This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: 7wywlgj9vAJ6eNC+sm2Iba4yfiQohPHhrkbObztz1d4= Subject key identifier: CF:D2:52:2F:20:4E:AF:08:B4:7F:AB:C4:9E:B8:2D:53:94:C8:4F:6E Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: DF Signing time: Fri 05 Dec 2025 03:31:04 +0000 Manifest this update: Fri 05 Dec 2025 03:31:03 +0000 Manifest next update: Fri 12 Dec 2025 03:31:03 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: rljXIUy0IrcSu+vASVbBg0MNLVRA/cH5SHMYp9FBtsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Dec 5 03:31:03 2025 GMT Not After : Dec 12 03:31:03 2025 GMT Subject: CN=693251f8-d222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1e:cf:36:39:4b:43:38:1a:32:86:af:f7:dc: 61:01:d5:0f:ee:55:ce:a3:ca:42:ce:e3:4d:a7:03: 04:e1:30:6c:9a:a2:a2:74:be:71:70:e8:ed:bb:1c: b6:a8:24:b1:2e:84:41:ec:5f:f9:db:ce:2e:44:fb: 5f:56:9f:51:84:2a:e5:e8:16:27:bc:e0:17:d2:19: 26:75:da:74:9f:68:1f:de:93:b3:a8:f7:2b:37:f6: cf:49:a5:d0:a8:89:2c:f5:1e:d9:5d:e2:2a:0b:a9: be:0e:fe:85:e6:8e:96:d6:d5:26:b2:da:ec:45:a1: 47:4a:7c:e8:fa:4e:d4:6b:97:c0:7c:37:1f:88:b5: 18:1a:1b:29:4b:4e:be:1c:3d:f8:a5:22:c1:68:07: 76:6f:8e:46:bb:9e:1f:06:1e:e7:c5:62:7e:a7:08: dc:75:74:06:24:a2:2d:b3:53:d1:de:52:99:a6:52: cc:ec:bb:1e:a4:5a:d5:76:10:64:a5:31:2a:9b:3a: d9:f1:5d:33:10:2f:b9:0d:dd:61:1a:f5:cd:9d:c1: 13:0a:65:2c:a2:49:f7:63:78:7e:5b:92:56:13:6f: 2c:7a:a6:9d:f7:04:25:ad:20:0a:59:68:07:28:9d: b2:3c:12:58:36:48:d0:b1:cc:52:65:fc:89:42:fe: 98:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D2:52:2F:20:4E:AF:08:B4:7F:AB:C4:9E:B8:2D:53:94:C8:4F:6E X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f9:25:1f:c2:82:2e:37:96:cd:b0:6a:7c:26:93:d7:8c:82: 96:b7:c2:9b:b8:7c:55:09:40:6f:26:63:fb:d1:49:a9:4e:5a: 51:bc:8d:94:1b:a6:f6:b5:e7:58:60:37:15:3c:a1:c4:41:ad: c0:73:24:2c:40:6d:32:be:89:88:2e:bb:9f:93:df:73:69:ce: f7:95:f5:3c:e4:4f:cd:9c:cc:80:19:ea:3e:ad:a8:c7:80:68: 8d:b3:a6:1c:fd:34:86:ca:47:ba:3f:4b:0f:6f:57:07:cb:55: a4:3f:df:86:18:9d:cd:4b:b2:54:76:fa:09:ad:89:c3:49:2d: 1f:c4:4d:ad:e2:80:05:20:4e:34:50:c4:4b:48:6a:b2:d2:2d: 08:47:30:6e:41:b7:88:0b:e3:99:0c:48:6a:ed:ac:67:34:9e: 9c:1a:99:c5:ae:64:2e:01:80:3f:68:4f:ea:5d:ee:e5:b2:43: 68:6e:33:28:75:9e:45:5b:23:e2:e4:fd:1a:a2:9a:bd:18:34: 57:6d:78:25:20:00:1b:29:2b:70:cc:b1:72:dd:79:61:32:5f: e4:81:6e:27:0e:8c:b3:ff:07:69:76:eb:82:64:9e:cc:e2:ff: 67:02:e5:b8:d2:e2:dd:99:c2:c3:0b:93:93:1b:c7:9e:40:ab: 7f:70:0c:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUxMjA1MDMzMTAzWhcNMjUxMjEyMDMzMTAzWjAYMRYwFAYD VQQDEw02OTMyNTFmOC1kMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsB7PNjlLQzgaMoav99xhAdUP7lXOo8pCzuNNpwME4TBsmqKidL5xcOjtuxy2 qCSxLoRB7F/5284uRPtfVp9RhCrl6BYnvOAX0hkmddp0n2gf3pOzqPcrN/bPSaXQ qIks9R7ZXeIqC6m+Dv6F5o6W1tUmstrsRaFHSnzo+k7Ua5fAfDcfiLUYGhspS06+ HD34pSLBaAd2b45Gu54fBh7nxWJ+pwjcdXQGJKIts1PR3lKZplLM7LsepFrVdhBk pTEqmzrZ8V0zEC+5Dd1hGvXNncETCmUsokn3Y3h+W5JWE28seqad9wQlrSAKWWgH KJ2yPBJYNkjQscxSZfyJQv6Y/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/SUi8g Tq8ItH+rxJ64LVOUyE9uMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH+SUfwoIuN5bNsGp8JpPXjIKWt8KbuHxVCUBvJmP70UmpTlpRvI2U G6b2tedYYDcVPKHEQa3AcyQsQG0yvomILrufk99zac73lfU85E/NnMyAGeo+rajH gGiNs6Yc/TSGyke6P0sPb1cHy1WkP9+GGJ3NS7JUdvoJrYnDSS0fxE2t4oAFIE40 UMRLSGqy0i0IRzBuQbeIC+OZDEhq7axnNJ6cGpnFrmQuAYA/aE/qXe7lskNobjMo dZ5FWyPi5P0aopq9GDRXbXglIAAbKStwzLFy3XlhMl/kgW4nDoyz/wdpduuCZJ7M 4v9nAuW40uLdmcLDC5OTG8eeQKt/cAyW -----END CERTIFICATE-----Generated at Sun Dec 7 01:33:29 2025 by rpki-client