This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: XpkKiKN7jwwq8IN8EsxTgnkCLIcediGpp3Lm0wkmODw= Subject key identifier: E4:D3:05:4C:B2:38:11:21:68:6D:EA:7C:EF:66:D4:0F:FA:F1:BD:51 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01EB Signing time: Fri 05 Dec 2025 00:53:35 +0000 Manifest this update: Fri 05 Dec 2025 00:53:34 +0000 Manifest next update: Fri 12 Dec 2025 00:53:34 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: TxYh+qDZV5VZg199DYAe+S7GowWJT5RbIM+dQjSpxIg=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: 1sa+ik65HDpM/qIP+SkfWWXEJCGddK6P6JEdVTcmfes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Dec 5 00:53:34 2025 GMT Not After : Dec 12 00:53:34 2025 GMT Subject: CN=69322d0e-5062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:0b:08:5f:dd:09:7f:d6:a4:b7:ed:ec:2c: 4c:54:69:da:b4:8c:81:f1:59:dd:02:88:23:26:16: 9b:d0:e9:0e:37:4a:bc:fe:71:c3:4c:0d:55:55:c5: 28:47:f7:d4:aa:d0:72:8d:92:61:43:0a:b9:d4:45: ef:0b:f1:7f:7e:d5:7d:5c:0c:81:01:7a:8e:f5:53: 0f:1d:cd:0b:ae:2f:03:88:eb:56:70:44:35:b4:af: 0b:2d:ae:5e:d9:55:4a:bd:f4:b0:97:57:d1:c4:90: 62:eb:05:31:9a:77:5c:10:df:e2:67:46:62:24:44: 0d:a1:83:36:cf:1a:db:2f:18:bc:76:7c:fd:6e:e2: 5b:d6:f0:ad:4c:c1:54:e5:20:0a:04:1e:5f:72:e2: 5f:96:1a:a8:45:1e:92:a2:e7:4c:88:71:e8:8a:22: 04:8d:cc:93:b6:16:31:88:a9:1b:cd:26:58:fe:bc: 0d:4b:65:17:53:95:47:98:c6:fe:2f:b0:74:d7:67: 7d:81:4b:1f:a0:b6:5a:05:9a:d0:5e:78:07:55:9b: 96:a7:08:a7:04:f1:d3:64:fe:9e:2e:68:14:a4:7b: c1:bb:0d:a5:c7:ba:b2:61:db:20:e8:9f:48:d1:d7: 1f:72:cd:62:fb:c2:7d:86:6b:bd:31:ea:d4:34:b6: 7b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D3:05:4C:B2:38:11:21:68:6D:EA:7C:EF:66:D4:0F:FA:F1:BD:51 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:80:aa:de:70:1a:e6:b6:82:4b:fe:45:8e:e7:74:59:c7:9d: 83:9b:42:5b:10:7b:fc:23:a7:be:f8:a8:1d:9b:af:23:62:7f: 45:32:1f:14:c5:35:80:1e:a0:0b:d9:c2:12:64:9a:21:ac:e9: cf:89:a3:9b:38:ca:db:00:ed:81:6c:92:f1:93:ca:3f:45:cc: 7e:d2:6b:64:17:0c:1b:78:1e:a9:09:39:52:85:e3:69:5d:d3: 9d:25:c8:16:3b:fc:89:9c:25:df:ec:9a:6f:33:52:4e:34:6e: 67:b5:12:c8:7c:3c:91:0f:6a:fe:b4:0e:f4:c5:d3:a4:60:32: a7:3c:62:63:1c:55:ac:b3:a3:ec:92:fb:c0:31:85:f0:61:d6: 61:8f:49:13:ca:ba:04:2b:78:ae:03:54:ac:30:52:7b:1d:33: e9:ab:62:37:5e:1c:08:e3:7c:9f:4a:76:85:33:75:6e:60:d4: d8:10:37:08:49:5c:8f:f1:1a:17:c3:c0:9a:60:25:cb:ef:47: f5:93:ca:47:ae:55:4e:c5:1d:79:6a:f7:95:98:0c:3a:64:bc: 01:08:17:c4:0d:c3:3f:c6:39:aa:ef:98:27:d0:bc:7f:84:68: 28:10:0c:00:47:68:5a:9d:35:d3:5c:b7:0c:3d:8b:31:6a:21: 82:c8:6c:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUxMjA1MDA1MzM0WhcNMjUxMjEyMDA1MzM0WjAYMRYwFAYD VQQDEw02OTMyMmQwZS01MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9oLCF/dCX/WpLft7CxMVGnatIyB8VndAogjJhab0OkON0q8/nHDTA1VVcUo R/fUqtByjZJhQwq51EXvC/F/ftV9XAyBAXqO9VMPHc0Lri8DiOtWcEQ1tK8LLa5e 2VVKvfSwl1fRxJBi6wUxmndcEN/iZ0ZiJEQNoYM2zxrbLxi8dnz9buJb1vCtTMFU 5SAKBB5fcuJflhqoRR6SoudMiHHoiiIEjcyTthYxiKkbzSZY/rwNS2UXU5VHmMb+ L7B012d9gUsfoLZaBZrQXngHVZuWpwinBPHTZP6eLmgUpHvBuw2lx7qyYdsg6J9I 0dcfcs1i+8J9hmu9MerUNLZ71wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTTBUyy OBEhaG3qfO9m1A/68b1RMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtgKrecBrmtoJL/kWO53RZx52Dm0JbEHv8I6e++Kgdm68jYn9FMh8U xTWAHqAL2cISZJohrOnPiaObOMrbAO2BbJLxk8o/Rcx+0mtkFwwbeB6pCTlSheNp XdOdJcgWO/yJnCXf7JpvM1JONG5ntRLIfDyRD2r+tA70xdOkYDKnPGJjHFWss6Ps kvvAMYXwYdZhj0kTyroEK3iuA1SsMFJ7HTPpq2I3XhwI43yfSnaFM3VuYNTYEDcI SVyP8RoXw8CaYCXL70f1k8pHrlVOxR15aveVmAw6ZLwBCBfEDcM/xjmq75gn0Lx/ hGgoEAwAR2hanTXTXLcMPYsxaiGCyGxV -----END CERTIFICATE-----Generated at Sat Dec 6 17:29:41 2025 by rpki-client