This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft File: _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json) Hash identifier: yPHkXAAcijwmjjEn2f7tgOtlQBhiZasf5meOfiHdLDI= Subject key identifier: 60:A2:37:FC:85:61:B3:67:4D:D7:DB:F0:B3:91:38:3C:76:34:36:20 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft Manifest number: C2 Signing time: Sun 07 Dec 2025 04:07:01 +0000 Manifest this update: Sun 07 Dec 2025 04:07:01 +0000 Manifest next update: Sun 14 Dec 2025 04:07:01 +0000 Files and hashes: 1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: nW6vrodULmxq4ZuPzZtrkz8NoTI+JuxwUOIw4h8bjhI=) 2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: Rc9brTS9qhrwUI4y6KFA7OXRuq+HA76Zn61TGx8tdAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Dec 7 04:07:01 2025 GMT Not After : Dec 14 04:07:01 2025 GMT Subject: CN=6934fd65-fad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3e:bd:18:46:ad:9c:9f:ad:cb:b7:1b:fb:d2: 73:d4:f6:c4:a8:32:d1:e7:7c:51:fa:78:d1:1d:3e: 97:54:7b:78:1b:1f:71:fe:73:83:28:11:cd:a9:de: 76:fd:b8:ae:3d:b0:ee:23:ff:38:57:e5:74:9c:60: c5:c1:95:05:7c:21:f8:bf:82:e5:35:88:01:43:e8: 17:a4:9c:54:23:d1:d5:93:da:39:aa:d8:4a:ea:4f: f3:e7:6c:c4:47:29:f6:3b:1b:5b:ff:23:1c:a6:ec: d3:3c:93:01:07:03:86:58:dc:9d:b5:62:9c:86:f9: bf:67:24:12:e0:4f:63:31:fc:91:b8:75:a9:58:c1: 4e:8c:fd:27:f3:03:77:0c:a2:cc:01:e8:0f:d1:04: 2a:4e:03:c9:cc:dd:de:8b:b3:b2:f9:33:ca:90:8f: 28:92:26:44:a3:43:84:f2:8b:e9:2e:3a:6c:a6:fd: f4:40:b3:42:00:7f:81:cb:75:d1:a8:87:a7:c7:2a: 72:09:d4:1b:04:1c:23:70:d6:80:4d:50:81:33:9b: 56:81:c4:e9:0e:fa:c5:3c:3f:94:70:d1:e8:21:74: 21:93:e4:0d:2c:88:d9:c0:db:f4:14:d0:d8:23:5d: 4a:34:68:af:21:5c:79:20:1c:ac:e7:46:01:7d:7f: f9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A2:37:FC:85:61:B3:67:4D:D7:DB:F0:B3:91:38:3C:76:34:36:20 X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e9:8c:c8:58:a7:21:ea:02:71:79:74:06:1d:c0:5e:bb:d8: 9c:8e:eb:d5:86:b1:a8:42:69:c5:77:85:81:f1:a9:af:38:c9: c1:c6:6a:f7:50:15:4a:88:44:ed:db:e7:87:fc:1d:1e:67:33: 8a:90:ca:21:f0:0b:2e:19:36:97:49:51:cd:b9:30:bb:47:15: fe:82:5c:4c:f0:ee:08:37:38:5c:0a:83:a8:ba:6e:3b:62:05: c1:c2:de:2c:9c:17:c8:54:cd:f5:1f:20:b6:29:b8:02:49:59: cd:5d:9a:bd:3b:55:f8:d1:cd:e9:3f:f6:bd:3a:71:c5:5b:06: 54:fc:98:48:1b:29:16:83:de:58:b2:22:b5:df:67:07:c5:39: 73:af:0e:0a:a6:dd:a8:1c:28:f4:b5:bd:a3:76:83:11:53:b8: d5:39:f0:54:54:e2:86:d2:98:21:55:14:01:e1:ed:05:96:f8: 56:01:c9:ff:ca:ca:cd:50:23:2d:11:4a:b3:91:7d:ec:e5:c6: e5:5f:15:33:ee:b2:0d:d0:ae:a0:76:47:42:72:e0:c1:72:37: a0:d6:bc:20:16:65:ea:a8:98:bc:4c:89:eb:26:c9:50:d9:8a: d3:3c:05:69:b9:b4:a9:bd:a3:e7:bb:bf:09:81:8c:e4:37:fe: 28:9d:f8:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEZEODhERUY5QTZCRERCRUE1OTM4OUVEQzYxNzFBQURD QTEwNkI1MDkwHhcNMjUxMjA3MDQwNzAxWhcNMjUxMjE0MDQwNzAxWjAYMRYwFAYD VQQDEw02OTM0ZmQ2NS1mYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqT69GEatnJ+ty7cb+9Jz1PbEqDLR53xR+njRHT6XVHt4Gx9x/nODKBHNqd52 /biuPbDuI/84V+V0nGDFwZUFfCH4v4LlNYgBQ+gXpJxUI9HVk9o5qthK6k/z52zE Ryn2Oxtb/yMcpuzTPJMBBwOGWNydtWKchvm/ZyQS4E9jMfyRuHWpWMFOjP0n8wN3 DKLMAegP0QQqTgPJzN3ei7Oy+TPKkI8okiZEo0OE8ovpLjpspv30QLNCAH+By3XR qIenxypyCdQbBBwjcNaATVCBM5tWgcTpDvrFPD+UcNHoIXQhk+QNLIjZwNv0FNDY I11KNGivIVx5IBys50YBfX/5+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCiN/yF YbNnTdfb8LORODx2NDYgMB8GA1UdIwQYMBaAFP2I3vmmvdvqWTie3GFxqtyhBrUJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FREFCRDIzMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTItcFpPSjdjWVhHcTNLRUd0 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FREFCRDIzMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTIt cFpPSjdjWVhHcTNLRUd0UWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG6YzIWKch6gJxeXQGHcBeu9icjuvVhrGoQmnFd4WB8amvOMnBxmr3 UBVKiETt2+eH/B0eZzOKkMoh8AsuGTaXSVHNuTC7RxX+glxM8O4INzhcCoOoum47 YgXBwt4snBfIVM31HyC2KbgCSVnNXZq9O1X40c3pP/a9OnHFWwZU/JhIGykWg95Y siK132cHxTlzrw4Kpt2oHCj0tb2jdoMRU7jVOfBUVOKG0pghVRQB4e0FlvhWAcn/ ysrNUCMtEUqzkX3s5cblXxUz7rIN0K6gdkdCcuDBcjeg1rwgFmXqqJi8TInrJslQ 2YrTPAVpubSpvaPnu78JgYzkN/4onfgd -----END CERTIFICATE-----Generated at Mon Dec 8 05:59:44 2025 by rpki-client