This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: A9Grp7Fs8xVLH6r7lbyVL9mSgmbi1MyMJ012r8VkR2o= Subject key identifier: 44:59:0F:24:B7:35:83:45:42:30:7E:75:21:BB:E1:C6:C9:B7:DD:CA Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0222 Signing time: Sun 07 Dec 2025 00:37:33 +0000 Manifest this update: Sun 07 Dec 2025 00:37:33 +0000 Manifest next update: Sun 14 Dec 2025 00:37:32 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: Q5aVhXIgiPrg9fFHbYmzGDUF2dPDH5laajsdgyjIR6g=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Dec 7 00:37:33 2025 GMT Not After : Dec 14 00:37:32 2025 GMT Subject: CN=6934cc4d-2115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0f:f0:8d:84:10:5b:29:9a:13:a2:5d:5d:48: 0f:65:e1:d3:72:44:ea:c8:c7:7f:a9:02:d2:95:2d: 15:68:fe:d2:e3:f0:3f:f9:55:4e:dc:1d:05:9a:58: f7:26:23:a3:27:a5:a1:b2:71:44:2c:f5:ba:4a:af: a5:40:91:52:4f:c0:04:66:2b:0d:f0:19:9d:80:b4: 9b:20:39:c0:e5:d5:35:e6:cf:25:da:e5:ad:9c:c8: 23:86:b3:68:47:f3:df:08:19:75:39:49:ac:4a:ec: 61:68:f8:63:07:98:ad:f0:03:3b:8d:4b:68:1f:2f: 06:53:fb:5e:f3:27:cb:26:ce:77:96:77:13:ca:20: a8:05:a1:99:d6:e0:d8:33:e4:43:7e:6e:d1:11:9a: 27:8e:82:df:d8:2e:45:8d:7a:52:46:e5:4f:52:3a: ea:22:4b:08:75:44:a0:9b:6c:70:99:3f:0f:de:84: b8:a8:69:95:cd:b2:20:c4:1f:b4:c5:1c:a2:3c:49: 2a:0f:98:87:a0:92:1b:97:02:3a:c4:12:60:7b:d3: e1:03:09:ee:80:43:86:49:29:da:ec:10:99:b5:c6: 9e:df:9c:d9:b2:f2:ff:d5:25:1f:a3:2b:c7:4d:4e: 92:21:00:40:6a:f4:66:5d:2f:25:17:8d:ad:e0:c6: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:59:0F:24:B7:35:83:45:42:30:7E:75:21:BB:E1:C6:C9:B7:DD:CA X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:e6:de:be:0d:d7:72:43:8f:f4:3c:b7:56:12:3a:9e:dd:f6: 5a:6f:17:45:45:a3:6b:33:15:8e:a6:1b:4c:84:7a:f0:a9:44: 75:53:d2:8a:73:c3:69:dd:c8:cd:83:6c:bf:99:da:e0:9f:d1: ce:a5:d6:08:9c:b3:29:48:dc:ba:4d:20:2a:f1:d2:73:34:c0: f7:53:eb:3e:a7:63:88:94:c8:66:df:aa:4c:75:e0:7b:54:33: 89:ff:b6:c8:3a:46:54:fd:9d:da:6b:ae:e6:63:d4:a4:bf:ee: 70:95:c6:aa:93:10:17:dd:b4:89:6d:90:c1:fc:a2:47:d0:dc: 31:7e:ec:c7:0e:fb:5e:e3:28:90:06:4c:61:68:2c:82:95:78: e5:6f:72:38:19:ac:ee:8c:c0:4a:ca:f4:42:9f:f5:9c:16:d4: 58:6a:0e:9b:61:14:65:13:ff:cc:a1:94:c4:0b:eb:5b:27:e7: cb:7a:6d:8e:2f:81:6e:a0:24:11:07:52:4c:26:11:ed:cc:77: f4:f7:ea:0e:90:85:de:51:42:14:39:b4:78:69:25:74:e1:8c: 5f:e2:0a:25:90:48:b1:82:92:ef:c6:ad:ba:e4:b3:11:1b:83: ca:93:57:d1:91:cf:05:82:82:38:1a:61:67:a7:58:bf:d4:8c: 2c:87:82:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUxMjA3MDAzNzMzWhcNMjUxMjE0MDAzNzMyWjAYMRYwFAYD VQQDEw02OTM0Y2M0ZC0yMTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtA/wjYQQWymaE6JdXUgPZeHTckTqyMd/qQLSlS0VaP7S4/A/+VVO3B0Fmlj3 JiOjJ6WhsnFELPW6Sq+lQJFST8AEZisN8BmdgLSbIDnA5dU15s8l2uWtnMgjhrNo R/PfCBl1OUmsSuxhaPhjB5it8AM7jUtoHy8GU/te8yfLJs53lncTyiCoBaGZ1uDY M+RDfm7REZonjoLf2C5FjXpSRuVPUjrqIksIdUSgm2xwmT8P3oS4qGmVzbIgxB+0 xRyiPEkqD5iHoJIblwI6xBJge9PhAwnugEOGSSna7BCZtcae35zZsvL/1SUfoyvH TU6SIQBAavRmXS8lF42t4MYCBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERZDyS3 NYNFQjB+dSG74cbJt93KMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY5t6+DddyQ4/0PLdWEjqe3fZabxdFRaNrMxWOphtMhHrwqUR1U9KK c8Np3cjNg2y/mdrgn9HOpdYInLMpSNy6TSAq8dJzNMD3U+s+p2OIlMhm36pMdeB7 VDOJ/7bIOkZU/Z3aa67mY9Skv+5wlcaqkxAX3bSJbZDB/KJH0NwxfuzHDvte4yiQ BkxhaCyClXjlb3I4GazujMBKyvRCn/WcFtRYag6bYRRlE//MoZTEC+tbJ+fLem2O L4FuoCQRB1JMJhHtzHf09+oOkIXeUUIUObR4aSV04Yxf4golkEixgpLvxq265LMR G4PKk1fRkc8FgoI4GmFnp1i/1Iwsh4Ib -----END CERTIFICATE-----Generated at Sun Dec 7 03:25:28 2025 by rpki-client