This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: 1L7XwnptKtvpzY5RlLtxCpCUZU2ALbVt/WyfhJICjj0= Subject key identifier: 86:EF:DA:91:08:9A:D1:DC:BF:58:21:CA:E0:C5:06:D6:34:9E:99:03 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D00 Signing time: Thu 18 Dec 2025 17:50:50 +0000 Manifest this update: Thu 18 Dec 2025 17:50:50 +0000 Manifest next update: Thu 25 Dec 2025 17:50:50 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: 17Pjd0PK2LXo7Cv/jADLbV8ii5Xt3O8z6Cpxq52DDpo=) 2: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) 3: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3342 (0xd0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Dec 18 17:50:50 2025 GMT Not After : Dec 25 17:50:50 2025 GMT Subject: CN=69443efa-26da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c3:54:07:a7:d1:ba:b3:e3:7b:c9:2a:f4:82: 97:b7:98:75:b4:f7:64:0f:a6:7e:63:31:5b:f8:a6: 58:db:51:58:68:1f:1f:08:82:aa:f6:37:97:88:dd: 44:49:93:58:31:44:e0:fa:55:25:61:52:b4:30:2d: 53:41:65:7b:a1:19:fc:6e:a0:b7:9b:aa:d0:f6:d1: e2:57:38:a8:bf:c0:2d:a7:ab:8d:af:b5:b5:44:d4: 85:1c:27:7a:e4:00:c6:6c:09:fd:03:cd:cd:92:63: 07:a4:31:6a:ab:2b:7c:b5:32:35:eb:32:78:47:1b: 6f:34:91:f8:f4:fb:f1:00:56:e3:23:61:09:5c:5e: 60:56:86:47:d9:c1:37:39:4d:80:6e:7a:64:7b:34: e4:83:5d:0d:d4:c2:7f:b1:04:57:a7:de:93:e3:bf: f4:7e:22:8a:65:b3:25:63:5d:56:4e:c1:cb:cc:ce: de:e4:f7:07:40:1f:22:a6:50:18:41:dd:f2:68:18: e3:cc:c1:05:44:5f:60:ec:9e:5c:07:41:75:8c:7c: 8b:49:5e:9e:57:d0:6f:b0:c9:47:7c:d3:a9:c6:8a: 1f:cc:e7:20:41:7b:b8:6a:e2:be:1a:16:22:9d:d8: ae:19:0e:17:b3:34:65:0d:c5:74:1f:c4:04:52:52: 26:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EF:DA:91:08:9A:D1:DC:BF:58:21:CA:E0:C5:06:D6:34:9E:99:03 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c4:c2:03:fc:0e:76:bf:a9:4c:67:cb:e1:2a:a2:9f:ba:4c: 83:84:13:5a:d9:53:07:ad:2b:e4:be:d8:4c:59:8e:53:41:76: 9f:dd:6a:cf:f7:2b:23:92:a8:5e:ea:e6:77:d9:ef:11:4d:0e: b4:cf:e7:89:8d:a5:1b:8c:b1:4f:c6:68:7f:5c:e0:34:d5:b2: 60:b9:42:99:42:d2:e3:d9:57:c2:0d:c1:d4:7d:06:34:16:49: d0:38:ed:f8:35:7a:0e:25:4c:e9:4b:e1:46:46:c4:6d:05:f7: 45:34:c9:66:2f:15:8f:7f:7d:c7:e7:36:f6:64:03:5b:42:d2: 75:9f:58:fa:19:af:d0:04:c4:82:d3:7d:2e:93:ad:96:ae:cb: 74:c4:be:92:d5:a7:4f:77:bd:79:09:19:02:a0:40:b8:d3:02: 20:22:c3:6c:bb:ae:10:22:36:51:e7:2d:19:60:b7:10:cc:27: 4b:0c:e9:cb:37:2a:91:81:f6:99:30:50:0d:b5:70:b8:11:47: f4:79:42:c9:12:38:19:74:db:0b:a5:d2:ca:ee:6c:84:c6:38: 2d:02:b0:29:c4:26:c3:01:c4:73:ed:0e:f5:c5:13:ed:34:cb: ea:fe:97:c1:72:76:7d:0a:08:84:c8:be:82:9a:b7:7f:56:93: bf:21:af:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUxMjE4MTc1MDUwWhcNMjUxMjI1MTc1MDUwWjAYMRYwFAYD VQQDDA02OTQ0M2VmYS0yNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMNUB6fRurPje8kq9IKXt5h1tPdkD6Z+YzFb+KZY21FYaB8fCIKq9jeXiN1E SZNYMUTg+lUlYVK0MC1TQWV7oRn8bqC3m6rQ9tHiVziov8Atp6uNr7W1RNSFHCd6 5ADGbAn9A83NkmMHpDFqqyt8tTI16zJ4RxtvNJH49PvxAFbjI2EJXF5gVoZH2cE3 OU2AbnpkezTkg10N1MJ/sQRXp96T47/0fiKKZbMlY11WTsHLzM7e5PcHQB8iplAY Qd3yaBjjzMEFRF9g7J5cB0F1jHyLSV6eV9BvsMlHfNOpxoofzOcgQXu4auK+GhYi ndiuGQ4XszRlDcV0H8QEUlImMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbv2pEI mtHcv1ghyuDFBtY0npkDMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArxMID/A52v6lMZ8vhKqKfukyDhBNa2VMHrSvkvthMWY5TQXaf3WrP 9ysjkqhe6uZ32e8RTQ60z+eJjaUbjLFPxmh/XOA01bJguUKZQtLj2VfCDcHUfQY0 FknQOO34NXoOJUzpS+FGRsRtBfdFNMlmLxWPf33H5zb2ZANbQtJ1n1j6Ga/QBMSC 030uk62Wrst0xL6S1adPd715CRkCoEC40wIgIsNsu64QIjZR5y0ZYLcQzCdLDOnL NyqRgfaZMFANtXC4EUf0eULJEjgZdNsLpdLK7myExjgtArApxCbDAcRz7Q71xRPt NMvq/pfBcnZ9CgiEyL6Cmrd/VpO/Ia9S -----END CERTIFICATE-----Generated at Fri Dec 19 18:01:43 2025 by rpki-client