This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft (raw, json) Hash identifier: 9a71jkAp9xb+O6gHc9dnXfet9IuCWM7namUATPyf+00= Subject key identifier: ED:69:96:14:AF:83:1E:CA:D4:47:97:2A:4D:B2:9B:5A:81:AE:3D:14 Authority key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E Certificate issuer: /CN=A912D4AE/serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Certificate serial: 2613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft Manifest number: 25F7 Signing time: Mon 22 Dec 2025 15:33:46 +0000 Manifest this update: Mon 22 Dec 2025 15:33:46 +0000 Manifest next update: Mon 29 Dec 2025 15:33:46 +0000 Files and hashes: 1: Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl (hash: YtU3uhWm32EnD1GWiRWtlFJHdU3+mgGptGzl7SLMbgM=) 2: C9996B26D40D11F09F81D24AC4F9AE02.roa (hash: oNr/LYf8Pdw7R6K6rDTlOSUqKom8fojMyoex0jFjyII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9747 (0x2613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E Validity Not Before: Dec 22 15:33:46 2025 GMT Not After : Dec 29 15:33:46 2025 GMT Subject: CN=694964da-6eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:c4:97:4f:5d:d7:22:f9:da:fe:5f:79:ff:c8: 0f:8d:ee:0f:c7:43:87:63:ba:40:6d:14:3e:87:fe: 96:f3:7f:08:c9:09:90:bd:be:a1:af:34:5a:aa:65: 66:b7:45:20:3c:4f:f0:00:0e:56:35:71:80:0c:05: 12:8a:bc:b3:8e:41:0d:f3:98:db:dc:75:32:9a:d2: 66:cc:df:e2:a5:4a:4a:f9:a3:03:00:60:c4:75:cc: 09:ef:cf:3f:dc:3c:5b:70:69:46:15:48:6c:c3:6f: a6:c2:89:9c:90:f9:ce:24:f8:2d:c9:9f:c9:8d:4a: 21:bd:31:67:4c:bd:2d:3d:94:cd:d1:e1:c0:2d:d4: 25:43:e6:38:c3:00:34:b3:51:75:78:3a:38:f8:09: e4:d9:8a:11:f9:79:6b:23:e7:d1:4c:b8:77:d6:e4: e2:00:a5:8c:0a:88:da:a2:74:5c:b1:32:2a:a1:16: cf:5f:11:3a:c9:57:dd:14:1f:2d:17:ec:2a:e0:0a: 95:c7:27:84:40:c9:42:d2:34:70:ee:e4:dd:36:86: a2:54:0e:9d:93:81:a9:0e:06:77:7b:6f:61:28:13: 14:60:76:1d:44:e9:64:2f:eb:70:87:b4:98:bc:3f: 32:91:a0:d7:f3:05:82:f0:26:08:d6:50:2b:c5:31: 6b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:69:96:14:AF:83:1E:CA:D4:47:97:2A:4D:B2:9B:5A:81:AE:3D:14 X509v3 Authority Key Identifier: keyid:62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f8:94:05:5e:e8:d7:46:59:0b:de:ac:7f:53:69:9b:43:df: b7:da:ab:ec:48:4e:43:2d:90:db:6d:fa:9e:70:3a:2f:fc:91: 47:98:9f:7a:6d:c3:dc:4e:9b:df:fb:a9:7f:3b:58:9f:10:9b: d5:be:d0:1e:cb:cb:e8:33:ae:45:ce:2e:4e:61:77:cb:1b:73: 86:f4:b3:0f:cd:8c:40:8b:93:94:5a:20:e1:80:3e:21:8c:bd: 28:a1:95:da:c8:44:99:d9:d9:b6:d3:ed:b0:8e:e1:6a:16:d6: ba:23:c3:87:09:e1:b3:44:2d:81:5d:1e:cc:c4:7f:95:dc:15: a0:cc:47:45:1a:86:99:33:b1:0d:95:37:f1:3c:0b:0c:2b:13: e9:36:02:2a:7c:e8:d2:ec:2d:f7:af:bc:b1:6a:f1:78:0f:f4: 1d:52:6a:57:4a:e4:95:8b:6f:83:c8:3a:49:d6:56:3a:c5:5a: c3:8c:f0:07:c9:b4:28:bc:2e:38:4c:94:59:ee:8d:71:87:f6: 80:02:07:92:8a:07:68:d3:a8:93:24:af:17:f4:d7:da:95:ab: c1:7a:a4:aa:d4:8a:70:81:fc:da:2b:9b:49:74:83:f0:30:f1: 8e:1c:79:80:61:18:f9:07:5d:29:2e:f4:97:12:43:20:ad:d9: eb:c6:08:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ0QUUxMTAvBgNVBAUTKDYyMDdGNkVGRjAwOTk3ODZFMzBBMDM1QjFCNUI5MDND MTYzRjU5N0UwHhcNMjUxMjIyMTUzMzQ2WhcNMjUxMjI5MTUzMzQ2WjAYMRYwFAYD VQQDDA02OTQ5NjRkYS02ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+MSXT13XIvna/l95/8gPje4Px0OHY7pAbRQ+h/6W838IyQmQvb6hrzRaqmVm t0UgPE/wAA5WNXGADAUSiryzjkEN85jb3HUymtJmzN/ipUpK+aMDAGDEdcwJ788/ 3DxbcGlGFUhsw2+mwomckPnOJPgtyZ/JjUohvTFnTL0tPZTN0eHALdQlQ+Y4wwA0 s1F1eDo4+Ank2YoR+XlrI+fRTLh31uTiAKWMCojaonRcsTIqoRbPXxE6yVfdFB8t F+wq4AqVxyeEQMlC0jRw7uTdNoaiVA6dk4GpDgZ3e29hKBMUYHYdROlkL+twh7SY vD8ykaDX8wWC8CYI1lArxTFrDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1plhSv gx7K1EeXKk2ym1qBrj0UMB8GA1UdIwQYMBaAFGIH9u/wCZeG4woDWxtbkDwWP1l+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDRBRS9EN0IyRjgyQzEz NDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0YmpDZ05iRzF1UVBCWV9X WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lnZjI3X0FKbDRiakNnTmJHMXVRUEJZX1dYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDRBRS9EN0IyRjgyQzEzNDcxMUU1ODY1NUE1MjZDNEY5QUUwMi9ZZ2YyN19BSmw0 YmpDZ05iRzF1UVBCWV9XWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD+JQFXujXRlkL3qx/U2mbQ9+32qvsSE5DLZDbbfqecDov/JFHmJ96 bcPcTpvf+6l/O1ifEJvVvtAey8voM65Fzi5OYXfLG3OG9LMPzYxAi5OUWiDhgD4h jL0ooZXayESZ2dm20+2wjuFqFta6I8OHCeGzRC2BXR7MxH+V3BWgzEdFGoaZM7EN lTfxPAsMKxPpNgIqfOjS7C33r7yxavF4D/QdUmpXSuSVi2+DyDpJ1lY6xVrDjPAH ybQovC44TJRZ7o1xh/aAAgeSigdo06iTJK8X9NfalavBeqSq1IpwgfzaK5tJdIPw MPGOHHmAYRj5B10pLvSXEkMgrdnrxgid -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:47 2025 by rpki-client