This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft File: YqwbuVgKcRmBnntrbrLDUVNHh_0.mft (raw, json) Hash identifier: 1Gz4UZ0G2GsSUJ7sLcvo1zJDUcTW92rwhD1K/7C3deY= Subject key identifier: 6C:4B:51:75:91:32:D8:AE:3E:84:7A:6F:FA:7A:B5:7A:7F:5B:60:DE Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft Manifest number: F8 Signing time: Fri 05 Dec 2025 03:15:42 +0000 Manifest this update: Fri 05 Dec 2025 03:15:41 +0000 Manifest next update: Fri 12 Dec 2025 03:15:41 +0000 Files and hashes: 1: YqwbuVgKcRmBnntrbrLDUVNHh_0.crl (hash: C7HeT8DiqCw4gJ+MfbObJ7wWdAU0qWjHkasTFWrRsCE=) 2: 652283665B1A11EFA78B847EC4F9AE02.roa (hash: cRgznzypgNObdJ5+nUBdFPZbJ/XSHjedbIfP0KuyG4Y=) 3: 474934DE5B1A11EFBF0E1F7CC4F9AE02.roa (hash: Po3+3jwZqbergErT/CE07CzYXSwWNnVs3V/GDhF2/Rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08, serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Dec 5 03:15:41 2025 GMT Not After : Dec 12 03:15:41 2025 GMT Subject: CN=69324e5d-6085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6b:05:b5:6d:46:cf:77:fd:b4:2a:91:a8:f7: a5:fd:16:63:33:44:a5:1e:9b:ed:19:d8:90:3a:ba: be:ff:c0:ba:fb:a9:49:84:e2:72:be:40:5c:fe:47: fb:19:ca:29:2c:49:05:00:06:c4:27:07:1d:d3:74: 75:95:47:46:ce:d0:eb:1a:41:1c:e0:c0:b7:be:c8: 11:a4:7f:6a:9f:4c:67:52:79:04:6c:fe:80:73:02: f8:9e:56:40:ed:56:3a:4e:73:e5:5a:a8:53:50:ba: d6:80:5b:fb:03:d1:da:76:41:65:70:a6:b9:c2:93: 47:0b:9e:52:48:1c:a3:5c:f2:74:bd:bd:3f:b7:a3: 5a:bf:19:af:0d:2c:79:e6:ca:8d:15:eb:d2:3c:04: 06:33:9a:39:35:38:ab:27:40:60:db:bf:a0:bc:ab: e3:07:dd:ec:22:67:ec:69:64:20:b0:2f:94:1f:a4: 6d:cb:20:24:28:3d:db:93:dd:6e:f5:b3:0f:48:dc: 88:97:22:b9:7a:27:a2:91:5e:20:f2:30:81:b7:42: 85:37:ee:51:bc:c4:1e:83:5b:e7:86:3f:37:fc:97: 64:5b:62:b6:03:40:b1:8e:7f:04:ab:99:b9:d5:c0: 9b:f9:b0:7d:4a:b7:d1:ee:b7:5b:ae:0f:9e:f1:cd: bd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4B:51:75:91:32:D8:AE:3E:84:7A:6F:FA:7A:B5:7A:7F:5B:60:DE X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:76:b2:6c:60:77:cd:f2:65:26:4a:f2:f7:1a:51:2f:42:31: 2e:08:6f:a0:4e:2f:53:4a:83:d0:e7:a1:41:65:74:65:f5:49: 43:e5:42:6c:9e:3b:44:20:12:1c:36:8f:8f:ab:05:74:85:70: 2b:ee:63:fa:1d:f7:d0:b4:75:c6:65:e2:98:ff:31:0d:ca:35: 7a:ea:2e:44:15:2c:d8:79:c1:8f:6a:d4:9f:08:31:0a:99:24: d9:f7:d2:52:88:ad:d0:b8:18:15:cc:f3:3e:fd:6f:01:ae:62: 23:8a:73:fb:1e:16:d5:d3:51:b4:84:70:5e:ee:b9:d3:b8:d4: 87:92:e5:03:16:62:bc:d6:a0:9c:bf:92:79:b8:01:70:59:3e: 58:c4:f9:87:d0:53:ec:17:01:0e:ea:bd:2b:61:cc:e5:9a:37: 17:a7:24:03:86:c2:25:a9:02:0b:3c:50:42:6d:f8:48:1e:86: af:90:4e:f1:b3:2c:b4:df:72:67:c7:e4:0c:63:1c:ab:12:fd: bb:a7:40:7a:47:af:1c:db:23:20:ba:f7:6f:0f:0b:8e:ab:3d: a7:5c:5c:9d:9b:69:07:8c:37:f6:22:86:32:b6:b6:18:b1:c5: b1:a3:a0:3e:1e:a5:a8:c0:87:7a:9c:a1:6a:df:20:27:c0:69: b2:22:e0:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDgxMTAvBgNVBAUTKDYyQUMxQkI5NTgwQTcxMTk4MTlFN0I2QjZFQjJDMzUx NTM0Nzg3RkQwHhcNMjUxMjA1MDMxNTQxWhcNMjUxMjEyMDMxNTQxWjAYMRYwFAYD VQQDEw02OTMyNGU1ZC02MDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2sFtW1Gz3f9tCqRqPel/RZjM0SlHpvtGdiQOrq+/8C6+6lJhOJyvkBc/kf7 GcopLEkFAAbEJwcd03R1lUdGztDrGkEc4MC3vsgRpH9qn0xnUnkEbP6AcwL4nlZA 7VY6TnPlWqhTULrWgFv7A9HadkFlcKa5wpNHC55SSByjXPJ0vb0/t6NavxmvDSx5 5sqNFevSPAQGM5o5NTirJ0Bg27+gvKvjB93sImfsaWQgsC+UH6RtyyAkKD3bk91u 9bMPSNyIlyK5eieikV4g8jCBt0KFN+5RvMQeg1vnhj83/JdkW2K2A0Cxjn8Eq5m5 1cCb+bB9SrfR7rdbrg+e8c29RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxLUXWR MtiuPoR6b/p6tXp/W2DeMB8GA1UdIwQYMBaAFGKsG7lYCnEZgZ57a26yw1FTR4f9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwOC85QTVGQkI2MjVC MTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NSbUJubnRyYnJMRFVWTkho XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi9ZcXdidVZnS2NS bUJubnRyYnJMRFVWTkhoXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqdrJsYHfN8mUmSvL3GlEvQjEuCG+gTi9TSoPQ56FBZXRl9UlD5UJs njtEIBIcNo+PqwV0hXAr7mP6HffQtHXGZeKY/zENyjV66i5EFSzYecGPatSfCDEK mSTZ99JSiK3QuBgVzPM+/W8BrmIjinP7HhbV01G0hHBe7rnTuNSHkuUDFmK81qCc v5J5uAFwWT5YxPmH0FPsFwEO6r0rYczlmjcXpyQDhsIlqQILPFBCbfhIHoavkE7x syy033Jnx+QMYxyrEv27p0B6R68c2yMguvdvDwuOqz2nXFydm2kHjDf2IoYytrYY scWxo6A+HqWowId6nKFq3yAnwGmyIuD1 -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:44 2025 by rpki-client