This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: foPi+bL9snemSMmB0SwoPcs3qMggRbzD2CTj9qCcsiI= Subject key identifier: 1C:58:EE:7C:34:5E:9C:A2:EA:B0:37:AE:AD:F1:8D:B6:5D:88:DC:5D Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 0407 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 03FC Signing time: Tue 16 Dec 2025 23:53:00 +0000 Manifest this update: Tue 16 Dec 2025 23:52:59 +0000 Manifest next update: Tue 23 Dec 2025 23:52:59 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: J0YmphZy8nfCxQYZPEmVKY0ig0Qx02oJIU3ALs1AlNQ=) 2: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: nXP2TkV2xaQf8NtZFSYlzBkdLiCf/hTO1Pti6MrwpUU=) 3: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: /k7UGLxYpMRjSXOkhilDp1PbyHK35jDBnjLpEab1SqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 23:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A, serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: Dec 16 23:52:59 2025 GMT Not After : Dec 23 23:52:59 2025 GMT Subject: CN=6941f0db-d09d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:41:d7:6c:77:87:6a:4f:75:98:71:57:7f: 66:85:f0:19:82:20:4d:be:5c:0e:e1:06:27:49:36: 52:e1:56:73:0c:b8:ac:96:77:7e:de:ed:ec:0a:da: 19:be:89:14:3d:6f:c0:83:53:92:2c:cd:ab:d5:a5: 79:d2:60:a4:ab:18:62:59:89:78:cc:bb:36:0d:1f: 2b:a3:07:34:f0:d6:38:1f:b3:7f:a1:1f:7b:7f:3c: a0:a2:c7:73:78:49:73:f7:08:33:b4:a1:76:7d:6f: f8:09:a8:30:a1:23:d3:a6:25:2e:98:39:bd:f0:54: d4:8e:6f:c2:0a:6b:0f:be:34:ef:69:a3:c0:af:1d: 87:af:b1:d5:0d:42:03:53:3f:21:75:4f:bd:d6:d1: 9b:c8:3c:48:0c:ca:c1:d4:5a:97:a7:da:de:98:05: 19:be:e0:e7:a3:6d:67:c6:55:d7:90:6a:bc:cf:94: d2:38:bd:e8:6d:57:ac:ce:ce:5d:ee:80:21:99:06: b6:9a:63:19:88:8c:e1:5b:0a:28:5e:ce:b9:35:c8: 9a:4e:26:55:a7:1c:40:02:ad:c9:2d:c0:23:b7:fc: 6d:a7:f4:86:e2:56:0e:86:0c:0b:fe:9a:bc:02:83: 09:de:cc:6b:78:75:ea:77:c0:e2:c3:2d:0e:71:62: 35:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:58:EE:7C:34:5E:9C:A2:EA:B0:37:AE:AD:F1:8D:B6:5D:88:DC:5D X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:14:4b:39:ee:b1:4e:45:64:5b:95:c4:da:a4:9b:e0:61:4e: 6f:07:07:a4:d8:b3:a2:40:b9:c7:d2:82:39:8e:36:36:41:f1: 3d:ac:25:5f:d8:7c:cf:02:5e:15:78:9d:80:03:4f:52:ff:88: d7:40:f4:ab:53:68:1a:9d:97:27:b0:b4:8b:54:e9:21:f3:5f: 51:f3:72:f4:51:85:9a:51:aa:56:b9:42:c8:65:d6:4e:0f:c0: 23:c5:34:c9:50:fa:50:df:37:52:db:88:28:92:3b:49:c6:55: e2:2c:fe:7d:cd:ba:cd:c0:be:a5:66:dc:31:67:99:aa:60:1f: 41:d0:91:dc:a9:75:be:ad:ee:d3:18:25:24:11:f9:60:c3:ff: 29:db:e5:f4:7e:73:c2:d7:d3:a3:8a:4f:21:fc:b3:05:e3:be: bc:68:33:a3:38:3e:9a:b9:91:f1:5d:c1:d4:fb:7f:9e:46:c0: 2e:31:e8:a8:ad:c4:09:20:56:7e:a3:57:a9:f2:7d:8d:ea:27: c0:fb:7b:fd:47:77:7f:97:77:33:9e:db:5c:b2:bd:49:ea:07: 8b:53:9c:26:8e:1c:b7:b9:df:52:45:1d:8c:24:ed:63:20:f5: 43:c3:86:1b:a5:6e:ea:42:a6:40:fe:40:5a:c3:fe:48:5f:ac: 5a:de:10:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUxMjE2MjM1MjU5WhcNMjUxMjIzMjM1MjU5WjAYMRYwFAYD VQQDDA02OTQxZjBkYi1kMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHRB12x3h2pPdZhxV39mhfAZgiBNvlwO4QYnSTZS4VZzDLislnd+3u3sCtoZ vokUPW/Ag1OSLM2r1aV50mCkqxhiWYl4zLs2DR8rowc08NY4H7N/oR97fzygosdz eElz9wgztKF2fW/4CagwoSPTpiUumDm98FTUjm/CCmsPvjTvaaPArx2Hr7HVDUID Uz8hdU+91tGbyDxIDMrB1FqXp9remAUZvuDno21nxlXXkGq8z5TSOL3obVeszs5d 7oAhmQa2mmMZiIzhWwooXs65NciaTiZVpxxAAq3JLcAjt/xtp/SG4lYOhgwL/pq8 AoMJ3sxreHXqd8Diwy0OcWI1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxY7nw0 Xpyi6rA3rq3xjbZdiNxdMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvFEs57rFORWRblcTapJvgYU5vBwek2LOiQLnH0oI5jjY2QfE9rCVf 2HzPAl4VeJ2AA09S/4jXQPSrU2ganZcnsLSLVOkh819R83L0UYWaUapWuULIZdZO D8AjxTTJUPpQ3zdS24gokjtJxlXiLP59zbrNwL6lZtwxZ5mqYB9B0JHcqXW+re7T GCUkEflgw/8p2+X0fnPC19Ojik8h/LMF4768aDOjOD6auZHxXcHU+3+eRsAuMeio rcQJIFZ+o1ep8n2N6ifA+3v9R3d/l3cznttcsr1J6geLU5wmjhy3ud9SRR2MJO1j IPVDw4YbpW7qQqZA/kBaw/5IX6xa3hBZ -----END CERTIFICATE-----Generated at Thu Dec 18 09:44:31 2025 by rpki-client