57:a0:1c:60: 16:f1:21:4c:6c:ff:47:16:0c:93:b1:45:d1:f7:04: a6:d8:fb:84:d6:5d:0b:9b:28:bb:e0:71:98:15:07: 89:12:a6:13:23:6f:22:84:a5:e0:c6:8f:d1:c1:2b: 80:d4:fa:40:7d:d3:15:14:a4:18:71:2e:7d:8f:60: bf:a9:39:a0:c3:57:54:1e:95:61:9e:a9:4b:7a:ac: 2f:1f:27:0c:b3:6e:49:dc:f5:49:43:5f:28:e2:88: ce:18:18:85:9e:03:54:da:1d:94:de:b4:fd:af:f6: 2a:a5:c8:cc:c0:df:e3:1c:48:b6:e3:95:20:c5:91: 0d:3d:42:fc:49:fa:51:a7:81:88:b3:d4:46:58:2b: 67:24:1c:c5:ed:42:83:35:71:cc:08:91:2c:56:db: f0:c4:74:11:37:9b:71:84:54:13:06:84:27:88:a7: e7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:58:27:72:7E:8F:A0:16:B3:F6:E6:A5:11:D9:E8:38:BF:28:75:ED X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:17:8a:d0:00:07:86:bb:e7:16:c6:6c:b7:1e:23:c3:8c:fc: f8:98:4e:1f:aa:6c:e8:90:ee:48:b2:95:35:45:50:12:5b:b5: 49:48:bf:f5:a9:c6:b4:11:37:6a:e9:e3:34:4e:d2:a5:96:e1: 5b:a5:db:0e:27:bb:12:72:4e:20:bd:43:f7:13:50:c4:52:9c: 21:b9:c4:1c:e7:34:46:67:d9:11:05:ce:1d:30:d1:16:56:c2: 0c:56:1e:d5:28:bf:5a:44:7e:27:5e:1f:12:a8:5d:6f:0c:8a: 1d:38:aa:f1:02:e3:fc:c3:10:c5:9b:a9:ed:57:ef:e4:4d:f1: 56:96:b3:ef:23:af:e2:d5:a4:79:18:7a:3d:12:1e:c5:a1:78: 72:c9:01:0b:f2:20:80:d7:4f:08:df:5a:fb:8d:6d:c0:21:fb: ef:f7:a6:9a:0f:6a:ab:01:48:a0:8c:99:5e:02:42:2f:7a:60: 24:ca:2b:6f:63:47:2d:ce:24:e4:26:2d:b7:7e:98:bf:f2:8a: 23:9f:1c:e8:67:66:a4:e4:1e:c6:15:73:ea:c5:78:6e:14:47: 13:1f:af:a8:59:74:91:91:ac:d6:ea:18:97:e8:c2:76:e3:6c: 04:78:05:94:b0:8e:4b:bf:18:ed:8a:40:8e:79:56:93:a2:b7: 7e:16:fc:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjUxMjIyMTcwODI0WhcNMjUxMjI5MTcwODI0WjAYMRYwFAYD VQQDDA02OTQ5N2IwOS1jMTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IFro+DQ4LrazKgf6PnmQWbWNuW8QOSW77zMmwR5HOy1CE3hK6ffrwRZbypA 9Dt8P7Yc8GabUQ0MyN9AmVMz7Ok7Av9IfEhbLkQINv0UkG7ZIfK251egHGAW8SFM bP9HFgyTsUXR9wSm2PuE1l0Lmyi74HGYFQeJEqYTI28ihKXgxo/RwSuA1PpAfdMV FKQYcS59j2C/qTmgw1dUHpVhnqlLeqwvHycMs25J3PVJQ18o4ojOGBiFngNU2h2U 3rT9r/YqpcjMwN/jHEi245UgxZENPUL8SfpRp4GIs9RGWCtnJBzF7UKDNXHMCJEs VtvwxHQRN5txhFQTBoQniKfnqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5YJ3J+ j6AWs/bmpRHZ6Di/KHXtMB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTUyQi8yOENCRkIxNDVDMzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpz a090Y3N5UUF4cTUyQmNpS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoF4rQAAeGu+cWxmy3HiPDjPz4mE4fqmzokO5IspU1RVASW7VJSL/1 qca0ETdq6eM0TtKlluFbpdsOJ7sSck4gvUP3E1DEUpwhucQc5zRGZ9kRBc4dMNEW VsIMVh7VKL9aRH4nXh8SqF1vDIodOKrxAuP8wxDFm6ntV+/kTfFWlrPvI6/i1aR5 GHo9Eh7FoXhyyQEL8iCA108I31r7jW3AIfvv96aaD2qrAUigjJleAkIvemAkyitv Y0ctziTkJi23fpi/8oojnxzoZ2ak5B7GFXPqxXhuFEcTH6+oWXSRkazW6hiX6MJ2 42wEeAWUsI5LvxjtikCOeVaTord+FvzJ -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:12 2025 by rpki-client