This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: CoS3UhuXZwUV0ZWdNE00iOBkyO1t9e19UShy/tsv3Ko= Subject key identifier: E2:C5:79:BB:77:5F:4F:43:C2:90:97:86:8F:52:28:26:4E:FC:FC:1A Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0371 Signing time: Thu 04 Dec 2025 23:18:38 +0000 Manifest this update: Thu 04 Dec 2025 23:18:38 +0000 Manifest next update: Thu 11 Dec 2025 23:18:38 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: gfZlaqPGuaHP2MSuuiKGiVcmUjv3hl1jwtWb3/SIfUc=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Dec 4 23:18:38 2025 GMT Not After : Dec 11 23:18:38 2025 GMT Subject: CN=693216ce-9ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:28:04:30:4b:e0:fd:d6:fd:b7:63:af:cb: 2a:cd:f5:a7:c0:32:53:52:09:43:e9:ad:71:22:5c: 3a:a8:fc:b2:9f:fa:28:5c:3c:f6:d3:82:09:a0:3b: 9e:55:5a:58:11:16:05:64:24:a7:a9:70:7a:e7:63: ac:94:9f:2c:86:6e:51:88:c2:28:11:73:6c:09:05: 28:a3:8c:4c:d2:b9:c2:27:94:c3:93:14:69:ba:00: 4b:71:c5:d6:b6:d0:e8:aa:07:de:f9:6b:a1:56:ca: 5f:73:86:c9:46:2c:19:ca:11:e7:fa:d7:45:bd:b9: bb:c4:2e:c4:63:a4:74:d3:0f:da:08:18:87:be:0c: 74:07:25:5a:0e:76:6c:5e:2b:5a:f0:c1:65:bc:a5: 9c:85:de:94:bb:3f:39:73:c4:c3:d0:40:36:1b:a1: 19:83:50:cf:6c:0e:7c:bc:6e:86:8a:d0:2f:2a:bf: 95:16:a7:f6:59:8a:cf:25:63:fc:7d:bf:79:a3:c1: 69:e7:62:ef:af:47:7e:a2:a9:32:75:0b:5a:25:33: 05:9d:68:66:d7:2f:57:fe:4c:ea:b1:ab:ce:71:cf: 03:be:6f:6b:17:50:aa:88:b3:c4:41:cf:04:b5:dd: 21:42:7d:66:82:b5:63:57:27:ce:fb:5c:2b:e5:eb: df:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C5:79:BB:77:5F:4F:43:C2:90:97:86:8F:52:28:26:4E:FC:FC:1A X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:83:ba:e6:a2:d6:b8:6c:29:67:2d:c7:6b:c4:fd:80:06:83: b2:48:9b:a2:68:2d:8d:58:7a:64:74:6b:50:1c:f7:9f:da:4a: 90:f9:9e:42:c9:67:62:23:f5:ff:9c:ca:4e:7f:04:7d:70:a7: b5:ab:69:14:86:6d:51:88:5e:0d:f3:7b:88:2b:7a:c7:5d:39: fd:bc:41:48:cb:dc:f3:14:c5:1c:fe:88:cb:3b:37:c8:9d:34: cd:a9:1f:14:ff:2e:b0:42:f2:45:37:a6:f5:0b:05:b5:11:72: 2b:96:7d:f6:9d:4c:ab:77:e3:75:78:0c:d7:21:8e:33:7b:eb: 94:0f:49:29:00:2b:da:aa:d0:75:33:a3:e3:6e:c9:72:19:ed: 90:0b:b3:e3:c0:f0:1d:d9:22:d5:49:55:d7:71:b7:82:49:67: b2:0a:91:b3:fe:07:22:ed:47:e2:1a:1e:12:b1:6d:a4:44:9c: 4b:81:ba:a3:5a:0a:27:a7:30:14:20:d9:61:f6:85:cc:4e:dc: 8e:1e:f7:f8:eb:e4:9d:2c:72:ee:6a:40:e9:dc:fc:67:c8:72: 2f:60:34:c8:5b:e4:7d:64:8d:c3:71:a4:a5:83:6b:a1:47:5f: a2:ed:73:fd:21:7b:4b:2d:d4:8c:1d:7f:18:76:01:00:17:44: d5:80:09:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUxMjA0MjMxODM4WhcNMjUxMjExMjMxODM4WjAYMRYwFAYD VQQDEw02OTMyMTZjZS05ZmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhQoBDBL4P3W/bdjr8sqzfWnwDJTUglD6a1xIlw6qPyyn/ooXDz204IJoDue VVpYERYFZCSnqXB652OslJ8shm5RiMIoEXNsCQUoo4xM0rnCJ5TDkxRpugBLccXW ttDoqgfe+WuhVspfc4bJRiwZyhHn+tdFvbm7xC7EY6R00w/aCBiHvgx0ByVaDnZs Xita8MFlvKWchd6Uuz85c8TD0EA2G6EZg1DPbA58vG6GitAvKr+VFqf2WYrPJWP8 fb95o8Fp52Lvr0d+oqkydQtaJTMFnWhm1y9X/kzqsavOcc8Dvm9rF1CqiLPEQc8E td0hQn1mgrVjVyfO+1wr5evfdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLFebt3 X09DwpCXho9SKCZO/PwaMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3g7rmota4bClnLcdrxP2ABoOySJuiaC2NWHpkdGtQHPef2kqQ+Z5C yWdiI/X/nMpOfwR9cKe1q2kUhm1RiF4N83uIK3rHXTn9vEFIy9zzFMUc/ojLOzfI nTTNqR8U/y6wQvJFN6b1CwW1EXIrln32nUyrd+N1eAzXIY4ze+uUD0kpACvaqtB1 M6PjbslyGe2QC7PjwPAd2SLVSVXXcbeCSWeyCpGz/gci7UfiGh4SsW2kRJxLgbqj WgonpzAUINlh9oXMTtyOHvf46+SdLHLuakDp3PxnyHIvYDTIW+R9ZI3DcaSlg2uh R1+i7XP9IXtLLdSMHX8YdgEAF0TVgAlI -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:56 2025 by rpki-client