This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: okQnJC2dDazrEOtNjcndLcD235xMPZBXSRvP8Yjrtao= Subject key identifier: 0C:F4:E6:2E:A6:2D:B7:3E:32:D7:35:3D:5A:A4:EE:69:05:C2:2D:FB Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 0A02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09FB Signing time: Thu 04 Dec 2025 19:07:14 +0000 Manifest this update: Thu 04 Dec 2025 19:07:14 +0000 Manifest next update: Thu 11 Dec 2025 19:07:14 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: qr+VRzEBtqTtgUhmvPQboHUHQl20CF2xM0DC2uiKD/4=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: 2eavA5MnM8j9MsEorxYmL8jVbA9inLFPJYXoSo6cKDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2562 (0xa02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Dec 4 19:07:14 2025 GMT Not After : Dec 11 19:07:14 2025 GMT Subject: CN=6931dbe2-1068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:f4:14:d3:12:87:74:e5:46:8c:a4:c7:f7: 42:9c:14:2f:3a:fc:ba:c0:3d:29:18:30:fc:58:75: 75:31:8c:09:d0:df:29:ed:ac:06:1f:07:aa:d3:35: c1:19:d9:25:5d:22:1a:cc:1a:22:cc:b7:28:24:1a: ea:55:33:3c:45:4b:ea:b0:df:0e:4e:db:39:79:ba: de:ec:9f:a6:af:bc:12:d3:57:87:d0:18:a2:e1:21: 42:7b:3e:f1:cb:3c:bb:b1:e1:e9:15:29:5e:9c:b8: f8:a7:fc:74:a7:d3:07:af:7b:83:3e:7b:69:17:66: 90:3d:79:65:ad:03:bc:e8:f9:68:a0:41:cd:d7:6d: fd:fa:48:6e:b7:df:05:a8:9b:c1:d0:de:5c:3c:8e: ac:a6:29:9f:d4:e2:57:4a:0f:d9:a2:e0:a1:71:a2: 35:b6:4f:80:17:91:c7:dc:d1:44:ed:ff:13:11:ad: e8:a0:9e:fc:4e:77:9c:3a:22:5c:4e:5f:dc:86:0c: cd:68:69:46:e5:cc:af:a9:44:70:cc:aa:54:8f:eb: 71:82:0e:1c:6b:4d:f6:18:62:19:fd:2c:34:2a:b7: cc:7a:e9:9e:bb:ad:e4:db:6e:2f:a6:7c:b0:1a:b4: 82:1e:96:99:b5:76:4d:9a:25:84:b1:7b:a8:10:8a: 69:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F4:E6:2E:A6:2D:B7:3E:32:D7:35:3D:5A:A4:EE:69:05:C2:2D:FB X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b4:75:f9:b9:cc:d2:13:63:ef:fd:45:00:8a:32:3d:7c:12: 4f:93:21:2b:ee:19:6b:a8:e1:15:10:4c:75:83:3b:b9:32:08: 6a:e2:91:c6:9c:f3:0a:eb:6d:18:28:dc:a7:b4:5d:d0:62:34: 20:b3:fb:3e:77:19:8a:7e:15:0c:68:c2:90:9b:56:84:7c:89: 65:ca:d3:02:2d:12:49:82:0a:a3:d0:5d:0b:d5:40:07:d0:09: e3:a8:cc:81:c7:90:0d:7e:f2:cf:3a:76:02:67:ee:5d:86:69: 74:72:07:ad:55:ae:7a:a0:2c:ed:6f:4c:54:19:e7:f1:08:4f: fb:c2:0c:08:44:ca:de:20:87:ba:2b:8a:6b:4a:b3:7b:8c:da: 46:32:07:ab:ed:b5:da:3f:a7:6a:60:90:ec:52:7e:4a:52:19: 66:79:35:67:87:1d:d5:07:28:99:ed:4f:71:4c:6a:9b:e9:0b: 99:c1:3a:69:90:28:f8:eb:59:63:f9:25:6e:66:cb:b6:00:67: 85:32:e8:b9:74:97:3b:7e:1b:70:0a:81:8c:ac:a8:f1:2f:60: 40:50:84:13:4c:35:50:2d:85:bc:b1:87:c9:8f:f2:01:d1:a4: f6:69:c8:de:7a:80:71:7c:d7:55:f8:0f:bb:f2:0e:2a:ff:99: 59:4c:fc:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUxMjA0MTkwNzE0WhcNMjUxMjExMTkwNzE0WjAYMRYwFAYD VQQDEw02OTMxZGJlMi0xMDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ/0FNMSh3TlRoykx/dCnBQvOvy6wD0pGDD8WHV1MYwJ0N8p7awGHweq0zXB GdklXSIazBoizLcoJBrqVTM8RUvqsN8OTts5ebre7J+mr7wS01eH0Bii4SFCez7x yzy7seHpFSlenLj4p/x0p9MHr3uDPntpF2aQPXllrQO86PlooEHN1239+khut98F qJvB0N5cPI6spimf1OJXSg/ZouChcaI1tk+AF5HH3NFE7f8TEa3ooJ78TnecOiJc Tl/chgzNaGlG5cyvqURwzKpUj+txgg4ca032GGIZ/Sw0KrfMeumeu63k224vpnyw GrSCHpaZtXZNmiWEsXuoEIppLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz05i6m Lbc+Mtc1PVqk7mkFwi37MB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNtHX5uczSE2Pv/UUAijI9fBJPkyEr7hlrqOEVEEx1gzu5Mghq4pHG nPMK620YKNyntF3QYjQgs/s+dxmKfhUMaMKQm1aEfIllytMCLRJJggqj0F0L1UAH 0AnjqMyBx5ANfvLPOnYCZ+5dhml0cgetVa56oCztb0xUGefxCE/7wgwIRMreIIe6 K4prSrN7jNpGMger7bXaP6dqYJDsUn5KUhlmeTVnhx3VByiZ7U9xTGqb6QuZwTpp kCj461lj+SVuZsu2AGeFMui5dJc7fhtwCoGMrKjxL2BAUIQTTDVQLYW8sYfJj/IB 0aT2acjeeoBxfNdV+A+78g4q/5lZTPyY -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:53 2025 by rpki-client