This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: Tw1+lw+QVXXSMqodDoB0tQXimUhUG+N4PoTkL6X4jzw= Subject key identifier: 88:23:B1:CD:23:AA:62:4D:30:09:86:5A:44:79:01:71:E3:BF:22:B1 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 018C Signing time: Sun 07 Dec 2025 01:58:49 +0000 Manifest this update: Sun 07 Dec 2025 01:58:49 +0000 Manifest next update: Sun 14 Dec 2025 01:58:49 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: J6nn4t7dM867Iw/wPWn0gn6vZF/ztjU8oh30q1Q5wPQ=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2, serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: Dec 7 01:58:49 2025 GMT Not After : Dec 14 01:58:49 2025 GMT Subject: CN=6934df59-11b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:f9:2d:81:20:74:9c:25:dc:2d:6c:ec:6b: 19:23:4c:d6:90:7d:ff:79:06:4b:d2:08:1f:83:ca: 4b:d1:1b:80:da:d9:c6:be:d0:b1:60:16:41:95:0e: 86:e8:4c:a5:fb:f7:c5:6d:90:6d:94:79:ba:d0:fb: bc:ad:ac:e4:23:09:a1:06:8b:86:13:4e:7f:38:4f: cd:ed:be:c8:d8:1c:7e:ed:17:06:22:09:a0:c2:fc: 5b:df:a6:63:11:a6:22:fa:73:f5:23:66:9a:d7:ea: 0d:cf:05:f4:e2:c9:b0:c7:28:30:0c:05:7d:bd:ac: 2a:95:80:25:70:a7:ab:b5:55:e9:35:12:e2:e6:0a: 66:46:b8:23:4d:45:20:5e:7e:ee:92:fb:c0:3e:52: a4:a5:bd:c4:71:11:53:ab:cd:3d:4b:bc:9f:c6:6b: 3b:a0:90:7a:bd:30:ca:70:03:82:d6:4f:d9:eb:2e: a8:a6:a2:b4:f5:ba:de:b3:c5:2f:ec:19:ac:d8:98: df:61:3a:5c:56:b0:a7:98:5e:ce:a8:42:f5:3f:69: 89:e4:f1:c5:c3:43:4f:a2:fe:cd:ba:16:70:29:d7: cf:c3:40:15:f9:aa:b1:fa:a6:c9:2c:63:c0:94:6b: 27:98:30:24:1c:a4:12:93:be:b2:02:5b:73:1b:4d: c5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:B1:CD:23:AA:62:4D:30:09:86:5A:44:79:01:71:E3:BF:22:B1 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0d:2d:59:46:3e:2b:63:6f:34:82:3c:e5:14:be:7e:da:7c: f5:4c:94:81:3a:24:bc:e4:0b:67:64:e7:f4:77:69:de:9c:16: 17:8d:e2:8d:29:c4:9b:22:41:3e:18:3b:1b:eb:a5:53:c4:ef: 84:ca:65:32:2d:cb:74:44:a1:92:59:ca:4d:71:72:25:5c:6f: f2:cd:8a:6e:6a:f2:aa:ed:86:c0:10:09:43:58:27:94:6f:09: 76:72:f8:26:69:7f:73:19:01:8f:9a:b7:2f:8f:3a:cb:04:58: 23:95:fd:e5:74:ae:3c:62:2f:bd:69:08:af:6f:aa:1a:c0:89: b4:01:67:e0:f0:d2:4c:7d:db:4d:bf:00:1b:f5:d6:96:7d:e5: 36:b8:3f:64:9f:d2:d2:a4:2c:09:e5:3c:dc:12:25:c6:b0:ce: 6c:e3:c8:a5:e6:31:6b:13:dd:62:0e:1a:1a:ac:cc:f0:be:4e: 54:6d:33:49:f5:d5:10:6a:cb:bc:60:46:b7:d7:3f:32:2a:d2: 89:a8:49:e5:ec:c2:a5:d0:24:1a:9e:3c:34:24:c5:61:cb:ff: 3c:ab:12:3a:48:ed:1c:3a:89:b2:af:99:f7:10:94:81:6e:b5: 97:57:2f:1b:81:5e:5c:08:5f:bd:ea:45:e4:88:2e:2c:fc:58: dc:3d:5c:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUxMjA3MDE1ODQ5WhcNMjUxMjE0MDE1ODQ5WjAYMRYwFAYD VQQDEw02OTM0ZGY1OS0xMWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziX5LYEgdJwl3C1s7GsZI0zWkH3/eQZL0ggfg8pL0RuA2tnGvtCxYBZBlQ6G 6Eyl+/fFbZBtlHm60Pu8razkIwmhBouGE05/OE/N7b7I2Bx+7RcGIgmgwvxb36Zj EaYi+nP1I2aa1+oNzwX04smwxygwDAV9vawqlYAlcKertVXpNRLi5gpmRrgjTUUg Xn7ukvvAPlKkpb3EcRFTq809S7yfxms7oJB6vTDKcAOC1k/Z6y6opqK09bres8Uv 7Bms2JjfYTpcVrCnmF7OqEL1P2mJ5PHFw0NPov7NuhZwKdfPw0AV+aqx+qbJLGPA lGsnmDAkHKQSk76yAltzG03F7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgjsc0j qmJNMAmGWkR5AXHjvyKxMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaDS1ZRj4rY280gjzlFL5+2nz1TJSBOiS85AtnZOf0d2nenBYXjeKN KcSbIkE+GDsb66VTxO+EymUyLct0RKGSWcpNcXIlXG/yzYpuavKq7YbAEAlDWCeU bwl2cvgmaX9zGQGPmrcvjzrLBFgjlf3ldK48Yi+9aQivb6oawIm0AWfg8NJMfdtN vwAb9daWfeU2uD9kn9LSpCwJ5TzcEiXGsM5s48il5jFrE91iDhoarMzwvk5UbTNJ 9dUQasu8YEa31z8yKtKJqEnl7MKl0CQanjw0JMVhy/88qxI6SO0cOomyr5n3EJSB brWXVy8bgV5cCF+96kXkiC4s/FjcPVx5 -----END CERTIFICATE-----Generated at Sun Dec 7 07:52:14 2025 by rpki-client