This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: 4fmyaiYKaryX1iQsWE71tsgm4We+XRM8uV+b71BiPi4= Subject key identifier: D1:EB:43:41:5A:CE:9A:0C:E3:DB:A9:A4:87:F9:D4:C0:93:7F:29:02 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04D9 Signing time: Thu 04 Dec 2025 22:21:08 +0000 Manifest this update: Thu 04 Dec 2025 22:21:08 +0000 Manifest next update: Thu 11 Dec 2025 22:21:08 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: X9awRuVGAvVMUcHpJCVShT7uOufZPZ2rjwj7xNcwRYA=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Dec 4 22:21:08 2025 GMT Not After : Dec 11 22:21:08 2025 GMT Subject: CN=69320954-98a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:82:4a:fd:7b:04:ff:8e:a7:58:cc:20:3d:53: fb:70:9c:1b:20:4f:d7:6d:88:44:c9:a9:4e:2c:a4: 9c:b5:73:a2:6b:35:0d:46:ff:2b:b6:63:ca:eb:d6: 3f:61:d9:55:9c:14:9f:79:3e:2e:20:2f:77:7b:6c: 0b:fd:f7:e1:12:52:3c:8f:08:9c:e0:2c:9a:44:27: 2d:85:47:4a:f5:0c:42:9a:11:76:c1:15:5b:1a:0a: 29:28:ca:fb:9c:b0:00:d3:f9:ae:8d:f7:88:d5:18: 73:b9:a4:7b:bf:74:1b:eb:21:7e:1c:0f:a5:83:77: d2:67:e8:6c:b8:47:72:23:5d:bc:50:d0:03:db:c6: df:8f:28:81:ce:cb:c7:00:9f:a0:4d:cd:96:37:bd: 76:1f:f4:13:ac:16:94:86:1d:0d:38:21:e6:6a:ba: 1d:0d:0d:42:14:9d:db:ce:a5:c4:aa:d7:1b:33:b2: 33:9c:15:73:5f:d3:28:43:69:e4:2c:31:2e:e3:ed: b0:dd:dc:69:36:81:1c:18:31:53:5b:d6:a9:9e:15: bd:9b:51:09:62:8d:c8:a2:70:91:e0:07:d1:80:62: f7:33:83:80:03:c3:04:e6:e7:07:bb:ba:fe:0d:af: d0:3a:5e:0e:65:b3:d0:fe:95:ea:4c:c1:fe:7b:5e: 0b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EB:43:41:5A:CE:9A:0C:E3:DB:A9:A4:87:F9:D4:C0:93:7F:29:02 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:79:d8:68:93:e0:15:68:9e:93:53:c2:0b:a9:7c:6b:6b:4d: e1:83:68:84:e4:0f:9e:ac:fd:61:e9:04:e6:d2:ea:ff:1f:9b: db:4a:03:ef:ca:b5:0b:0c:d6:50:71:88:3c:f0:04:37:aa:51: 3a:f6:c2:54:7d:49:6a:70:3f:30:9f:d3:27:26:02:36:00:14: b3:e0:ae:82:c7:f2:56:3f:b0:e4:fe:c3:f4:e1:7e:9d:5e:aa: 9b:30:3b:13:90:b4:83:71:b0:21:7f:5e:f8:f9:5e:dd:cd:ee: a1:06:0e:35:89:23:17:e1:fc:bf:c9:bb:a4:b1:f7:11:ad:21: 84:59:e1:4d:96:0c:0e:85:d3:87:9a:b7:57:58:d9:89:37:8c: f9:b3:10:aa:d0:87:f1:21:2e:98:97:ff:c0:d7:ad:0f:36:d9: 74:a5:de:e2:b0:4c:37:54:e4:59:ac:9a:20:40:86:89:e1:27: 50:67:c1:e9:3c:fb:c4:43:72:cc:fd:5a:2e:7a:d5:d9:68:2d: 82:f2:c0:1d:c6:21:ff:21:08:f8:c4:ac:7b:4e:3f:f5:ca:41: 5a:5b:a8:3e:11:a1:f4:ec:4e:60:cd:3a:9d:4e:89:b1:02:65: bd:16:f9:9c:ac:55:92:f0:5f:fe:db:a4:ec:a0:5d:13:71:b7: 77:39:b2:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMjA0MjIyMTA4WhcNMjUxMjExMjIyMTA4WjAYMRYwFAYD VQQDEw02OTMyMDk1NC05OGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8oJK/XsE/46nWMwgPVP7cJwbIE/XbYhEyalOLKSctXOiazUNRv8rtmPK69Y/ YdlVnBSfeT4uIC93e2wL/ffhElI8jwic4CyaRCcthUdK9QxCmhF2wRVbGgopKMr7 nLAA0/mujfeI1RhzuaR7v3Qb6yF+HA+lg3fSZ+hsuEdyI128UNAD28bfjyiBzsvH AJ+gTc2WN712H/QTrBaUhh0NOCHmarodDQ1CFJ3bzqXEqtcbM7IznBVzX9MoQ2nk LDEu4+2w3dxpNoEcGDFTW9apnhW9m1EJYo3IonCR4AfRgGL3M4OAA8ME5ucHu7r+ Da/QOl4OZbPQ/pXqTMH+e14LSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHrQ0Fa zpoM49uppIf51MCTfykCMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAledhok+AVaJ6TU8ILqXxra03hg2iE5A+erP1h6QTm0ur/H5vbSgPv yrULDNZQcYg88AQ3qlE69sJUfUlqcD8wn9MnJgI2ABSz4K6Cx/JWP7Dk/sP04X6d XqqbMDsTkLSDcbAhf174+V7dze6hBg41iSMX4fy/ybuksfcRrSGEWeFNlgwOhdOH mrdXWNmJN4z5sxCq0IfxIS6Yl//A160PNtl0pd7isEw3VORZrJogQIaJ4SdQZ8Hp PPvEQ3LM/VouetXZaC2C8sAdxiH/IQj4xKx7Tj/1ykFaW6g+EaH07E5gzTqdTomx AmW9FvmcrFWS8F/+26TsoF0Tcbd3ObIv -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:45 2025 by rpki-client