This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: tsG2Dmf+756VfV5J0T68Ns9XsiMdRxahj3dJroivHxo= Subject key identifier: A7:63:C5:CA:33:BD:69:AE:7B:D4:B8:2C:44:3C:20:27:0B:E8:25:7F Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0CAB Signing time: Mon 22 Dec 2025 17:54:42 +0000 Manifest this update: Mon 22 Dec 2025 17:54:41 +0000 Manifest next update: Mon 29 Dec 2025 17:54:41 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: Fk9I3xAYboZnCYjCIJY0WjTGsvWomFAR+hy3LEYqBSQ=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: f31uXjqb4DNcM+Zpb2Aaj4CME0IwegAYYNe/FOHZjWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Dec 22 17:54:41 2025 GMT Not After : Dec 29 17:54:41 2025 GMT Subject: CN=694985e1-2773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c0:aa:de:73:6c:65:6e:75:56:ee:b7:61:c8: 34:37:cc:c5:ad:cb:a6:d3:51:08:ff:b3:5b:a8:ba: 5d:17:78:76:62:dc:a3:6a:fe:9c:0a:5a:15:29:58: d3:45:f8:99:c6:a9:03:ea:6e:a1:d7:5b:81:b5:8c: 65:bf:92:04:45:b8:d1:08:56:0a:ec:93:a9:98:ce: a3:9d:b6:6e:d8:3f:f0:fe:71:5d:dd:66:55:2a:8a: 67:67:ef:6b:83:12:15:5e:77:7c:cd:36:7a:1d:ec: ed:cc:21:2b:eb:10:56:cb:66:9b:c4:c2:83:83:c1: e8:64:15:28:8d:df:48:47:2c:6e:50:93:d2:ed:e8: 53:59:ba:12:96:ea:51:45:e2:9a:73:13:30:67:04: b2:12:d9:70:b3:80:33:5a:d0:fc:8e:4f:b8:90:67: 93:02:22:e4:e2:43:91:0c:af:58:a7:21:6e:bb:d9: 0a:8e:3e:74:8c:6d:9d:35:88:2d:10:59:c8:45:4c: dd:51:8e:48:5f:f2:9a:bd:bd:ca:5c:fc:cf:60:01: 54:0b:b5:84:e7:41:79:5c:9e:9c:35:97:6b:78:3a: aa:0a:f2:99:9d:ff:cc:69:41:71:bb:b3:63:a8:e9: 86:7e:fd:31:0d:4c:4c:5d:41:10:9c:ed:9b:84:cb: 3a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:63:C5:CA:33:BD:69:AE:7B:D4:B8:2C:44:3C:20:27:0B:E8:25:7F X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:94:c3:58:33:40:c3:ae:75:ef:cc:59:3e:9f:65:ae:f2:38: 66:3c:39:dd:a2:90:2f:09:17:7a:11:90:d1:fa:9f:45:9a:47: 2f:c5:ff:22:b0:89:fb:29:e9:6c:ec:1a:e1:28:5e:5b:15:28: 91:60:3b:b6:01:b3:b9:be:dd:d1:c2:3d:09:09:48:33:9f:3c: 5b:ba:80:b9:15:fc:40:7d:4e:98:76:4b:da:33:2e:b6:b7:fc: 87:93:85:5b:2c:0e:a5:a8:94:22:7c:6d:74:99:c1:a8:71:ba: d9:49:4c:06:fe:2f:72:70:7b:27:f6:88:f7:e9:b6:f1:e4:67: 48:8c:f0:37:9f:ad:05:94:6d:d2:1a:07:a3:3e:d3:3b:65:aa: 49:e0:58:2d:08:0d:f8:be:9c:62:60:51:82:a1:f1:d0:23:a6: 1e:06:1e:1d:e1:b2:20:99:4a:50:85:9f:83:21:a4:cf:57:ca: 65:b9:ce:a9:70:d7:a5:27:9c:3e:bf:d7:a4:f0:02:12:14:8b: 48:f0:b0:fb:59:fe:86:fb:d9:d7:70:97:c0:2c:44:f4:4d:e8: 3f:a5:73:af:fb:48:d6:c1:3f:6a:9a:b5:49:6c:89:f8:0b:f0: aa:50:25:e2:4f:a6:25:be:f8:86:2a:2b:e9:47:ca:64:38:3f: 30:2c:4b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjUxMjIyMTc1NDQxWhcNMjUxMjI5MTc1NDQxWjAYMRYwFAYD VQQDDA02OTQ5ODVlMS0yNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cCq3nNsZW51Vu63Ycg0N8zFrcum01EI/7NbqLpdF3h2Ytyjav6cCloVKVjT RfiZxqkD6m6h11uBtYxlv5IERbjRCFYK7JOpmM6jnbZu2D/w/nFd3WZVKopnZ+9r gxIVXnd8zTZ6HeztzCEr6xBWy2abxMKDg8HoZBUojd9IRyxuUJPS7ehTWboSlupR ReKacxMwZwSyEtlws4AzWtD8jk+4kGeTAiLk4kORDK9YpyFuu9kKjj50jG2dNYgt EFnIRUzdUY5IX/Kavb3KXPzPYAFUC7WE50F5XJ6cNZdreDqqCvKZnf/MaUFxu7Nj qOmGfv0xDUxMXUEQnO2bhMs6ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdjxcoz vWmue9S4LEQ8ICcL6CV/MB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5lMNYM0DDrnXvzFk+n2Wu8jhmPDndopAvCRd6EZDR+p9Fmkcvxf8i sIn7Kels7BrhKF5bFSiRYDu2AbO5vt3Rwj0JCUgznzxbuoC5FfxAfU6YdkvaMy62 t/yHk4VbLA6lqJQifG10mcGocbrZSUwG/i9ycHsn9oj36bbx5GdIjPA3n60FlG3S GgejPtM7ZapJ4FgtCA34vpxiYFGCofHQI6YeBh4d4bIgmUpQhZ+DIaTPV8pluc6p cNelJ5w+v9ek8AISFItI8LD7Wf6G+9nXcJfALET0Teg/pXOv+0jWwT9qmrVJbIn4 C/CqUCXiT6YlvviGKivpR8pkOD8wLEvZ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:48 2025 by rpki-client