This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: my+7lqvtEW6+QKVowNAFl9pj4iArA22F1lcrk1tGX2g= Subject key identifier: 8B:75:08:1F:14:C2:E3:54:DC:EC:04:70:FA:1A:82:6F:10:E7:1A:EB Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 037E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 037A Signing time: Mon 22 Dec 2025 23:53:17 +0000 Manifest this update: Mon 22 Dec 2025 23:53:17 +0000 Manifest next update: Mon 29 Dec 2025 23:53:17 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: ODkMVxtPC6Al7ghFiMTwdn+CdubqNooRiNixunnPft4=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Dec 22 23:53:17 2025 GMT Not After : Dec 29 23:53:17 2025 GMT Subject: CN=6949d9ed-847b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:37:ce:5e:d7:02:ed:30:b7:cf:90:70:c5:fd: a3:a8:31:55:45:8b:cb:16:13:9e:f2:1e:cc:79:17: b9:0f:53:6f:bb:99:10:bc:bf:0b:ef:7f:52:4a:c2: 45:86:48:ef:b9:6b:c9:22:70:6a:c6:87:d7:07:f4: 3a:e9:91:c4:07:99:ea:d3:4c:77:21:1e:51:90:20: dc:43:05:f8:30:0a:45:49:66:c1:bc:bd:16:d5:0e: ae:07:3c:7b:d2:e6:2c:8f:b2:0f:47:39:27:30:4b: 7a:af:e4:8a:92:82:d3:b9:a1:7e:74:c7:f7:2d:16: 57:71:e6:af:f6:b1:0b:7c:f3:d0:43:8f:63:9b:2d: 3c:de:52:95:ba:14:f8:7c:76:0d:25:80:1b:2c:1e: c3:5d:84:55:7c:62:26:c1:5b:5f:6a:66:5c:72:41: 35:fd:bc:38:69:d7:67:fc:71:47:d1:2a:3f:51:8f: e5:fc:e9:1a:f3:bc:46:1a:bc:17:e3:3e:fe:19:b8: 1d:0e:f3:7c:76:12:b5:a5:6c:13:2c:4f:87:1b:ba: e8:08:a8:5b:2a:cb:01:7c:ca:4f:cf:45:9e:03:83: d6:88:13:80:85:34:38:82:f6:92:b5:7f:ad:a3:72: 6d:1f:f4:35:90:bf:6c:93:44:8f:0b:67:81:db:d6: c3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:75:08:1F:14:C2:E3:54:DC:EC:04:70:FA:1A:82:6F:10:E7:1A:EB X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:92:8e:82:be:cc:8a:3b:d8:43:5e:fc:50:67:78:26:90:3c: 54:31:03:6c:f8:a3:ef:f1:e6:82:be:40:0a:cd:5a:5f:70:13: aa:c8:8d:4a:97:2f:eb:e3:1a:f1:a7:f3:f7:6e:0c:d7:bc:b7: 41:00:6b:5e:81:f5:c2:ec:68:0d:d5:bd:4a:0a:3c:b5:bd:50: 69:5c:b7:e0:c0:1a:2e:1a:71:23:32:af:4a:da:62:06:22:0c: f4:d1:1d:ea:56:5f:fd:65:da:36:24:c7:f7:51:8f:4f:80:9c: 3c:b4:42:be:95:71:29:a4:5e:25:59:6b:8d:0b:94:a8:e4:fc: 65:34:77:5b:a9:fc:36:8d:3c:84:bf:1f:db:95:f2:9e:3b:e3: 18:7f:84:a6:12:4a:a0:75:f6:8e:53:15:67:40:49:be:81:cc: 87:1e:b8:cc:20:44:27:96:5d:66:1e:d8:b9:1d:21:86:3c:1a: ab:e7:76:8a:21:a2:f3:7f:21:f3:18:b3:26:65:5a:8c:ad:bd: 57:38:13:39:d0:97:5a:55:8d:df:ce:d1:f0:58:1d:fb:e6:bf: 45:cc:bd:d5:79:76:76:f4:7e:0d:aa:a2:8c:8b:db:b3:b8:ef: 73:e6:70:d4:32:00:f1:a4:49:7f:c0:4b:66:d7:5f:42:34:fb: 0e:d3:1e:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUxMjIyMjM1MzE3WhcNMjUxMjI5MjM1MzE3WjAYMRYwFAYD VQQDDA02OTQ5ZDllZC04NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjzfOXtcC7TC3z5Bwxf2jqDFVRYvLFhOe8h7MeRe5D1Nvu5kQvL8L739SSsJF hkjvuWvJInBqxofXB/Q66ZHEB5nq00x3IR5RkCDcQwX4MApFSWbBvL0W1Q6uBzx7 0uYsj7IPRzknMEt6r+SKkoLTuaF+dMf3LRZXceav9rELfPPQQ49jmy083lKVuhT4 fHYNJYAbLB7DXYRVfGImwVtfamZcckE1/bw4addn/HFH0So/UY/l/Oka87xGGrwX 4z7+GbgdDvN8dhK1pWwTLE+HG7roCKhbKssBfMpPz0WeA4PWiBOAhTQ4gvaStX+t o3JtH/Q1kL9sk0SPC2eB29bDBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt1CB8U wuNU3OwEcPoagm8Q5xrrMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCko6CvsyKO9hDXvxQZ3gmkDxUMQNs+KPv8eaCvkAKzVpfcBOqyI1K ly/r4xrxp/P3bgzXvLdBAGtegfXC7GgN1b1KCjy1vVBpXLfgwBouGnEjMq9K2mIG Igz00R3qVl/9Zdo2JMf3UY9PgJw8tEK+lXEppF4lWWuNC5So5PxlNHdbqfw2jTyE vx/blfKeO+MYf4SmEkqgdfaOUxVnQEm+gcyHHrjMIEQnll1mHti5HSGGPBqr53aK IaLzfyHzGLMmZVqMrb1XOBM50JdaVY3fztHwWB375r9FzL3VeXZ29H4NqqKMi9uz uO9z5nDUMgDxpEl/wEtm119CNPsO0x6x -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:11 2025 by rpki-client