This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: TOD+utLDqHdgOs7/GiPv5R0qcQbdm1D9/Rdoq8CUavs= Subject key identifier: 84:64:9F:6A:20:39:0F:17:63:28:BA:48:07:51:56:F7:02:13:2C:24 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 11E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 11DF Signing time: Sat 06 Dec 2025 16:41:34 +0000 Manifest this update: Sat 06 Dec 2025 16:41:34 +0000 Manifest next update: Sat 13 Dec 2025 16:41:34 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: rRdh81oYJEeDHsjDioZ3uG6y5csFtVlImkkzox7/NKs=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: 5aUeJ2nUgZKlO+WBC4IJNP8ylQ0g53K6edye7fUN2n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4585 (0x11e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Dec 6 16:41:34 2025 GMT Not After : Dec 13 16:41:34 2025 GMT Subject: CN=69345cbe-1446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:b3:10:67:e5:af:e3:6f:07:6e:38:ca:79: 58:50:1e:42:4b:be:07:20:b6:35:5c:82:20:aa:e4: 38:dc:7a:5f:a8:16:ae:43:2a:f6:93:2e:5b:8c:93: 0c:8e:a8:73:19:3a:e4:88:85:df:70:83:2f:e9:b2: b5:14:33:02:44:47:02:71:b8:ad:11:05:62:b1:5c: b3:00:50:b5:5a:30:c0:c4:2d:13:d3:a1:a8:87:59: 4d:6b:83:50:2b:ef:01:3e:64:fe:fd:5d:ee:71:9a: 89:aa:0c:d2:54:c3:94:55:b1:54:13:c7:87:12:c4: 36:a3:3a:cf:22:83:7c:f2:a9:40:31:07:4f:e9:a0: 7b:e8:c8:bd:82:e4:dd:64:24:f7:3b:a0:16:5a:e2: 0d:92:e1:45:d7:ae:11:7a:b7:55:42:83:94:d2:74: b6:77:e5:08:fa:fa:0a:f8:f3:bd:ac:ce:10:05:25: 3c:d5:dc:77:43:80:ef:e1:6e:d4:88:92:76:85:82: 94:cf:7d:dd:cc:23:93:ac:93:45:24:01:62:27:05: 07:d9:08:10:14:0c:c4:27:7f:a6:f3:9c:ac:5a:d2: 89:d3:ae:27:26:0f:12:86:9e:1d:43:42:62:de:9c: 1e:1c:38:17:c6:53:39:da:d8:3f:1f:fe:ec:3b:67: 8d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:64:9F:6A:20:39:0F:17:63:28:BA:48:07:51:56:F7:02:13:2C:24 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:c6:80:aa:2b:19:d8:59:9c:5c:ec:02:2e:77:bb:7e:b2:a5: a8:59:ac:cb:60:39:2e:f0:18:af:96:5f:18:18:68:c6:b1:e2: ce:66:fa:66:20:d2:20:46:61:a6:04:d5:ad:56:b0:c2:c2:46: 29:95:04:c6:36:a3:be:fc:04:77:a7:5a:83:36:aa:1d:79:0e: f6:c9:d8:36:0d:ff:6f:5c:33:e2:97:ac:64:83:b9:d9:ee:c6: f5:0e:06:a7:fa:bb:6c:83:03:c3:55:bf:a0:c2:1e:f1:fe:f8: 7c:b5:ee:ff:cf:c6:48:c9:3b:04:18:83:a0:e5:da:2a:f2:49: cc:96:db:43:52:8d:f4:87:c4:f1:e4:31:db:90:c5:cf:9c:30: a7:79:fb:6d:c0:92:fb:48:cc:b8:22:67:a5:0b:55:e0:93:16: e7:f0:85:7f:e7:aa:27:c5:37:80:26:f4:4e:d2:ae:ce:43:69: 63:43:8a:63:08:0e:d7:93:66:e0:80:1d:79:b6:d0:34:de:f6: 69:c7:33:a2:77:64:5b:04:72:c8:69:f3:78:e2:e5:90:d5:ae: 6d:6b:3a:2f:62:c1:e6:b5:0a:67:77:e9:7f:39:f4:4b:70:2b: b7:67:5d:7f:e5:96:cb:76:2c:42:4a:ce:2f:40:6d:aa:c7:7c: 14:d9:f9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUxMjA2MTY0MTM0WhcNMjUxMjEzMTY0MTM0WjAYMRYwFAYD VQQDEw02OTM0NWNiZS0xNDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zezEGflr+NvB244ynlYUB5CS74HILY1XIIgquQ43HpfqBauQyr2ky5bjJMM jqhzGTrkiIXfcIMv6bK1FDMCREcCcbitEQVisVyzAFC1WjDAxC0T06Goh1lNa4NQ K+8BPmT+/V3ucZqJqgzSVMOUVbFUE8eHEsQ2ozrPIoN88qlAMQdP6aB76Mi9guTd ZCT3O6AWWuINkuFF164RerdVQoOU0nS2d+UI+voK+PO9rM4QBSU81dx3Q4Dv4W7U iJJ2hYKUz33dzCOTrJNFJAFiJwUH2QgQFAzEJ3+m85ysWtKJ064nJg8Shp4dQ0Ji 3pweHDgXxlM52tg/H/7sO2eNJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRkn2og OQ8XYyi6SAdRVvcCEywkMB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpxoCqKxnYWZxc7AIud7t+sqWoWazLYDku8Bivll8YGGjGseLOZvpm INIgRmGmBNWtVrDCwkYplQTGNqO+/AR3p1qDNqodeQ72ydg2Df9vXDPil6xkg7nZ 7sb1Dgan+rtsgwPDVb+gwh7x/vh8te7/z8ZIyTsEGIOg5doq8knMlttDUo30h8Tx 5DHbkMXPnDCnefttwJL7SMy4ImelC1Xgkxbn8IV/56onxTeAJvRO0q7OQ2ljQ4pj CA7Xk2bggB15ttA03vZpxzOid2RbBHLIafN44uWQ1a5tazovYsHmtQpnd+l/OfRL cCu3Z11/5ZbLdixCSs4vQG2qx3wU2flz -----END CERTIFICATE-----Generated at Sun Dec 7 05:29:22 2025 by rpki-client