This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: W7C6U0uqL2R2jWxi9Mjc+MzanL6MrksvhWng7je8vlQ= Subject key identifier: 10:17:94:1A:DF:4E:33:AE:CC:A0:BD:7A:2F:7B:29:65:24:7E:8E:4F Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A6F Signing time: Sat 06 Dec 2025 18:51:38 +0000 Manifest this update: Sat 06 Dec 2025 18:51:37 +0000 Manifest next update: Sat 13 Dec 2025 18:51:37 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: o8onMZVDc65RI3W+oHIk4ykzgj7XAP+qcouLVumhwIY=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: uSN3Gv1mPyytVdfiVFWC/qduqPudyKGyOZQwN01E8xE=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: zcOpYALMg85NqdJptG4eC86fQdzmEleTfcf+2WTyKGE=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: mV1bCNXfD7w4ttjCRjT99a/5iAZCupAPYyeXcu8Us3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Dec 6 18:51:37 2025 GMT Not After : Dec 13 18:51:37 2025 GMT Subject: CN=69347b3a-dc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7a:49:1e:78:41:89:b2:e9:4d:9a:dc:7a:8a: 55:23:7c:1f:93:2a:8b:3a:0b:ee:b4:0f:f3:83:49: 28:df:7a:62:88:ef:59:b0:4a:27:84:d9:1f:ac:00: bc:38:5e:b9:8e:19:18:51:a1:d7:3c:24:a5:e3:00: 51:87:45:2d:5f:d0:13:cd:6e:73:50:06:ef:6c:b5: df:9b:5b:31:cf:fe:87:95:a3:95:a7:e8:cc:bf:2c: 71:de:fb:53:57:5b:8e:e9:5e:6f:28:46:b0:43:7f: 9b:c4:0e:76:92:be:26:a0:45:e5:dc:63:d7:7e:96: 91:a1:5c:43:a8:a5:84:bb:16:05:26:a1:33:d9:f4: 7b:7f:01:01:1c:2a:00:52:f5:0c:89:8e:2f:73:a8: 05:92:4c:ca:6e:5c:04:d0:92:10:0f:85:7a:1b:68: 29:51:cf:ad:92:e7:9c:a7:85:bc:22:50:e9:51:a5: 8e:44:02:8c:3d:da:81:0a:0e:14:fd:fa:a0:30:a4: d3:90:d9:e8:67:00:4c:1d:cd:99:7d:b6:d1:5b:a5: ef:47:b9:98:e7:a2:56:3a:f9:f2:ad:f5:d6:00:72: c7:8e:6a:1c:e0:a2:c2:b0:e1:cd:3e:12:55:51:c2: f6:ee:a6:73:aa:d4:dc:94:f0:e9:3f:ba:df:e5:6e: ef:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:17:94:1A:DF:4E:33:AE:CC:A0:BD:7A:2F:7B:29:65:24:7E:8E:4F X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d3:d9:b3:ac:ab:25:32:07:b6:84:08:95:79:dc:d9:7a:6a: 26:d9:4f:91:1b:7a:97:d7:c1:2a:f3:ed:57:4a:7d:0d:02:33: 98:db:0d:4e:a5:3b:7e:4d:83:29:59:77:a7:7e:0a:3f:1c:9b: 22:d6:04:f1:ff:78:26:31:42:32:02:60:79:f4:9a:11:48:10: 5e:3d:33:69:c9:cd:09:f2:f4:8e:71:6e:94:7e:90:38:90:76: 8b:a1:ef:15:86:01:45:11:75:c8:e7:e0:03:27:6f:a4:29:2b: e9:c7:7a:24:dd:10:9e:6e:1e:ac:c5:1c:60:63:7a:dd:da:ff: 5b:46:b2:8e:bf:c0:65:be:81:91:cb:21:c8:3a:b4:7e:b4:ca: 34:62:37:25:80:8d:f8:80:cd:14:78:1f:a8:d1:95:47:7d:f0: 41:cf:63:92:bc:45:cd:bc:9b:1e:c4:2a:42:46:1e:2f:e2:d1: f4:de:f3:0c:b7:39:2b:7b:c4:03:ad:e1:c6:da:64:d2:e4:ac: a9:21:9c:09:1d:00:02:97:df:7b:37:9c:1a:3a:3e:96:cb:1c: b0:fa:d0:4c:2a:a1:5d:51:e3:6d:23:39:01:db:bf:d8:d3:01: f5:3e:99:79:28:8f:a3:56:f2:e8:ff:ac:13:96:5b:a3:cd:69: 6e:5e:3e:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMjA2MTg1MTM3WhcNMjUxMjEzMTg1MTM3WjAYMRYwFAYD VQQDEw02OTM0N2IzYS1kYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynpJHnhBibLpTZrceopVI3wfkyqLOgvutA/zg0ko33piiO9ZsEonhNkfrAC8 OF65jhkYUaHXPCSl4wBRh0UtX9ATzW5zUAbvbLXfm1sxz/6HlaOVp+jMvyxx3vtT V1uO6V5vKEawQ3+bxA52kr4moEXl3GPXfpaRoVxDqKWEuxYFJqEz2fR7fwEBHCoA UvUMiY4vc6gFkkzKblwE0JIQD4V6G2gpUc+tkuecp4W8IlDpUaWORAKMPdqBCg4U /fqgMKTTkNnoZwBMHc2ZfbbRW6XvR7mY56JWOvnyrfXWAHLHjmoc4KLCsOHNPhJV UcL27qZzqtTclPDpP7rf5W7vwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAXlBrf TjOuzKC9ei97KWUkfo5PMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe09mzrKslMge2hAiVedzZemom2U+RG3qX18Eq8+1XSn0NAjOY2w1O pTt+TYMpWXenfgo/HJsi1gTx/3gmMUIyAmB59JoRSBBePTNpyc0J8vSOcW6UfpA4 kHaLoe8VhgFFEXXI5+ADJ2+kKSvpx3ok3RCebh6sxRxgY3rd2v9bRrKOv8BlvoGR yyHIOrR+tMo0YjclgI34gM0UeB+o0ZVHffBBz2OSvEXNvJsexCpCRh4v4tH03vMM tzkre8QDreHG2mTS5KypIZwJHQACl997N5waOj6Wyxyw+tBMKqFdUeNtIzkB27/Y 0wH1Ppl5KI+jVvLo/6wTllujzWluXj7y -----END CERTIFICATE-----Generated at Sun Dec 7 02:34:24 2025 by rpki-client