This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: XeQicikA+5x2sQCXDsA73L+9Qvuxm9FgAvh6vA5y8Yg= Subject key identifier: 8D:5B:1E:EB:3D:15:E8:99:8E:2E:01:1F:9D:29:A2:33:14:06:49:9F Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 013D Signing time: Tue 23 Dec 2025 03:26:00 +0000 Manifest this update: Tue 23 Dec 2025 03:26:00 +0000 Manifest next update: Tue 30 Dec 2025 03:26:00 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: jP/eLDz8YYe9TWg1rQ1AcJ6Ac17+bVXvHOieH4XPN0A=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: sJkzaLgb03fiuAa4ygWCgpOT9Sr+eQjDRPodn39TUHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Dec 23 03:26:00 2025 GMT Not After : Dec 30 03:26:00 2025 GMT Subject: CN=694a0bc8-6571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:18:e2:8e:dd:58:4c:24:11:5a:65:f0:13:34: 3b:22:cc:16:3a:0b:83:7e:58:83:0e:c2:6c:89:32: 86:8e:39:7a:98:8a:0a:aa:41:a8:5c:8c:54:7b:e3: ea:27:b6:59:2e:38:2d:10:69:30:e7:b6:c7:5e:df: 44:d8:0f:1a:b2:43:54:a8:3d:14:a1:ed:f0:2e:72: 85:dc:e3:bc:f6:74:11:c7:42:35:45:97:cd:35:4a: 66:96:fe:af:16:67:ed:e7:f2:ec:0f:fa:c3:4c:94: c4:0b:6e:76:dc:67:ec:10:8b:46:19:a4:6f:2c:8c: c1:85:77:df:72:58:e0:b5:c3:0e:5b:93:e9:35:28: f2:30:ef:28:7f:8e:3c:be:82:e2:26:9c:86:48:67: 3a:3b:4b:96:e5:88:4f:29:17:74:ec:68:e2:ec:a9: 66:cb:6f:94:c0:8e:62:ed:23:85:80:1b:0a:98:17: f5:79:8d:a4:06:e1:54:4d:62:45:84:20:20:39:70: 85:52:25:9b:6c:b7:4d:8c:0f:9f:36:7b:7b:7c:fa: ab:fb:c6:be:b3:4c:3f:b4:98:81:eb:0e:16:f5:09: 8d:27:34:ce:33:e9:bc:a5:c6:c0:5c:e1:5d:9e:d3: a6:63:7e:de:30:30:bb:31:9e:65:10:33:34:1f:3c: 3c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5B:1E:EB:3D:15:E8:99:8E:2E:01:1F:9D:29:A2:33:14:06:49:9F X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:6e:54:73:bd:f5:98:12:ac:2b:e9:a7:ab:4e:1e:ef:98:e7: a3:50:e6:b8:89:9c:f2:88:27:c0:17:52:29:c5:b7:8e:e2:4a: 72:b6:f0:ba:87:69:8f:55:0b:30:a9:4e:c4:ba:b5:bb:b2:58: 60:a3:5b:2c:fc:1b:59:19:ac:d5:d0:1b:77:91:00:7b:9b:26: b4:4b:25:b4:61:4d:c9:57:f3:39:c4:46:0c:e7:b0:62:67:8f: c2:15:44:1c:a4:08:13:91:4c:34:1c:55:c0:86:67:23:ee:d2: a3:24:ca:04:95:e5:86:7a:ba:b2:d6:cd:a3:ea:2e:5f:87:fa: c0:30:5a:7a:44:e5:70:f1:56:1c:37:91:49:1b:a8:9b:d0:22: 43:ae:92:61:4d:f7:ab:68:d1:01:c7:42:34:58:97:60:93:b5: c1:e0:63:c8:76:a4:dc:6a:bb:0f:1e:a6:8b:4f:c0:1d:38:b2: 40:bc:7a:cb:d4:cf:92:f6:97:32:56:8a:4a:21:20:ae:b4:b0: 28:9b:f0:9c:3d:cb:9b:87:62:b8:88:03:37:34:fb:ef:77:a3: f3:30:14:09:12:51:42:b2:18:fd:b9:c0:c5:f0:b4:94:2d:d9: 04:a3:43:48:67:49:c7:ae:76:d9:da:3e:4e:ee:16:08:14:57: f5:fd:aa:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUxMjIzMDMyNjAwWhcNMjUxMjMwMDMyNjAwWjAYMRYwFAYD VQQDDA02OTRhMGJjOC02NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBjijt1YTCQRWmXwEzQ7IswWOguDfliDDsJsiTKGjjl6mIoKqkGoXIxUe+Pq J7ZZLjgtEGkw57bHXt9E2A8askNUqD0Uoe3wLnKF3OO89nQRx0I1RZfNNUpmlv6v Fmft5/LsD/rDTJTEC2523GfsEItGGaRvLIzBhXffcljgtcMOW5PpNSjyMO8of448 voLiJpyGSGc6O0uW5YhPKRd07Gji7Klmy2+UwI5i7SOFgBsKmBf1eY2kBuFUTWJF hCAgOXCFUiWbbLdNjA+fNnt7fPqr+8a+s0w/tJiB6w4W9QmNJzTOM+m8pcbAXOFd ntOmY37eMDC7MZ5lEDM0Hzw8iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1bHus9 FeiZji4BH50pojMUBkmfMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhblRzvfWYEqwr6aerTh7vmOejUOa4iZzyiCfAF1IpxbeO4kpytvC6 h2mPVQswqU7EurW7slhgo1ss/BtZGazV0Bt3kQB7mya0SyW0YU3JV/M5xEYM57Bi Z4/CFUQcpAgTkUw0HFXAhmcj7tKjJMoEleWGerqy1s2j6i5fh/rAMFp6ROVw8VYc N5FJG6ib0CJDrpJhTferaNEBx0I0WJdgk7XB4GPIdqTcarsPHqaLT8AdOLJAvHrL 1M+S9pcyVopKISCutLAom/CcPcubh2K4iAM3NPvvd6PzMBQJElFCshj9ucDF8LSU LdkEo0NIZ0nHrnbZ2j5O7hYIFFf1/arH -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:51 2025 by rpki-client