This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: 4vdat7kuMGTYo2qR1UHitLX8ldZa9yrCbcFidT/Foks= Subject key identifier: 14:C9:33:DD:16:95:8C:6F:CE:4C:2F:BC:D0:05:4F:24:43:2F:20:8A Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 113E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 112D Signing time: Mon 22 Dec 2025 16:56:55 +0000 Manifest this update: Mon 22 Dec 2025 16:56:55 +0000 Manifest next update: Mon 29 Dec 2025 16:56:55 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: gZK/TiiSUO+Efm16jlaMlk/DizKeaJhzuBCSNdTPECM=) 2: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) 3: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4414 (0x113e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Dec 22 16:56:55 2025 GMT Not After : Dec 29 16:56:55 2025 GMT Subject: CN=69497857-39a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:76:61:29:e5:e7:1a:c1:6d:2e:83:1c:54:c8: 1d:5d:0e:21:7d:f1:db:4f:2d:90:77:e9:45:76:f4: 45:a0:c7:a7:db:f4:30:8e:b9:17:f8:bd:35:06:58: b4:74:6a:cd:aa:58:f2:18:b8:2c:f8:20:63:ac:f6: 00:eb:47:4f:16:89:ff:a7:bf:4a:86:ae:bb:a4:69: 06:f5:2e:8a:a6:a0:85:fd:92:48:b6:bf:8e:91:9e: 01:be:89:d3:a3:0b:4d:73:a0:7e:17:15:2c:17:82: ac:b2:22:bf:35:91:92:c2:31:71:07:ec:5f:86:da: e1:25:68:71:65:90:d8:42:7f:48:bd:c0:24:38:76: 94:b0:a2:c5:35:c9:4b:bf:1f:55:e9:e2:80:d0:79: b3:4c:2d:f7:68:92:0e:73:2a:db:be:d2:d6:82:3c: d2:0e:a3:b5:94:51:49:63:69:ff:75:7e:a4:be:67: 29:01:20:bd:e8:a9:49:72:20:25:99:d9:db:e4:78: 54:9d:2f:8e:76:94:8a:da:61:70:c8:4b:4e:b4:da: 30:e1:a1:31:ac:ab:10:74:e4:04:40:7b:98:ce:44: ff:a5:f1:2a:23:cf:69:f1:6b:82:37:58:8a:ea:88: 4f:e2:ce:2c:7d:ef:b1:32:9f:de:e8:ac:0c:e4:e6: d7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C9:33:DD:16:95:8C:6F:CE:4C:2F:BC:D0:05:4F:24:43:2F:20:8A X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:71:77:30:92:b6:2a:71:97:e4:ea:b8:35:4c:17:b2:38:e5: a7:7f:9d:f7:b3:d5:52:50:d5:9d:cd:d0:1c:c7:30:81:28:c4: dd:1f:88:a8:71:4b:0f:65:8f:bd:49:95:4e:b0:ef:40:ab:80: 84:2a:1d:3e:f5:32:4d:30:4d:68:1d:9c:c1:e2:48:f5:5a:3c: dc:4e:37:ef:8c:a4:1e:40:16:95:96:db:34:d1:ca:ce:54:62: f3:1c:32:d5:b5:3d:48:9b:61:21:63:d1:fd:1b:55:ab:ea:b7: 1b:23:8b:ef:10:41:35:f5:f5:8b:88:c4:44:7a:cf:e8:c3:24: 22:96:3e:d4:28:38:e6:6e:a9:21:05:b2:66:c3:78:f3:6d:c5: 0b:ab:cc:a5:ea:db:d2:27:28:4b:8a:dc:c2:aa:c9:8f:f0:4e: 29:f5:1e:41:1e:be:df:7f:25:94:c8:c9:77:b9:3e:6f:e3:44: ea:f7:47:20:d9:fa:1f:41:75:1f:2b:5d:3e:5e:df:49:12:98: a9:90:dc:f1:7c:09:53:4f:37:20:76:7d:f2:a4:5b:6c:14:7c: f3:15:1e:10:c9:d4:3f:32:29:1f:8d:19:c2:fc:ec:4b:da:af: c6:58:74:ae:79:09:98:da:5e:cc:2b:81:f3:40:dd:ed:f7:f6: 90:61:d8:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICET4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUxMjIyMTY1NjU1WhcNMjUxMjI5MTY1NjU1WjAYMRYwFAYD VQQDDA02OTQ5Nzg1Ny0zOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHZhKeXnGsFtLoMcVMgdXQ4hffHbTy2Qd+lFdvRFoMen2/QwjrkX+L01Bli0 dGrNqljyGLgs+CBjrPYA60dPFon/p79Khq67pGkG9S6KpqCF/ZJItr+OkZ4BvonT owtNc6B+FxUsF4KssiK/NZGSwjFxB+xfhtrhJWhxZZDYQn9IvcAkOHaUsKLFNclL vx9V6eKA0HmzTC33aJIOcyrbvtLWgjzSDqO1lFFJY2n/dX6kvmcpASC96KlJciAl mdnb5HhUnS+OdpSK2mFwyEtOtNow4aExrKsQdOQEQHuYzkT/pfEqI89p8WuCN1iK 6ohP4s4sfe+xMp/e6KwM5ObXfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTJM90W lYxvzkwvvNAFTyRDLyCKMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfcXcwkrYqcZfk6rg1TBeyOOWnf533s9VSUNWdzdAcxzCBKMTdH4io cUsPZY+9SZVOsO9Aq4CEKh0+9TJNME1oHZzB4kj1WjzcTjfvjKQeQBaVlts00crO VGLzHDLVtT1Im2EhY9H9G1Wr6rcbI4vvEEE19fWLiMREes/owyQilj7UKDjmbqkh BbJmw3jzbcULq8yl6tvSJyhLitzCqsmP8E4p9R5BHr7ffyWUyMl3uT5v40Tq90cg 2fofQXUfK10+Xt9JEpipkNzxfAlTTzcgdn3ypFtsFHzzFR4QydQ/MikfjRnC/OxL 2q/GWHSueQmY2l7MK4HzQN3t9/aQYdir -----END CERTIFICATE-----Generated at Tue Dec 23 18:04:52 2025 by rpki-client