This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: LNWvecjCb0ObOKL1ar/p8L0NpDLeltdBhXEc9duuqK4= Subject key identifier: 1F:78:64:97:94:E1:92:FB:79:07:B7:04:7A:A5:B2:EE:49:5B:DA:7E Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 083B Signing time: Thu 04 Dec 2025 19:55:10 +0000 Manifest this update: Thu 04 Dec 2025 19:55:09 +0000 Manifest next update: Thu 11 Dec 2025 19:55:09 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: lzzp3EVqs69JT42+mizLYI/K7y/FphWc7+jafrrwN2I=) 2: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: SY9pZakTz+Y+bprs2Qaz2rmG63LM9RAeEr8PBsMxkEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Dec 4 19:55:09 2025 GMT Not After : Dec 11 19:55:09 2025 GMT Subject: CN=6931e71d-4830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:e2:91:41:e0:4b:22:98:a6:a5:54:7d:42: 87:23:0a:7a:2b:3c:46:3e:92:13:29:41:f1:62:4b: dd:59:e6:a0:c7:9e:42:9f:e2:27:05:3d:14:73:94: eb:a7:e3:67:bf:66:b7:f3:9e:c5:39:63:3c:05:9f: c8:ac:ca:d4:4e:81:1b:3e:19:ad:0b:fa:0f:3b:60: 1a:de:71:02:be:4c:33:28:10:3c:a6:52:44:69:73: ba:66:3b:50:cf:4b:c0:b3:18:7d:44:a8:74:17:0e: 0b:b6:13:6a:0c:b4:36:44:09:a2:f1:a1:a2:08:e4: 84:f9:be:d1:96:29:1a:39:83:67:00:f6:78:8e:6b: 4a:24:09:74:14:6e:db:be:04:e7:88:9f:6e:b0:e6: d1:a5:3b:5d:f8:15:f8:a0:09:be:9b:6a:d5:49:48: ac:24:27:a7:09:c4:6b:fb:47:ed:c2:1f:8f:ab:54: ab:b1:7b:a5:19:a5:a0:2f:d3:77:77:39:cf:81:4d: b3:65:56:22:c7:22:d9:ea:8a:1d:7b:96:e3:ea:8e: da:2c:23:fb:13:00:0a:e6:68:45:18:e4:8c:a7:d3: bb:92:7c:34:fc:4d:b4:e8:97:7c:af:d4:5a:fd:60: f2:1d:a2:68:a5:4e:6e:b2:f8:d0:54:2f:7a:ca:37: ab:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:78:64:97:94:E1:92:FB:79:07:B7:04:7A:A5:B2:EE:49:5B:DA:7E X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:3b:85:53:df:a1:3c:50:15:60:91:0f:1a:5b:be:a8:09:1b: 90:df:84:3d:17:f4:ef:2d:63:df:79:57:72:f3:ce:cc:87:ca: a4:e8:b6:b4:7e:31:af:e6:82:63:22:50:4b:3a:fd:43:4e:9c: 77:6a:3d:b4:b8:dd:5c:0b:44:1b:7a:05:37:14:e5:6c:54:fe: 9a:3f:60:08:75:0b:fa:32:0b:37:be:f9:4f:e7:d5:ef:93:6b: 1b:4e:cc:49:94:92:45:07:72:44:ef:05:8d:ff:70:68:99:8c: 6b:98:64:76:16:1a:e4:ec:d5:ad:c9:2f:40:53:93:d7:d3:9a: c3:4c:54:85:07:b4:11:82:17:3b:77:1f:83:2b:3a:3d:dc:d2: f1:59:92:98:4d:a1:3d:63:ab:43:a0:ea:0c:e8:43:8f:67:ac: ad:f1:25:ab:29:e7:34:97:d2:5b:22:91:88:ee:9b:78:64:3f: d4:e4:cc:83:26:ee:79:ce:12:d1:b4:80:43:c6:5a:71:27:a0: 50:12:86:21:9c:2a:52:45:21:b0:b5:94:33:fb:39:cc:ee:30: 57:43:48:8d:42:1e:79:e7:95:4f:b6:7c:58:41:d1:02:c2:2b: 48:e2:4a:fa:06:11:ee:8b:ce:c2:59:0a:b7:4b:78:bb:ed:05: cc:91:b7:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUxMjA0MTk1NTA5WhcNMjUxMjExMTk1NTA5WjAYMRYwFAYD VQQDEw02OTMxZTcxZC00ODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/TikUHgSyKYpqVUfUKHIwp6KzxGPpITKUHxYkvdWeagx55Cn+InBT0Uc5Tr p+Nnv2a3857FOWM8BZ/IrMrUToEbPhmtC/oPO2Aa3nECvkwzKBA8plJEaXO6ZjtQ z0vAsxh9RKh0Fw4LthNqDLQ2RAmi8aGiCOSE+b7RlikaOYNnAPZ4jmtKJAl0FG7b vgTniJ9usObRpTtd+BX4oAm+m2rVSUisJCenCcRr+0ftwh+Pq1SrsXulGaWgL9N3 dznPgU2zZVYixyLZ6oode5bj6o7aLCP7EwAK5mhFGOSMp9O7knw0/E206Jd8r9Ra /WDyHaJopU5usvjQVC96yjer+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB94ZJeU 4ZL7eQe3BHqlsu5JW9p+MB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdO4VT36E8UBVgkQ8aW76oCRuQ34Q9F/TvLWPfeVdy887Mh8qk6La0 fjGv5oJjIlBLOv1DTpx3aj20uN1cC0QbegU3FOVsVP6aP2AIdQv6Mgs3vvlP59Xv k2sbTsxJlJJFB3JE7wWN/3BomYxrmGR2Fhrk7NWtyS9AU5PX05rDTFSFB7QRghc7 dx+DKzo93NLxWZKYTaE9Y6tDoOoM6EOPZ6yt8SWrKec0l9JbIpGI7pt4ZD/U5MyD Ju55zhLRtIBDxlpxJ6BQEoYhnCpSRSGwtZQz+znM7jBXQ0iNQh5555VPtnxYQdEC witI4kr6BhHui87CWQq3S3i77QXMkbeD -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:14 2025 by rpki-client