This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: JPOOYTcw1eQn30QGkLdXzjLjiEjzbxkgOKlZ6nb6X5A= Subject key identifier: 90:42:93:B9:78:04:53:EC:F4:CC:85:32:E7:4A:91:1E:76:B4:86:4C Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 01B7 Signing time: Fri 05 Dec 2025 01:25:16 +0000 Manifest this update: Fri 05 Dec 2025 01:25:15 +0000 Manifest next update: Fri 12 Dec 2025 01:25:15 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: /ivW3Gzs/lhpYxfeg9gaGMc6RhyMdznI500I+/K3qL8=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: V8EYXGGM5ehfMXNVHQoJfhAKwYo57AeE/3ynyZdkMrY=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: N6Bn0tjkAYOIirhCnX+L9qAa4FcrjkrvnPohqveujZw=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: TcFb5btGGuGcCTENXu84bKs3B+lnqciAGdu0W4Z7mP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Dec 5 01:25:15 2025 GMT Not After : Dec 12 01:25:15 2025 GMT Subject: CN=6932347b-e61a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8c:3b:91:f9:b3:07:1a:8f:54:20:b1:00:e8: 4a:57:18:39:2b:53:69:48:fe:c3:fd:1f:67:4c:7d: 6f:4e:9b:fa:6c:90:29:84:4b:a2:e6:bb:3d:c4:a8: a7:e2:f3:e9:24:92:b7:d8:95:e6:47:d0:32:a8:a0: 98:a7:7b:9a:d1:f1:a3:0c:60:db:5b:a2:9a:2a:b1: d7:2b:e9:41:27:74:a6:7d:10:44:d9:90:16:5c:a4: f8:ed:03:e2:27:3f:e3:5c:96:d8:4a:8c:15:8b:8e: 75:7f:55:08:97:57:02:bb:38:68:d5:db:02:5f:a2: c2:bb:77:e0:a3:b4:e0:ca:02:a7:5d:ed:e4:22:bb: 2a:61:df:9c:10:f4:6a:c8:10:1c:fd:7b:3c:69:40: fe:22:ef:22:4c:64:ed:ba:a4:1f:16:d2:e1:a2:1d: 8b:98:ea:6a:3f:d8:67:87:99:bc:bb:99:fb:ef:1f: 9a:06:39:85:d8:8b:18:20:38:c3:c9:1b:6e:db:70: 2f:09:d5:36:9b:a5:07:34:2e:8b:49:ff:e9:09:af: c3:de:55:53:aa:d4:90:0c:31:9c:41:37:63:ec:f7: 72:f8:40:47:1e:4d:44:52:cb:bc:28:85:db:dc:98: 2a:42:3f:f0:c5:2d:1b:9e:12:71:ff:6a:8c:c2:b5: 18:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:42:93:B9:78:04:53:EC:F4:CC:85:32:E7:4A:91:1E:76:B4:86:4C X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a5:99:00:06:87:80:b6:10:ef:c3:9c:d6:29:b7:7f:e5:f7: 68:77:1b:99:56:b0:6f:0d:b3:2e:35:c3:a3:d4:4c:8b:16:71: d9:a3:48:c8:8a:f5:7b:44:e5:7a:14:c0:5e:b8:d0:35:52:41: 9b:7f:1c:4e:4b:91:59:3f:8a:a5:5a:92:3c:89:07:e8:98:8a: 35:e4:3d:c6:16:ed:59:72:bd:6e:34:3d:41:0c:a2:1e:45:39: 41:88:44:fc:35:d4:15:21:df:dd:70:ff:e5:bd:18:8b:23:59: 02:a6:c2:e0:da:00:96:51:5e:53:70:e1:46:9a:e3:54:97:48: e4:f5:be:e8:93:74:cf:ea:4a:ff:6a:75:74:36:4e:0a:d4:cd: d9:50:68:aa:31:f8:92:18:75:b8:93:a6:5c:56:4f:c7:ed:21: 13:be:c9:00:78:9b:d4:78:95:5c:79:65:ee:6e:e8:b6:d1:d2: 09:29:1e:fb:5a:4e:d7:80:c5:e3:e3:57:f5:b1:a8:38:aa:8e: 24:f6:6f:cb:59:82:a8:be:fe:5c:9a:4b:60:f7:82:d4:57:83: a9:cc:b3:07:4f:09:b2:e6:ff:40:36:73:bf:ea:5a:65:55:b9: 88:24:bc:93:50:f9:c3:86:7a:c3:c5:ce:8e:6b:ab:7c:0f:53: 6a:96:ad:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUxMjA1MDEyNTE1WhcNMjUxMjEyMDEyNTE1WjAYMRYwFAYD VQQDEw02OTMyMzQ3Yi1lNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04w7kfmzBxqPVCCxAOhKVxg5K1NpSP7D/R9nTH1vTpv6bJAphEui5rs9xKin 4vPpJJK32JXmR9AyqKCYp3ua0fGjDGDbW6KaKrHXK+lBJ3SmfRBE2ZAWXKT47QPi Jz/jXJbYSowVi451f1UIl1cCuzho1dsCX6LCu3fgo7TgygKnXe3kIrsqYd+cEPRq yBAc/Xs8aUD+Iu8iTGTtuqQfFtLhoh2LmOpqP9hnh5m8u5n77x+aBjmF2IsYIDjD yRtu23AvCdU2m6UHNC6LSf/pCa/D3lVTqtSQDDGcQTdj7Pdy+EBHHk1EUsu8KIXb 3JgqQj/wxS0bnhJx/2qMwrUYCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBCk7l4 BFPs9MyFMudKkR52tIZMMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6pZkABoeAthDvw5zWKbd/5fdodxuZVrBvDbMuNcOj1EyLFnHZo0jI ivV7ROV6FMBeuNA1UkGbfxxOS5FZP4qlWpI8iQfomIo15D3GFu1Zcr1uND1BDKIe RTlBiET8NdQVId/dcP/lvRiLI1kCpsLg2gCWUV5TcOFGmuNUl0jk9b7ok3TP6kr/ anV0Nk4K1M3ZUGiqMfiSGHW4k6ZcVk/H7SETvskAeJvUeJVceWXubui20dIJKR77 Wk7XgMXj41f1sag4qo4k9m/LWYKovv5cmktg94LUV4OpzLMHTwmy5v9ANnO/6lpl VbmIJLyTUPnDhnrDxc6Oa6t8D1Nqlq0A -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:03 2025 by rpki-client