This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: p37GvCjK1HmXHVWZFosMu1YB3bR4Ec0g4nyLpJt/sAk= Subject key identifier: 21:EA:38:B0:F9:31:F3:28:CB:6D:DD:52:01:52:57:3F:D6:35:80:89 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 0143 Signing time: Sun 07 Dec 2025 03:12:33 +0000 Manifest this update: Sun 07 Dec 2025 03:12:33 +0000 Manifest next update: Sun 14 Dec 2025 03:12:33 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: l7DShnUECCQJtS+NxPRylTdqxTjmHNrZXkVu9P05sew=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: NSJGyrEWDrkxD54heabP960jKMt1bxB8Ljqg2B9Pmbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Dec 7 03:12:33 2025 GMT Not After : Dec 14 03:12:33 2025 GMT Subject: CN=6934f0a1-fc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f7:c2:6b:d8:9f:cf:ba:ab:18:a0:b5:93:93: 4f:4f:23:66:a2:c6:3b:5b:98:fe:85:31:62:cd:65: 49:66:4e:c0:0e:7d:fa:07:e1:22:af:b8:b4:14:16: 80:a1:ca:e9:61:7d:00:cc:b8:02:df:9d:8a:c2:12: 63:c0:a6:91:fa:b1:62:71:7a:d9:c2:ea:a6:54:d7: 5d:24:14:74:eb:7f:de:49:0b:76:e6:93:31:f1:02: 31:13:bf:ef:30:e6:85:62:f6:a9:f0:57:bd:2a:bf: 44:51:1f:b8:47:df:8c:9f:04:62:68:6b:ea:c6:f4: f9:0e:a2:d6:36:25:6f:60:d8:41:e8:5a:c4:b3:4c: a7:77:ff:32:88:26:2a:38:ae:24:6b:fc:24:ba:e3: f1:37:f1:4d:74:c5:53:75:70:b6:cf:e0:d8:10:e5: a0:9d:dc:91:f2:1c:33:7e:5b:e7:82:a4:60:70:3f: 8d:0f:b5:15:31:7e:46:36:69:33:e5:fa:4f:f2:b7: 3e:ea:78:8c:78:d9:3b:00:44:96:8b:bc:a7:49:88: 59:28:d5:37:7d:73:e6:b6:81:a5:a1:33:95:e3:3c: ac:dd:7e:7b:82:4a:a7:33:3a:c9:cd:51:83:eb:a6: 71:a5:12:0d:22:00:92:b8:9a:e5:83:f1:61:48:c2: 6d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EA:38:B0:F9:31:F3:28:CB:6D:DD:52:01:52:57:3F:D6:35:80:89 X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:c6:80:73:14:8c:e9:46:f5:1a:e4:2c:b2:50:0d:d9:85:e8: 9e:dd:22:d3:2e:9f:57:28:11:f1:b6:91:b3:e3:e7:ba:b9:30: d6:9b:db:64:76:f0:64:d7:ae:da:1e:e0:ba:d1:26:8c:40:37: 0b:03:30:a4:97:e3:af:9f:3d:21:2f:c5:8b:de:b3:9b:c6:88: b2:ce:44:53:69:0d:87:b7:ab:b4:e8:f3:7f:a6:c5:16:ca:30: 49:20:aa:2e:a1:94:3d:be:b8:76:0a:1c:0c:5d:c2:94:05:e8: 36:2c:be:65:17:0a:01:32:c2:7f:58:8c:4e:95:8f:7d:57:db: ac:22:10:7a:a6:8c:82:a8:87:ab:2e:d8:50:42:3b:dc:be:56: e8:3f:59:7b:89:1b:48:93:59:d0:b4:4a:c2:b4:b3:a2:c1:61: d8:b9:71:da:f1:0a:18:11:05:b2:4f:6b:59:22:1b:98:ab:67: fb:bd:a9:ac:12:e3:89:da:5d:eb:5e:f8:0d:fb:a4:bd:ee:2a: ae:01:0a:ce:e9:96:0b:c0:04:b1:48:df:17:5c:5f:c8:04:e0: a5:ba:a3:48:55:36:c7:01:be:a3:a6:9d:38:44:0a:2a:d2:cc: e5:85:3c:05:d0:fe:71:87:72:c9:38:82:54:d1:d0:67:28:a2: c8:b9:b0:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUxMjA3MDMxMjMzWhcNMjUxMjE0MDMxMjMzWjAYMRYwFAYD VQQDEw02OTM0ZjBhMS1mYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPfCa9ifz7qrGKC1k5NPTyNmosY7W5j+hTFizWVJZk7ADn36B+Eir7i0FBaA ocrpYX0AzLgC352KwhJjwKaR+rFicXrZwuqmVNddJBR063/eSQt25pMx8QIxE7/v MOaFYvap8Fe9Kr9EUR+4R9+MnwRiaGvqxvT5DqLWNiVvYNhB6FrEs0ynd/8yiCYq OK4ka/wkuuPxN/FNdMVTdXC2z+DYEOWgndyR8hwzflvngqRgcD+ND7UVMX5GNmkz 5fpP8rc+6niMeNk7AESWi7ynSYhZKNU3fXPmtoGloTOV4zys3X57gkqnMzrJzVGD 66ZxpRINIgCSuJrlg/FhSMJtlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHqOLD5 MfMoy23dUgFSVz/WNYCJMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5xoBzFIzpRvUa5CyyUA3Zheie3SLTLp9XKBHxtpGz4+e6uTDWm9tk dvBk167aHuC60SaMQDcLAzCkl+Ovnz0hL8WL3rObxoiyzkRTaQ2Ht6u06PN/psUW yjBJIKouoZQ9vrh2ChwMXcKUBeg2LL5lFwoBMsJ/WIxOlY99V9usIhB6poyCqIer LthQQjvcvlboP1l7iRtIk1nQtErCtLOiwWHYuXHa8QoYEQWyT2tZIhuYq2f7vams EuOJ2l3rXvgN+6S97iquAQrO6ZYLwASxSN8XXF/IBOCluqNIVTbHAb6jpp04RAoq 0szlhTwF0P5xh3LJOIJU0dBnKKLIubCS -----END CERTIFICATE-----Generated at Sun Dec 7 04:42:43 2025 by rpki-client