This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: +Qzl4zm5NemgFksyM58LTVuxJi2Ykuv//M73rIWNWLw= Subject key identifier: 7C:04:F6:AC:7F:72:C2:F3:F0:33:07:00:AE:74:F0:5B:D7:F8:2A:1C Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: 0150 Signing time: Tue 23 Dec 2025 03:16:44 +0000 Manifest this update: Tue 23 Dec 2025 03:16:43 +0000 Manifest next update: Tue 30 Dec 2025 03:16:43 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: LYt0QForgEycIHykW0TBZ2Li/SLsSvIM9R8k/x/D8Wc=) 2: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (hash: WBqt8bWcN7f1UBdrAmgdhcX9VMn7anvz2CtIGPkbbz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: Dec 23 03:16:43 2025 GMT Not After : Dec 30 03:16:43 2025 GMT Subject: CN=694a099c-a926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5d:dc:e8:d2:c3:82:f0:c9:3f:5f:c9:7d:78: bc:10:95:9d:ef:5a:85:5b:f0:ce:e3:d1:cf:c8:22: 30:10:ef:29:7a:8f:dc:24:33:3f:19:d4:51:5a:61: d9:2b:86:1b:7e:b7:43:e1:73:54:11:2b:9b:16:24: 2a:b3:a2:cd:13:55:28:84:18:9e:c4:14:a6:81:66: 05:7c:86:0f:8d:d2:be:66:0e:71:96:08:78:ed:d9: b1:cd:bc:b1:96:d9:90:02:b9:e1:18:a0:d3:13:37: ca:47:b5:15:2b:ce:b7:af:30:fc:ee:e6:5e:54:38: 58:65:ae:bf:47:6a:e1:7c:f2:04:3f:a2:b2:56:9e: 2b:34:de:fb:0e:47:12:aa:e6:88:f2:f6:cd:e1:ca: 11:8f:96:5e:e5:ca:18:c9:50:78:b8:99:d2:b3:cd: cc:f5:03:84:29:52:a5:5c:30:06:0b:07:d6:5e:4b: 5a:90:0e:57:53:53:8c:1d:e3:16:10:5b:6b:2f:f5: 4d:f0:2f:54:64:ba:e9:3b:59:2a:fc:b1:18:f6:39: 7d:f4:e5:96:51:64:c7:5d:3c:5d:58:0f:03:76:70: 7f:00:b0:b4:ef:3f:da:b5:04:69:00:ad:57:93:0e: 26:71:12:51:76:09:9e:72:f1:4b:32:17:ab:14:f9: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:04:F6:AC:7F:72:C2:F3:F0:33:07:00:AE:74:F0:5B:D7:F8:2A:1C X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:84:3e:13:1a:13:16:93:57:6d:1b:b0:79:93:a2:06:09:e8: 54:17:29:6b:97:bd:bc:91:df:25:aa:a8:89:24:6e:6a:50:a7: d1:19:02:86:f1:a8:75:0d:a6:89:83:27:1e:97:08:b7:14:f9: 31:95:2f:8a:a5:ce:25:a0:92:82:76:0f:6d:f5:70:71:ba:34: 41:18:89:43:b7:05:65:fd:4a:64:5d:03:01:4b:6a:d9:2d:70: 4b:3f:8c:c7:62:19:a8:02:df:36:c6:a8:ac:31:61:f3:3f:2a: 5b:53:bc:00:3c:ef:3e:8e:04:2e:ef:2b:c8:03:b8:c8:40:40: 52:61:24:9d:a7:1f:c7:8a:70:0c:3c:1f:5e:49:99:da:88:02: 25:9a:91:fa:2a:4e:66:08:06:61:2c:15:bc:78:4a:38:1d:c7: d8:fc:7a:6e:f0:57:80:f6:0a:8b:65:a2:c5:a4:08:5b:a3:44: 3c:8c:37:4a:a5:32:f8:fe:0e:64:75:36:9b:2b:5d:4a:46:d4: 61:8d:7b:8f:88:1c:6a:e9:66:07:5d:5c:e3:a4:c5:a6:ce:d8: a6:74:39:e5:40:b9:0c:57:71:60:0c:fb:66:0e:5c:da:d9:16: ad:62:ac:19:42:4d:84:3d:72:64:4f:f0:14:b4:5d:05:e3:fb: 5d:c2:7c:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUxMjIzMDMxNjQzWhcNMjUxMjMwMDMxNjQzWjAYMRYwFAYD VQQDDA02OTRhMDk5Yy1hOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF3c6NLDgvDJP1/JfXi8EJWd71qFW/DO49HPyCIwEO8peo/cJDM/GdRRWmHZ K4YbfrdD4XNUESubFiQqs6LNE1UohBiexBSmgWYFfIYPjdK+Zg5xlgh47dmxzbyx ltmQArnhGKDTEzfKR7UVK863rzD87uZeVDhYZa6/R2rhfPIEP6KyVp4rNN77DkcS quaI8vbN4coRj5Ze5coYyVB4uJnSs83M9QOEKVKlXDAGCwfWXktakA5XU1OMHeMW EFtrL/VN8C9UZLrpO1kq/LEY9jl99OWWUWTHXTxdWA8DdnB/ALC07z/atQRpAK1X kw4mcRJRdgmecvFLMherFPkH1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwE9qx/ csLz8DMHAK508FvX+CocMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjIzRi82NzBDMkYyQ0UyOUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1L eXRYeHpxTlFacnIwbm4xZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqhD4TGhMWk1dtG7B5k6IGCehUFylrl728kd8lqqiJJG5qUKfRGQKG 8ah1DaaJgycelwi3FPkxlS+Kpc4loJKCdg9t9XBxujRBGIlDtwVl/UpkXQMBS2rZ LXBLP4zHYhmoAt82xqisMWHzPypbU7wAPO8+jgQu7yvIA7jIQEBSYSSdpx/HinAM PB9eSZnaiAIlmpH6Kk5mCAZhLBW8eEo4HcfY/Hpu8FeA9gqLZaLFpAhbo0Q8jDdK pTL4/g5kdTabK11KRtRhjXuPiBxq6WYHXVzjpMWmztimdDnlQLkMV3FgDPtmDlza 2RatYqwZQk2EPXJkT/AUtF0F4/tdwnzx -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:41 2025 by rpki-client