This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft File: ymSxcxGVIJPNTWDarxe2rKD3pRY.mft (raw, json) Hash identifier: WYK8jFnEFrZuUHgouvw6uFQx0Mr+287UqNnY3bbzlkQ= Subject key identifier: 44:F4:D7:5A:9C:5C:C1:02:D9:A7:CD:54:7E:46:2A:CF:AB:95:C0:72 Authority key identifier: CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 Certificate issuer: /CN=A9112B24/serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft Manifest number: FD Signing time: Wed 17 Dec 2025 04:42:06 +0000 Manifest this update: Wed 17 Dec 2025 04:42:05 +0000 Manifest next update: Wed 24 Dec 2025 04:42:05 +0000 Files and hashes: 1: ymSxcxGVIJPNTWDarxe2rKD3pRY.crl (hash: iOSGIUXRY0aOgcOWg2LnyK1OwnqEAqk+vZVOd/KXTog=) 2: 2F5670EAABF411F0A51AED16C4F9AE02.roa (hash: JRoDal5bVz7qmsDJQA+Q/hdAU+W6lHUDGMrJuCQ18nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 04:42:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112B24, serialNumber=CA64B17311952093CD4D60DAAF17B6ACA0F7A516 Validity Not Before: Dec 17 04:42:05 2025 GMT Not After : Dec 24 04:42:05 2025 GMT Subject: CN=6942349d-ddaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fb:e4:14:cb:a1:d0:33:90:ad:4b:83:3b:d2: 8a:92:ca:5f:d8:a7:cc:a9:84:4e:01:27:cf:39:43: 0e:44:05:21:93:97:b1:19:c2:b5:e5:cb:6d:91:87: 92:75:2f:a2:cc:98:fd:63:0c:6b:87:d0:1c:1a:40: d7:91:3c:35:63:74:df:b7:bd:89:ed:6f:1e:96:34: e0:5e:66:52:16:c4:f4:d2:a6:fc:3d:f4:6e:2f:13: 27:c8:75:d0:44:c6:6e:79:3b:ff:c1:24:49:66:49: ce:0a:95:99:06:00:ac:fd:1e:8c:12:69:43:b2:65: bb:9d:49:f8:a9:17:2a:cd:97:04:2b:1c:ed:1c:39: 6c:05:e1:2c:69:27:80:8d:b0:a5:8e:1d:a4:50:11: 70:f0:3c:4c:59:94:a5:20:1f:7c:5a:b3:2e:17:5b: 71:f6:29:ec:c6:ea:c6:75:fd:7b:f2:85:55:56:63: 68:d0:ca:b0:03:73:6b:5a:89:aa:aa:ef:f6:c4:eb: f2:76:f1:03:85:65:8d:2d:ab:0b:43:92:37:6f:8a: 46:6e:b0:df:25:64:4d:90:40:44:4f:a7:a3:00:ea: e3:81:a9:30:87:af:82:9f:42:6a:5a:19:89:70:83: 81:0d:51:fc:16:35:d9:e5:b6:f6:c0:b8:ae:69:24: 08:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F4:D7:5A:9C:5C:C1:02:D9:A7:CD:54:7E:46:2A:CF:AB:95:C0:72 X509v3 Authority Key Identifier: keyid:CA:64:B1:73:11:95:20:93:CD:4D:60:DA:AF:17:B6:AC:A0:F7:A5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymSxcxGVIJPNTWDarxe2rKD3pRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112B24/8A16FF725BA011EF9F2F2361C4F9AE02/ymSxcxGVIJPNTWDarxe2rKD3pRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:41:7a:3a:d8:96:db:01:fd:55:b4:2b:85:44:9e:99:16:8f: 