This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: 49rPgKbCX2ZuJbepUAYud97l6lrHN6Hxy4LtvpzRfxI= Subject key identifier: C2:07:94:E1:A6:C9:5A:15:55:FA:F8:71:71:EC:44:5A:22:FB:DB:50 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 0134 Signing time: Fri 05 Dec 2025 02:37:01 +0000 Manifest this update: Fri 05 Dec 2025 02:37:00 +0000 Manifest next update: Fri 12 Dec 2025 02:37:00 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: dpGy7Ghz7iKB9nHKZm2vTSJs78QHbolR8HRrWdgLdj8=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Dec 5 02:37:00 2025 GMT Not After : Dec 12 02:37:00 2025 GMT Subject: CN=6932454d-9aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:88:ea:ef:c9:eb:e9:07:de:dd:94:5d:27: 5e:01:10:18:47:9c:95:e5:04:60:ce:a7:28:a9:ca: 65:42:fb:a5:f1:e4:ef:7f:91:9a:72:ee:75:be:03: ad:44:d1:13:ef:6d:32:a3:4e:d1:0f:e2:d0:3e:71: 31:54:6b:b4:62:68:07:bf:3a:10:d6:89:c9:0f:28: 38:3a:60:08:11:11:94:c8:59:81:c9:8f:ae:d2:d0: 4b:93:bb:d6:0d:49:92:a0:24:cd:2c:88:4f:b4:e0: c5:e4:49:c0:6c:e1:94:7b:26:6f:d9:a4:07:d8:16: fd:25:12:aa:d0:c1:79:a7:3d:3c:8f:71:f2:a2:49: 2f:d9:fe:38:e7:18:ec:55:d1:63:ad:fd:8e:e1:7a: 0c:1a:ae:2e:91:c2:a0:df:0e:33:be:f3:53:bb:d4: 2c:24:b5:79:bf:a1:d6:03:75:f8:38:d2:f9:05:ea: 32:34:e3:2f:60:84:2e:55:40:36:d9:d7:6a:9b:95: 62:a6:36:a8:f2:7a:62:d6:3d:68:57:04:ef:8a:70: 28:7f:7a:a0:24:4c:08:cc:1e:c5:17:2b:76:fa:f4: 6d:86:18:90:6d:a9:02:d7:7e:42:3d:1d:07:c6:06: 5b:13:90:84:55:60:b0:44:7a:53:09:83:ca:ba:f4: a3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:07:94:E1:A6:C9:5A:15:55:FA:F8:71:71:EC:44:5A:22:FB:DB:50 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a6:7e:c9:a6:d2:6f:5b:00:8f:70:48:74:2c:37:ae:70:d4: 2e:5a:34:b9:f0:01:12:d2:57:3e:6f:df:fd:9d:aa:76:58:68: dc:2e:bf:8d:37:43:09:bb:fe:fb:cb:31:c7:6e:68:0d:a9:c9: 52:5f:6f:a6:74:cc:c1:53:65:e8:15:c4:f4:af:74:29:72:0c: 2d:2b:dc:04:56:e1:f6:31:a7:bc:ed:73:e9:79:0c:4e:b2:07: fd:d0:37:cd:f9:be:eb:4c:ae:1f:f8:93:81:f3:01:af:75:15: 64:4b:cc:4f:dd:cc:77:12:8f:64:3d:bd:2b:6e:05:d4:9d:03: ed:f1:ed:65:b9:39:e2:df:c3:34:15:23:8a:d3:65:3c:67:38: b1:da:51:4f:5b:67:d5:f3:02:8a:ee:5d:f0:85:b1:e2:7a:c1: 19:35:55:43:09:8b:bd:e1:5d:65:d2:57:1d:94:4e:25:79:17: b2:6f:03:ac:95:78:45:83:ae:6e:6d:49:38:ac:22:65:7a:92: 26:77:23:2f:ac:47:6a:8c:9e:6a:26:6b:a8:b2:77:16:97:95: fb:4c:90:40:43:f4:cb:3a:4b:e8:a3:04:99:73:f9:c3:95:c4: 49:ca:db:e9:a3:dc:35:e5:bf:8a:2b:c8:5e:2d:ed:ce:37:50: 1d:60:b9:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUxMjA1MDIzNzAwWhcNMjUxMjEyMDIzNzAwWjAYMRYwFAYD VQQDEw02OTMyNDU0ZC05YWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsiI6u/J6+kH3t2UXSdeARAYR5yV5QRgzqcoqcplQvul8eTvf5Gacu51vgOt RNET720yo07RD+LQPnExVGu0YmgHvzoQ1onJDyg4OmAIERGUyFmByY+u0tBLk7vW DUmSoCTNLIhPtODF5EnAbOGUeyZv2aQH2Bb9JRKq0MF5pz08j3Hyokkv2f445xjs VdFjrf2O4XoMGq4ukcKg3w4zvvNTu9QsJLV5v6HWA3X4ONL5BeoyNOMvYIQuVUA2 2ddqm5Vipjao8npi1j1oVwTvinAof3qgJEwIzB7FFyt2+vRthhiQbakC135CPR0H xgZbE5CEVWCwRHpTCYPKuvSjeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIHlOGm yVoVVfr4cXHsRFoi+9tQMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPpn7JptJvWwCPcEh0LDeucNQuWjS58AES0lc+b9/9nap2WGjcLr+N N0MJu/77yzHHbmgNqclSX2+mdMzBU2XoFcT0r3QpcgwtK9wEVuH2Mae87XPpeQxO sgf90DfN+b7rTK4f+JOB8wGvdRVkS8xP3cx3Eo9kPb0rbgXUnQPt8e1luTni38M0 FSOK02U8Zzix2lFPW2fV8wKK7l3whbHiesEZNVVDCYu94V1l0lcdlE4leReybwOs lXhFg65ubUk4rCJlepImdyMvrEdqjJ5qJmuosncWl5X7TJBAQ/TLOkvoowSZc/nD lcRJytvpo9w15b+KK8heLe3ON1AdYLkj -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:55 2025 by rpki-client