This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: vAAr2fLwCcjJ6hvXj+30tNQr/1WWKaqT9Lix1tz8uBU= Subject key identifier: 37:2C:31:4F:78:D2:27:45:78:4F:51:6B:F5:BB:40:18:60:6D:4E:1D Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 0216 Signing time: Fri 05 Dec 2025 00:31:16 +0000 Manifest this update: Fri 05 Dec 2025 00:31:15 +0000 Manifest next update: Fri 12 Dec 2025 00:31:15 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: xuCedYljxqtk0DsIUtTPMxHuUQQTrUWlbWgwmWa7TA4=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Dec 5 00:31:15 2025 GMT Not After : Dec 12 00:31:15 2025 GMT Subject: CN=693227d3-4102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:81:cd:ab:03:de:9f:4f:3e:4e:89:b8:2c:ab: c6:27:12:92:fd:cf:cd:60:40:9c:9d:15:1b:e7:39: bc:f8:0e:57:90:56:5d:30:27:2e:49:06:da:35:3f: 62:8d:7b:2b:1c:ad:aa:d3:3e:a6:bf:d5:34:92:6f: 6e:42:d3:83:b5:a5:0a:07:11:21:67:78:40:45:aa: bb:36:26:bf:c8:14:73:c8:67:cb:5a:b1:ca:62:20: 57:f1:87:6c:cf:6a:44:42:6f:7d:20:e4:ec:cf:59: b1:23:a2:39:2a:11:29:a6:ff:34:bf:ba:32:d5:b8: 8e:c1:db:ce:ac:95:8a:e1:a5:09:c6:c4:d8:2c:98: 49:21:e9:17:18:f2:d5:0c:36:bf:d9:27:37:24:18: b8:c0:39:ec:54:af:5c:71:9c:32:57:65:e8:0b:4b: b1:2b:d9:07:75:c8:6b:98:c8:87:ee:6b:e9:65:e0: 03:bb:63:9c:48:f7:c5:30:58:cc:f1:f7:6c:7f:c5: 13:fe:07:fe:da:85:54:cc:4b:2b:ad:65:14:69:62: 0a:4c:72:76:a5:28:33:45:e2:24:51:ed:f3:84:f1: cd:c8:e9:4e:d6:b8:59:13:8b:ed:95:78:99:0d:68: 71:ed:b9:63:bf:f2:a9:0a:12:3c:be:71:a6:e6:bb: 7d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:2C:31:4F:78:D2:27:45:78:4F:51:6B:F5:BB:40:18:60:6D:4E:1D X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:99:c5:27:22:a5:0a:a5:e4:a8:ca:49:3d:a2:55:3c:c6:41: 2b:f6:4a:51:55:c9:20:b3:44:d6:1e:9d:e5:f0:1d:97:d8:dc: 13:bf:be:cb:fc:a7:35:60:06:3a:e8:cd:3b:0f:b9:3e:ed:f6: 22:b8:8e:af:e7:56:50:48:03:20:87:55:d1:a7:d5:6b:55:c3: 0c:66:d9:6a:08:5a:fd:da:ed:6e:d5:96:67:fb:df:b6:87:ef: e8:88:7b:e6:59:a1:a0:c2:46:7a:9f:d3:92:40:29:b2:88:17: 1b:84:fe:b9:e6:91:fd:45:4d:30:43:0a:36:14:2c:d1:f1:51: 8e:77:b4:81:6f:a1:47:d0:01:11:d0:3d:71:d6:d1:b0:99:08: fd:7b:e3:54:0e:23:60:b0:b7:04:93:34:f2:96:87:1a:27:6b: 6d:65:4b:61:c7:78:f4:3e:f7:fb:71:5e:a6:20:4b:58:0b:19: d3:7c:45:bc:86:7a:4c:91:fa:35:c1:22:08:f3:bc:b7:78:5d: 4b:d0:c3:2e:03:66:2c:55:32:94:7e:99:cc:b9:ec:58:5e:e0: 10:ea:cc:16:64:ae:3c:24:7d:5f:26:12:47:d7:ab:9b:05:e5: 7a:49:67:3e:0f:7b:32:36:7c:07:de:1b:99:a3:04:1f:94:8e: be:b7:d8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUxMjA1MDAzMTE1WhcNMjUxMjEyMDAzMTE1WjAYMRYwFAYD VQQDEw02OTMyMjdkMy00MTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIHNqwPen08+Tom4LKvGJxKS/c/NYECcnRUb5zm8+A5XkFZdMCcuSQbaNT9i jXsrHK2q0z6mv9U0km9uQtODtaUKBxEhZ3hARaq7Nia/yBRzyGfLWrHKYiBX8Yds z2pEQm99IOTsz1mxI6I5KhEppv80v7oy1biOwdvOrJWK4aUJxsTYLJhJIekXGPLV DDa/2Sc3JBi4wDnsVK9ccZwyV2XoC0uxK9kHdchrmMiH7mvpZeADu2OcSPfFMFjM 8fdsf8UT/gf+2oVUzEsrrWUUaWIKTHJ2pSgzReIkUe3zhPHNyOlO1rhZE4vtlXiZ DWhx7bljv/KpChI8vnGm5rt9awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcsMU94 0idFeE9Ra/W7QBhgbU4dMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxmcUnIqUKpeSoykk9olU8xkEr9kpRVckgs0TWHp3l8B2X2NwTv77L /Kc1YAY66M07D7k+7fYiuI6v51ZQSAMgh1XRp9VrVcMMZtlqCFr92u1u1ZZn+9+2 h+/oiHvmWaGgwkZ6n9OSQCmyiBcbhP655pH9RU0wQwo2FCzR8VGOd7SBb6FH0AER 0D1x1tGwmQj9e+NUDiNgsLcEkzTylocaJ2ttZUthx3j0Pvf7cV6mIEtYCxnTfEW8 hnpMkfo1wSII87y3eF1L0MMuA2YsVTKUfpnMuexYXuAQ6swWZK48JH1fJhJH16ub BeV6SWc+D3syNnwH3huZowQflI6+t9ip -----END CERTIFICATE-----Generated at Sat Dec 6 21:00:13 2025 by rpki-client