This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: SacP3iRPw20TZiDLFZx02rS+wVX9ghonXo0n/oTwkbE= Subject key identifier: 7B:D0:CE:61:19:21:67:AA:FD:8C:A9:0A:9F:19:2C:F6:89:1C:C9:41 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C86 Signing time: Thu 18 Dec 2025 18:14:57 +0000 Manifest this update: Thu 18 Dec 2025 18:14:57 +0000 Manifest next update: Thu 25 Dec 2025 18:14:57 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: DFM6n9plT7V2rVeMg8nls1guN/jYLafCa4WpIUT3wRs=) 2: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) 3: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Dec 18 18:14:57 2025 GMT Not After : Dec 25 18:14:57 2025 GMT Subject: CN=694444a1-38a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:48:51:61:ba:c8:c3:c9:e8:9e:18:02:00:80: d8:41:5d:83:cf:7f:01:54:12:75:3c:ca:08:3d:9f: a3:36:d4:75:3a:cb:63:28:c1:41:62:44:8b:0a:0e: a1:91:ca:e7:1f:30:1c:de:a5:17:57:81:85:f2:8d: 54:80:7e:2c:1d:89:12:81:de:5f:4a:7e:09:5d:fb: 35:fd:9b:5d:ff:bb:67:7a:09:e0:5a:a3:cb:46:d8: 75:b6:07:21:7a:1a:d4:44:37:25:b7:dc:4b:42:48: be:d9:48:35:c6:17:f1:cd:0a:77:de:c4:95:e5:96: 9e:fe:4a:49:67:64:4c:52:07:bb:c5:a0:a1:c2:72: 1b:15:ef:cb:00:98:58:4a:0d:78:e3:cb:a7:1c:5d: 12:5a:2a:23:87:c7:0a:b0:4b:f5:ab:0e:9c:7f:ed: 7e:92:8b:53:e6:4f:ed:b8:d1:1d:fb:b3:37:73:72: 7c:e8:e6:bf:e7:fd:51:0b:6d:ac:7a:eb:68:2d:ff: 32:58:7d:36:9b:8c:83:31:8f:51:ee:0a:e1:fd:91: 49:3a:e8:37:a4:86:10:63:44:3d:bf:00:f3:dc:cb: bc:e6:c8:3f:b5:8e:f6:83:bd:d4:d8:c1:b5:99:cc: 69:2a:a9:c8:bc:7c:d5:5d:ee:e5:32:23:71:92:a5: 8f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D0:CE:61:19:21:67:AA:FD:8C:A9:0A:9F:19:2C:F6:89:1C:C9:41 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ba:b0:a6:89:84:f7:a0:db:b1:79:5b:67:a1:8f:d3:23:64: cb:58:61:9e:c4:0b:06:f3:d9:ad:b6:a4:2e:1e:5d:7b:7a:5a: 90:3d:da:d6:c4:80:4a:ae:e1:cd:cb:b9:61:43:5a:13:3c:c7: 3f:48:ab:42:21:66:ed:00:6f:ae:62:69:df:e5:1a:51:22:0f: aa:ce:70:66:53:cf:e3:fe:34:f2:97:82:aa:ee:6e:08:48:09: 4a:74:1d:71:eb:9b:03:ee:39:e0:ed:66:51:c3:00:3a:d6:4d: e5:f8:2e:9f:8e:42:f4:51:ca:d5:94:30:31:ec:f0:31:e5:21: e1:a2:21:9c:51:0c:e7:61:90:bc:e8:c1:f0:9d:18:35:39:ac: 55:51:c9:69:bc:39:84:a3:38:76:06:b7:75:0f:9a:db:6d:3c: 3a:3d:c4:2a:4f:c5:b6:64:af:a1:86:63:f3:92:ef:a4:14:a1: bb:ba:f7:96:61:6e:59:bd:ab:9f:76:48:c0:51:a7:ab:0e:f3: 6b:3e:81:37:59:41:7b:97:5b:44:1b:61:7c:f4:e2:9a:71:1e: a2:c7:24:88:b4:db:d4:8d:f5:3c:8c:a1:7c:d2:1d:70:1f:d0: 7f:5e:de:b2:a8:8b:7b:3c:cd:09:ca:df:ee:f8:12:b2:ca:cc: 50:fd:ad:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUxMjE4MTgxNDU3WhcNMjUxMjI1MTgxNDU3WjAYMRYwFAYD VQQDDA02OTQ0NDRhMS0zOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkhRYbrIw8nonhgCAIDYQV2Dz38BVBJ1PMoIPZ+jNtR1OstjKMFBYkSLCg6h kcrnHzAc3qUXV4GF8o1UgH4sHYkSgd5fSn4JXfs1/Ztd/7tnegngWqPLRth1tgch ehrURDclt9xLQki+2Ug1xhfxzQp33sSV5Zae/kpJZ2RMUge7xaChwnIbFe/LAJhY Sg1448unHF0SWiojh8cKsEv1qw6cf+1+kotT5k/tuNEd+7M3c3J86Oa/5/1RC22s eutoLf8yWH02m4yDMY9R7grh/ZFJOug3pIYQY0Q9vwDz3Mu85sg/tY72g73U2MG1 mcxpKqnIvHzVXe7lMiNxkqWPMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvQzmEZ IWeq/YypCp8ZLPaJHMlBMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcurCmiYT3oNuxeVtnoY/TI2TLWGGexAsG89mttqQuHl17elqQPdrW xIBKruHNy7lhQ1oTPMc/SKtCIWbtAG+uYmnf5RpRIg+qznBmU8/j/jTyl4Kq7m4I SAlKdB1x65sD7jng7WZRwwA61k3l+C6fjkL0UcrVlDAx7PAx5SHhoiGcUQznYZC8 6MHwnRg1OaxVUclpvDmEozh2Brd1D5rbbTw6PcQqT8W2ZK+hhmPzku+kFKG7uveW YW5ZvaufdkjAUaerDvNrPoE3WUF7l1tEG2F89OKacR6ixySItNvUjfU8jKF80h1w H9B/Xt6yqIt7PM0Jyt/u+BKyysxQ/a3J -----END CERTIFICATE-----Generated at Fri Dec 19 15:26:51 2025 by rpki-client