This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: IyQNbSKZBC6WghiBBc45pga3VCjzfmWSs7JkmPmpHsQ= Subject key identifier: 48:2D:BA:19:09:FE:18:45:7E:BE:27:29:91:92:32:63:EF:E1:29:CA Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07EE Signing time: Sat 06 Dec 2025 20:10:41 +0000 Manifest this update: Sat 06 Dec 2025 20:10:41 +0000 Manifest next update: Sat 13 Dec 2025 20:10:41 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: boAk+lt0NmqiPEaKw2/C+fq2uJrJUCeYNu6jXkqTbp4=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Dec 6 20:10:41 2025 GMT Not After : Dec 13 20:10:41 2025 GMT Subject: CN=69348dc1-22c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:59:d1:74:06:ea:9c:b7:3b:9d:5b:7d:7b:6a: 87:7e:cb:42:ea:0e:b4:49:1c:8e:1a:61:54:7d:e1: 46:05:c8:9c:a4:82:2c:47:38:d9:57:e4:01:3e:71: 66:e2:eb:35:bd:0d:cc:7c:be:db:11:de:64:aa:16: c0:98:61:92:c6:3e:f5:9d:ee:65:6a:5d:a1:b7:40: d8:2d:92:3d:19:37:b3:fc:50:b5:24:a4:3a:18:9d: 42:2a:ac:df:c7:8c:69:75:cd:b6:70:e6:30:44:78: f2:02:e9:e4:b7:96:61:e9:7a:83:5e:33:72:5c:47: c4:fd:e7:d7:e6:d1:e2:89:a8:55:2c:05:0e:12:7c: b4:11:54:b3:65:a6:8b:35:1d:8b:9d:00:ae:35:93: 26:ba:45:cf:e5:fc:f4:86:22:1f:c4:13:8b:00:79: 8a:58:ba:56:e1:e5:23:66:79:76:bb:94:b0:e3:b8: 84:6d:7e:6f:af:de:d8:cf:dc:25:4b:7c:61:58:ef: 48:7d:b0:8d:1e:8e:81:ba:63:28:28:bb:b9:11:2b: ae:0d:2e:05:2e:ab:62:50:20:0e:a7:8b:4e:49:e5: 3b:3c:f7:ae:00:20:08:89:fc:5c:3b:c0:c0:68:de: 54:b9:47:90:d2:7c:4d:b0:4f:38:21:9e:84:05:b4: a7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2D:BA:19:09:FE:18:45:7E:BE:27:29:91:92:32:63:EF:E1:29:CA X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:05:4c:a2:48:59:e0:e4:7e:bf:78:1b:92:9f:5c:39:b4:38: 76:c3:17:25:0c:b8:7d:76:8d:1b:96:38:c9:8c:f0:84:0c:94: a4:b7:a2:3b:0e:9a:2e:ee:1c:59:ad:d4:32:de:fb:3c:8b:9a: 35:78:3c:5c:b8:fd:53:2b:f2:08:a0:69:90:94:ce:a3:72:bb: ee:01:92:83:97:1e:34:89:09:74:b4:cb:7e:13:36:5e:78:dd: 84:85:64:15:ed:a3:a1:01:15:2a:32:f8:d4:56:cf:0a:f9:a7: f3:a3:6d:c9:12:59:b9:67:a8:4b:10:bc:1d:1e:35:74:8e:5c: e8:75:e5:ed:a7:fe:ed:28:5a:f3:a3:5f:7f:4f:8e:be:06:7e: 08:f0:46:1c:6a:64:18:a1:26:36:13:99:0e:34:91:d5:bc:66: 46:a3:4c:8d:18:b3:05:ca:ce:36:3d:23:ed:60:3f:a8:7c:14: e2:c5:65:68:85:64:36:ad:f0:54:cc:62:fb:04:79:5b:79:e1: 21:fd:50:14:e9:0f:fe:ad:27:35:d0:14:f1:a3:da:fe:cc:85: 7a:f6:de:46:00:91:3f:4c:ca:63:aa:92:7c:f9:77:af:a9:e1: 6f:c6:84:13:db:93:63:35:43:7a:26:1a:82:67:0a:57:9c:19: 8b:73:f8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUxMjA2MjAxMDQxWhcNMjUxMjEzMjAxMDQxWjAYMRYwFAYD VQQDEw02OTM0OGRjMS0yMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFnRdAbqnLc7nVt9e2qHfstC6g60SRyOGmFUfeFGBcicpIIsRzjZV+QBPnFm 4us1vQ3MfL7bEd5kqhbAmGGSxj71ne5lal2ht0DYLZI9GTez/FC1JKQ6GJ1CKqzf x4xpdc22cOYwRHjyAunkt5Zh6XqDXjNyXEfE/efX5tHiiahVLAUOEny0EVSzZaaL NR2LnQCuNZMmukXP5fz0hiIfxBOLAHmKWLpW4eUjZnl2u5Sw47iEbX5vr97Yz9wl S3xhWO9IfbCNHo6BumMoKLu5ESuuDS4FLqtiUCAOp4tOSeU7PPeuACAIifxcO8DA aN5UuUeQ0nxNsE84IZ6EBbSnUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgtuhkJ /hhFfr4nKZGSMmPv4SnKMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmBUyiSFng5H6/eBuSn1w5tDh2wxclDLh9do0bljjJjPCEDJSkt6I7 Dpou7hxZrdQy3vs8i5o1eDxcuP1TK/IIoGmQlM6jcrvuAZKDlx40iQl0tMt+EzZe eN2EhWQV7aOhARUqMvjUVs8K+afzo23JElm5Z6hLELwdHjV0jlzodeXtp/7tKFrz o19/T46+Bn4I8EYcamQYoSY2E5kONJHVvGZGo0yNGLMFys42PSPtYD+ofBTixWVo hWQ2rfBUzGL7BHlbeeEh/VAU6Q/+rSc10BTxo9r+zIV69t5GAJE/TMpjqpJ8+Xev qeFvxoQT25NjNUN6JhqCZwpXnBmLc/jO -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:06 2025 by rpki-client