This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: hUfktuAtg4s53lDMAxNetoREa+uscdP/rdKZ+2ms6lA= Subject key identifier: 13:16:4F:7C:98:4B:2B:E5:55:4F:B3:A1:08:75:48:67:68:1B:00:C4 Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 0134 Signing time: Fri 05 Dec 2025 02:37:47 +0000 Manifest this update: Fri 05 Dec 2025 02:37:46 +0000 Manifest next update: Fri 12 Dec 2025 02:37:46 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: q8aPXmsZ0dWNXilkMUa3C6EiW7/iCwHYf/G3mt87EtM=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: sJkzaLgb03fiuAa4ygWCgpOT9Sr+eQjDRPodn39TUHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Dec 5 02:37:46 2025 GMT Not After : Dec 12 02:37:46 2025 GMT Subject: CN=6932457a-fb64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e1:bf:66:22:b6:dd:4e:1b:c8:08:52:b7:fb: bb:76:d7:75:75:e7:ed:d4:b6:c5:59:fd:ea:46:43: c6:79:54:55:05:61:e6:2d:1e:f0:d7:76:26:46:f2: 2b:48:5f:c3:35:4c:a5:ef:d7:3e:36:e7:7d:cb:b9: ef:c3:a2:cd:db:05:a8:9c:e0:96:86:84:b7:5e:53: 53:94:1b:b5:d9:bf:3e:61:35:10:4d:1f:61:59:7f: 86:55:62:fc:7e:fb:de:11:24:a6:27:00:91:74:3d: 48:71:82:49:5c:c9:32:e9:86:eb:44:5e:de:28:d4: 70:a1:9e:74:36:44:91:b7:1a:be:90:3c:d2:be:39: f3:e8:e7:c7:00:52:85:77:ef:ca:8f:1d:10:72:50: e5:63:75:3f:87:1a:21:5e:b4:58:0b:4b:43:02:e3: d5:f2:51:70:94:69:66:ef:61:b6:64:2e:d5:91:df: 74:54:0f:f3:2f:d4:06:15:ff:eb:f5:b6:b9:1e:1c: 4a:cf:10:97:78:8a:10:7c:bd:e8:06:84:3a:03:13: f4:1b:41:79:a3:01:0d:d5:7c:3d:5c:bd:91:e6:92: b6:81:3b:47:d5:58:c2:7e:fe:e2:d6:20:18:3f:e8: a0:2e:57:43:46:dd:73:bb:8c:af:79:bb:01:d7:f6: 56:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:16:4F:7C:98:4B:2B:E5:55:4F:B3:A1:08:75:48:67:68:1B:00:C4 X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:9b:fb:31:a1:1b:41:51:33:c0:c3:59:94:a6:7f:cb:94:8a: f4:68:6b:7c:ca:91:fb:0d:30:b1:0d:c5:92:12:1f:95:35:bb: b1:26:d0:fd:85:d3:4d:49:d8:62:d6:49:8d:87:d6:6a:fc:c2: b3:7b:74:ed:1d:14:72:a0:cb:dd:84:60:4e:ff:d5:82:e4:a4: b6:ef:a9:8e:30:bf:f7:48:d7:17:e2:a8:0e:98:2c:29:36:39: 61:f1:1f:36:1b:0c:2d:23:fe:4c:81:4c:60:e7:7c:60:20:34: a4:9c:24:39:9d:ca:31:ca:a3:b6:39:3b:8a:72:25:57:2f:ca: 09:a8:b0:31:3e:d8:93:28:bd:79:fc:c7:fc:b5:68:30:63:cc: 32:9a:09:c9:5a:c4:65:b2:a1:c9:9e:45:f8:f9:e3:f0:13:28: 7f:0d:7d:83:44:ea:db:32:84:05:eb:c4:28:7f:32:e5:53:a1: f6:2e:11:a9:bc:e7:d0:64:12:ac:b2:1a:29:ea:c1:36:9a:a4: 69:8b:c7:8c:e4:e6:fe:a1:15:1f:a4:f9:29:f5:01:bd:e4:b2: 38:74:cd:20:42:1c:a0:e2:40:dc:0d:9e:0c:fb:d6:95:28:4c: 20:aa:bc:77:55:74:fc:3c:c5:89:81:f2:d5:f5:a3:56:37:f3: fd:02:df:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUxMjA1MDIzNzQ2WhcNMjUxMjEyMDIzNzQ2WjAYMRYwFAYD VQQDEw02OTMyNDU3YS1mYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuG/ZiK23U4byAhSt/u7dtd1deft1LbFWf3qRkPGeVRVBWHmLR7w13YmRvIr SF/DNUyl79c+Nud9y7nvw6LN2wWonOCWhoS3XlNTlBu12b8+YTUQTR9hWX+GVWL8 fvveESSmJwCRdD1IcYJJXMky6YbrRF7eKNRwoZ50NkSRtxq+kDzSvjnz6OfHAFKF d+/Kjx0QclDlY3U/hxohXrRYC0tDAuPV8lFwlGlm72G2ZC7Vkd90VA/zL9QGFf/r 9ba5HhxKzxCXeIoQfL3oBoQ6AxP0G0F5owEN1Xw9XL2R5pK2gTtH1VjCfv7i1iAY P+igLldDRt1zu4yvebsB1/ZWWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMWT3yY SyvlVU+zoQh1SGdoGwDEMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxm/sxoRtBUTPAw1mUpn/LlIr0aGt8ypH7DTCxDcWSEh+VNbuxJtD9 hdNNSdhi1kmNh9Zq/MKze3TtHRRyoMvdhGBO/9WC5KS276mOML/3SNcX4qgOmCwp Njlh8R82GwwtI/5MgUxg53xgIDSknCQ5ncoxyqO2OTuKciVXL8oJqLAxPtiTKL15 /Mf8tWgwY8wymgnJWsRlsqHJnkX4+ePwEyh/DX2DROrbMoQF68QofzLlU6H2LhGp vOfQZBKsshop6sE2mqRpi8eM5Ob+oRUfpPkp9QG95LI4dM0gQhyg4kDcDZ4M+9aV KEwgqrx3VXT8PMWJgfLV9aNWN/P9At/T -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:00 2025 by rpki-client