This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: 0InehkXeHVF2hLF6VhaUfFtKqsFvRgZ8q5cZs5YyT/Y= Subject key identifier: 01:81:9F:A2:27:99:5A:57:56:E4:EC:86:07:27:3C:08:21:94:DE:96 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 037D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0379 Signing time: Sun 21 Dec 2025 00:06:36 +0000 Manifest this update: Sun 21 Dec 2025 00:06:35 +0000 Manifest next update: Sun 28 Dec 2025 00:06:35 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: x0FGtbVqOMmvrbj7lpWHD2yQ5kaHHr1lXcbBdlcsaZ0=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Dec 21 00:06:35 2025 GMT Not After : Dec 28 00:06:35 2025 GMT Subject: CN=69473a0c-afb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:78:d8:ca:13:54:98:ed:c5:8d:80:9d:28:7c: 27:a4:ff:38:09:a0:95:8f:12:90:1f:bb:50:b2:9b: 42:3f:76:eb:42:3c:19:55:79:94:14:53:2e:72:9e: 5c:f1:04:4e:6d:85:32:3a:b2:4f:06:65:46:ce:14: 08:59:77:91:3f:8a:ba:3d:95:c3:75:6d:33:2b:10: c4:f9:fd:e1:25:ca:41:61:74:e5:eb:9a:a1:ba:7b: c2:b1:e5:aa:b2:d4:43:71:d7:e3:ef:d8:76:e2:30: 98:01:96:84:5b:ba:7f:b1:1d:45:ec:11:bd:87:6f: 88:a1:5c:ca:7e:6f:21:23:02:d9:7e:fa:7f:9f:3c: 9f:7e:1d:3d:0a:dc:72:d0:7b:99:3b:5c:c8:4f:e6: 9f:01:10:27:39:a4:3d:15:bc:c1:cc:49:2c:b9:aa: 1a:49:e8:e0:38:1d:8b:34:c6:cf:54:1f:00:2f:af: 8f:91:b8:3a:5c:91:54:8a:6a:17:14:1e:fb:e7:ef: a3:81:9e:22:37:7c:24:65:85:80:1c:84:59:8e:94: 85:c0:a1:15:57:90:a1:c4:1e:a2:79:52:82:63:81: 59:51:77:4f:37:ec:59:e2:a2:fc:e6:55:b2:45:39: bf:44:6f:33:57:87:f2:3b:76:56:13:61:e8:dd:d8: 7c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:81:9F:A2:27:99:5A:57:56:E4:EC:86:07:27:3C:08:21:94:DE:96 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ce:74:1e:e3:40:97:a2:2e:02:b5:06:e8:54:4a:34:6d:d3: 59:86:5c:7d:3e:f9:81:e2:9a:08:89:b8:7a:ff:25:03:e1:04: 82:84:a3:24:d7:0d:da:38:e4:d2:6c:32:d6:6b:61:5d:5e:10: f3:65:51:b1:0b:a8:95:e8:d1:c2:97:08:33:96:76:d9:ba:e4: bc:7e:2e:7a:b6:90:e3:3a:d6:93:5b:53:24:80:d6:82:4e:ea: 66:b1:13:ee:e1:2d:ca:20:33:85:06:af:86:13:0e:1b:47:81: 5e:65:e6:1e:d5:90:ea:cd:9f:aa:6b:b1:18:99:50:af:05:63: 3e:6f:bf:e8:f2:48:5d:aa:a2:d5:18:f2:bc:73:05:bb:a3:45: 5c:34:de:e6:65:21:da:24:0f:1c:0f:d1:cd:60:ca:4b:f5:5a: 5e:5e:20:22:be:ff:96:7d:db:7d:7b:de:7a:bf:37:15:5b:5d: eb:91:b9:dd:f0:63:3e:44:62:e2:82:11:27:34:c4:65:a6:15: 10:f6:aa:7e:2d:32:14:11:4b:c1:a1:4d:69:5f:df:b5:a4:0c: 9b:bc:98:32:44:5c:5d:6a:a3:9a:3f:d8:2c:5a:16:84:14:f0: 3e:77:92:fd:d1:1f:f4:5b:2c:7d:88:14:2c:f2:e8:7a:7b:e4: 70:d8:b4:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUxMjIxMDAwNjM1WhcNMjUxMjI4MDAwNjM1WjAYMRYwFAYD VQQDDA02OTQ3M2EwYy1hZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXjYyhNUmO3FjYCdKHwnpP84CaCVjxKQH7tQsptCP3brQjwZVXmUFFMucp5c 8QRObYUyOrJPBmVGzhQIWXeRP4q6PZXDdW0zKxDE+f3hJcpBYXTl65qhunvCseWq stRDcdfj79h24jCYAZaEW7p/sR1F7BG9h2+IoVzKfm8hIwLZfvp/nzyffh09Ctxy 0HuZO1zIT+afARAnOaQ9FbzBzEksuaoaSejgOB2LNMbPVB8AL6+Pkbg6XJFUimoX FB775++jgZ4iN3wkZYWAHIRZjpSFwKEVV5ChxB6ieVKCY4FZUXdPN+xZ4qL85lWy RTm/RG8zV4fyO3ZWE2Ho3dh8QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGBn6In mVpXVuTshgcnPAghlN6WMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAznQe40CXoi4CtQboVEo0bdNZhlx9PvmB4poIibh6/yUD4QSChKMk 1w3aOOTSbDLWa2FdXhDzZVGxC6iV6NHClwgzlnbZuuS8fi56tpDjOtaTW1MkgNaC TupmsRPu4S3KIDOFBq+GEw4bR4FeZeYe1ZDqzZ+qa7EYmVCvBWM+b7/o8khdqqLV GPK8cwW7o0VcNN7mZSHaJA8cD9HNYMpL9VpeXiAivv+Wfdt9e956vzcVW13rkbnd 8GM+RGLighEnNMRlphUQ9qp+LTIUEUvBoU1pX9+1pAybvJgyRFxdaqOaP9gsWhaE FPA+d5L90R/0Wyx9iBQs8uh6e+Rw2LRp -----END CERTIFICATE-----Generated at Sun Dec 21 21:49:26 2025 by rpki-client