This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: jFxIWXBxJyuy1SBMTbAmg27o0vO5wa/0xbo6Ha+NYkY= Subject key identifier: 1B:0D:80:B0:48:33:E7:33:84:CF:41:99:9D:75:F2:7C:0E:24:78:9D Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 060F Signing time: Sat 06 Dec 2025 21:48:03 +0000 Manifest this update: Sat 06 Dec 2025 21:48:02 +0000 Manifest next update: Sat 13 Dec 2025 21:48:02 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: 6gZsTTwPpFBru39ZrCjj4QDoQJo7rZkQcKh8kdK3X/Q=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: b5uDJzQg7fsmYh3ElST7vyFH7ynXatbdm3FZHCbVe+4=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Dec 6 21:48:02 2025 GMT Not After : Dec 13 21:48:02 2025 GMT Subject: CN=6934a493-96a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:3d:3d:88:74:ad:ed:4e:df:8b:2f:19:40: 49:bb:bd:37:84:f0:2a:c5:ff:7b:cf:b5:40:53:07: 5f:80:6d:ba:3e:df:2c:6e:15:23:e0:6d:48:a9:e0: e0:40:9f:25:23:66:0a:a0:da:b6:86:22:41:0a:98: a0:66:db:06:c5:0e:35:c4:41:94:e4:48:24:5e:b9: 16:ca:fa:b1:12:f8:95:5c:8d:41:f2:97:26:97:6c: 51:d6:8d:71:3b:b9:81:0e:e0:73:6e:7b:e4:41:ae: 57:e4:d8:c2:c0:48:2d:65:ab:f6:79:58:1a:4e:1f: 8f:ea:fa:b2:11:cd:5b:f0:c5:ff:c7:fe:f0:b9:70: 6b:ed:bc:f2:6b:85:35:5d:ca:87:21:82:bf:1f:28: 9d:6a:84:fe:46:61:e9:b1:fa:45:a4:65:18:83:a4: 88:49:2f:6a:52:55:8f:ed:16:79:43:20:73:37:63: 42:61:59:26:9e:fb:c3:7d:4e:c4:2d:82:16:ee:dd: 35:12:cf:e7:66:e5:d7:c7:4e:39:11:29:e2:0b:0d: e2:dc:8a:bb:f8:a6:22:6e:5d:4b:0e:f8:41:97:11: 27:d1:32:ed:37:80:25:c8:23:66:06:78:20:04:6b: b2:98:ad:45:92:c0:4d:c7:a9:4f:54:67:a5:90:6d: bc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:0D:80:B0:48:33:E7:33:84:CF:41:99:9D:75:F2:7C:0E:24:78:9D X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f3:91:63:01:c3:3c:82:fd:a8:56:71:ac:45:0a:60:02:35: e3:c6:55:4a:08:9e:44:5a:9c:ce:8e:2f:fb:33:dc:98:ae:7d: 5b:dd:37:46:0f:59:0d:62:93:2e:d4:80:28:e3:98:4e:45:ec: 7d:dd:2d:12:08:85:2e:f5:4c:a8:52:63:00:d1:58:9a:c0:75: f6:21:80:26:58:b3:b9:7c:90:d8:46:8b:47:52:c5:c7:68:cb: da:0f:7e:b4:42:18:c4:32:26:71:4b:97:ad:55:47:79:d8:2d: 38:e4:4f:ff:e8:e7:16:5a:7c:96:5c:99:3b:6a:99:08:45:ec: 12:1b:25:7c:cf:6f:70:c6:ac:0f:46:9d:55:db:c0:b8:11:bf: d1:94:57:e0:25:71:6d:a1:d4:21:46:14:a4:e7:17:2a:72:98: 29:1e:22:0f:5e:43:24:9e:6a:84:05:c2:0b:54:0c:28:c5:15: 45:d0:6c:9b:19:f3:bd:f4:6f:46:62:ba:23:31:84:b0:ca:56: f5:a8:82:e3:09:2f:17:66:62:7d:b6:62:f8:84:4e:3d:94:32: 32:04:94:db:bf:22:1f:5a:18:e9:e2:b5:7f:05:52:56:23:ad: 60:3d:af:cd:e8:1f:fc:53:ad:e4:fd:95:6f:b0:c6:6e:ce:d5: aa:57:f5:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUxMjA2MjE0ODAyWhcNMjUxMjEzMjE0ODAyWjAYMRYwFAYD VQQDEw02OTM0YTQ5My05NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOY9PYh0re1O34svGUBJu703hPAqxf97z7VAUwdfgG26Pt8sbhUj4G1IqeDg QJ8lI2YKoNq2hiJBCpigZtsGxQ41xEGU5EgkXrkWyvqxEviVXI1B8pcml2xR1o1x O7mBDuBzbnvkQa5X5NjCwEgtZav2eVgaTh+P6vqyEc1b8MX/x/7wuXBr7bzya4U1 XcqHIYK/HyidaoT+RmHpsfpFpGUYg6SISS9qUlWP7RZ5QyBzN2NCYVkmnvvDfU7E LYIW7t01Es/nZuXXx045ESniCw3i3Iq7+KYibl1LDvhBlxEn0TLtN4AlyCNmBngg BGuymK1FksBNx6lPVGelkG287QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsNgLBI M+czhM9BmZ118nwOJHidMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd85FjAcM8gv2oVnGsRQpgAjXjxlVKCJ5EWpzOji/7M9yYrn1b3TdG D1kNYpMu1IAo45hORex93S0SCIUu9UyoUmMA0ViawHX2IYAmWLO5fJDYRotHUsXH aMvaD360QhjEMiZxS5etVUd52C045E//6OcWWnyWXJk7apkIRewSGyV8z29wxqwP Rp1V28C4Eb/RlFfgJXFtodQhRhSk5xcqcpgpHiIPXkMknmqEBcILVAwoxRVF0Gyb GfO99G9GYrojMYSwylb1qILjCS8XZmJ9tmL4hE49lDIyBJTbvyIfWhjp4rV/BVJW I61gPa/N6B/8U63k/ZVvsMZuztWqV/VS -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:37 2025 by rpki-client