71:1b:a5:e1:aa:4f:94:36:78:18:32:a7:e3:5b:0b:b9:a1:87: 99:49:e2:0c:00:e6:87:d9:96:ca:2a:a7:70:6a:a1:e3:9e:39: b0:c8:2a:a4:b2:b7:dd:21:c2:e5:eb:ca:77:d9:bc:66:f0:d4: 22:a9:f0:c2:07:ff:bc:7c:e0:5d:8b:82:9a:66:c7:29:54:29: 5e:b4:3a:50:5c:43:0d:24:c7:48:68:aa:4e:45:6a:0e:60:38: 7f:e1:fd:bc:25:9c:41:16:22:4f:d1:4d:84:e6:cc:76:17:66: 0c:b3:84:de:f4:18:88:53:5a:8a:66:7c:46:11:33:7c:62:5c: 0d:50:ae:a9:ae:4a:00:dc:5c:31:0b:47:8c:6a:34:bc:37:f3: 90:44:70:63:0a:1f:07:77:c1:2d:9a:bf:2f:08:4c:9f:de:72: 72:6a:82:61:d3:06:c7:ac:15:4f:bd:c4:c0:01:e5:85:7f:77: 47:8d:30:fc:e5:5f:06:55:e3:08:97:e9:fe:11:95:60:ae:41: 98:c4:30:1f:a9:49:ad:02:45:53:9e:e5:75:14:d4:34:ae:9e: 3e:fc:76:5a:59:18:dc:0e:4d:74:aa:fc:41:47:f9:4d:09:3a: e2:bc:fe:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCMjQxMTAvBgNVBAUTKENBNjRCMTczMTE5NTIwOTNDRDRENjBEQUFGMTdCNkFD QTBGN0E1MTYwHhcNMjUxMjE3MDQ0MjA1WhcNMjUxMjI0MDQ0MjA1WjAYMRYwFAYD VQQDDA02OTQyMzQ5ZC1kZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovvkFMuh0DOQrUuDO9KKkspf2KfMqYROASfPOUMORAUhk5exGcK15cttkYeS dS+izJj9Ywxrh9AcGkDXkTw1Y3Tft72J7W8eljTgXmZSFsT00qb8PfRuLxMnyHXQ RMZueTv/wSRJZknOCpWZBgCs/R6MEmlDsmW7nUn4qRcqzZcEKxztHDlsBeEsaSeA jbCljh2kUBFw8DxMWZSlIB98WrMuF1tx9insxurGdf178oVVVmNo0MqwA3NrWomq qu/2xOvydvEDhWWNLasLQ5I3b4pGbrDfJWRNkEBET6ejAOrjgakwh6+Cn0JqWhmJ cIOBDVH8FjXZ5bb2wLiuaSQIWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET011qc XMEC2afNVH5GKs+rlcByMB8GA1UdIwQYMBaAFMpksXMRlSCTzU1g2q8Xtqyg96UW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkIyNC84QTE2RkY3MjVC QTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklKUE5UV0RhcnhlMnJLRDNw UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltU3hjeEdWSUpQTlRXRGFyeGUycktEM3BSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkIyNC84QTE2RkY3MjVCQTAxMUVGOUYyRjIzNjFDNEY5QUUwMi95bVN4Y3hHVklK UE5UV0RhcnhlMnJLRDNwUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmQXo62JbbAf1VtCuFRJ6ZFo9xG6Xhqk+UNngYMqfjWwu5oYeZSeIM AOaH2ZbKKqdwaqHjnjmwyCqksrfdIcLl68p32bxm8NQiqfDCB/+8fOBdi4KaZscp VCletDpQXEMNJMdIaKpORWoOYDh/4f28JZxBFiJP0U2E5sx2F2YMs4Te9BiIU1qK ZnxGETN8YlwNUK6prkoA3FwxC0eMajS8N/OQRHBjCh8Hd8Etmr8vCEyf3nJyaoJh 0wbHrBVPvcTAAeWFf3dHjTD85V8GVeMIl+n+EZVgrkGYxDAfqUmtAkVTnuV1FNQ0 rp4+/HZaWRjcDk10qvxBR/lNCTrivP6H -----END CERTIFICATE-----Generated at Thu Dec 18 09:32:22 2025 by rpki-client