This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft File: YsDafzAgXhQZA4UrhjIw-eHi-c0.mft (raw, json) Hash identifier: 99Pwat58wUEJYizSL1gVQcG5gMRLczg9vTMCLBkdYGg= Subject key identifier: 54:C7:76:57:54:21:AC:86:A7:EB:4A:ED:F0:E9:1B:2A:8A:74:4D:C6 Authority key identifier: 62:C0:DA:7F:30:20:5E:14:19:03:85:2B:86:32:30:F9:E1:E2:F9:CD Certificate issuer: /CN=A9175C2B/serialNumber=62C0DA7F30205E141903852B863230F9E1E2F9CD Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft Manifest number: 01AA Signing time: Tue 23 Dec 2025 02:14:33 +0000 Manifest this update: Tue 23 Dec 2025 02:14:32 +0000 Manifest next update: Tue 30 Dec 2025 02:14:32 +0000 Files and hashes: 1: YsDafzAgXhQZA4UrhjIw-eHi-c0.crl (hash: aFKErAmUXWzAtW+w2TTPIwziS3LgSX9vgxfsf2dC3h4=) 2: 0EB2F53A59A711EE9419DA2DC4F9AE02.roa (hash: SEbumSKURIV/eHCI58ieU83y5eYeF9FfOCAWx1SOX3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.crl rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175C2B, serialNumber=62C0DA7F30205E141903852B863230F9E1E2F9CD Validity Not Before: Dec 23 02:14:32 2025 GMT Not After : Dec 30 02:14:32 2025 GMT Subject: CN=6949fb09-65ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0b:a0:cd:5b:ff:5f:b4:7f:04:7d:c8:37:df: 28:f2:91:97:9f:d8:74:00:db:5a:a8:5b:67:3d:0e: 58:70:b3:cd:37:e5:c4:3c:45:f3:43:94:cc:85:d8: 3b:d6:33:7e:d2:92:c2:c3:e9:76:84:86:df:33:e0: 7d:89:3e:cb:57:a3:be:76:79:1c:fd:86:97:83:7f: 92:fc:aa:7a:fe:ed:c9:d9:80:cb:1c:38:89:77:51: 69:ad:e7:3a:1e:5f:0b:96:0f:f6:16:27:66:75:56: 46:b4:c4:b0:ee:44:b1:7e:ef:b1:0e:b0:fe:e7:6b: 15:72:03:96:84:78:17:d7:e9:04:00:d3:c1:05:35: 07:6d:75:01:b7:75:ca:29:62:30:86:ec:ff:84:af: 3f:64:8b:1a:55:e0:66:fa:73:36:13:cb:60:cd:70: ca:9b:1e:ab:b0:61:f9:13:68:30:96:cb:30:8f:68: 86:bf:86:c3:94:67:c7:0a:73:fe:46:77:e6:f5:73: c4:b8:fb:24:7f:97:fb:45:0f:d8:fd:10:c6:7a:e5: c9:1b:8f:92:ae:3a:6e:f8:fc:23:e9:74:8b:2f:b0: a3:03:0f:57:ed:28:00:0f:e0:43:87:4e:eb:63:01: ad:8e:f2:81:92:83:5a:af:5e:66:94:01:eb:1c:3f: 05:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C7:76:57:54:21:AC:86:A7:EB:4A:ED:F0:E9:1B:2A:8A:74:4D:C6 X509v3 Authority Key Identifier: keyid:62:C0:DA:7F:30:20:5E:14:19:03:85:2B:86:32:30:F9:E1:E2:F9:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsDafzAgXhQZA4UrhjIw-eHi-c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175C2B/EEBBC116535311EEAEAF0B80C4F9AE02/YsDafzAgXhQZA4UrhjIw-eHi-c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:4f:24:ba:7f:dc:df:4d:2f:9d:4b:c4:7e:bc:b0:71:4e:36: a3:d3:24:a3:69:c6:00:8d:3b:62:43:9a:0b:0c:8a:be:1e:cc: 48:95:19:98:3f:96:77:59:b4:fe:e0:4a:0a:24:7c:65:e5:97: e8:4a:ed:79:bb:d0:f3:6e:76:1b:f1:63:2d:1d:7f:89:93:4b: 08:de:7f:9a:70:59:e1:d5:50:a1:06:b5:c9:b7:43:48:0b:93: bd:e7:44:98:4f:50:5a:2b:0c:a2:be:b4:6c:8c:44:c1:eb:ec: e6:59:55:11:cc:eb:5d:fc:2a:21:8e:36:65:a5:29:d5:7c:18: ae:4c:fc:74:ed:5e:5b:21:8f:88:d9:6c:fb:f3:4f:b9:ac:7d: 1b:af:c4:61:7f:2e:70:46:89:7b:ed:d9:6e:23:8d:4a:b1:06: 97:6a:09:53:92:2e:19:27:3a:97:36:87:51:c1:7d:f7:e7:46: 54:ad:d3:15:5b:15:a9:9c:50:5f:fb:8c:eb:b7:4d:8c:c1:05: d8:a1:bd:15:8f:45:49:e7:d0:35:4d:f1:e8:38:39:de:e2:2b: e0:16:b0:7a:fe:da:ab:c9:76:8e:76:45:4a:75:76:a1:cd:fb: c6:b6:b0:7b:d6:9d:33:20:54:dd:c8:86:d4:7c:1f:77:cc:d7: 61:e2:6f:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVDMkIxMTAvBgNVBAUTKDYyQzBEQTdGMzAyMDVFMTQxOTAzODUyQjg2MzIzMEY5 RTFFMkY5Q0QwHhcNMjUxMjIzMDIxNDMyWhcNMjUxMjMwMDIxNDMyWjAYMRYwFAYD VQQDDA02OTQ5ZmIwOS02NWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgugzVv/X7R/BH3IN98o8pGXn9h0ANtaqFtnPQ5YcLPNN+XEPEXzQ5TMhdg7 1jN+0pLCw+l2hIbfM+B9iT7LV6O+dnkc/YaXg3+S/Kp6/u3J2YDLHDiJd1Fprec6 Hl8Llg/2FidmdVZGtMSw7kSxfu+xDrD+52sVcgOWhHgX1+kEANPBBTUHbXUBt3XK KWIwhuz/hK8/ZIsaVeBm+nM2E8tgzXDKmx6rsGH5E2gwlsswj2iGv4bDlGfHCnP+ Rnfm9XPEuPskf5f7RQ/Y/RDGeuXJG4+Srjpu+Pwj6XSLL7CjAw9X7SgAD+BDh07r YwGtjvKBkoNar15mlAHrHD8FwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTHdldU IayGp+tK7fDpGyqKdE3GMB8GA1UdIwQYMBaAFGLA2n8wIF4UGQOFK4YyMPnh4vnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUMyQi9FRUJCQzExNjUz NTMxMUVFQUVBRjBCODBDNEY5QUUwMi9Zc0RhZnpBZ1hoUVpBNFVyaGpJdy1lSGkt YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzRGFmekFnWGhRWkE0VXJoakl3LWVIaS1jMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUMyQi9FRUJCQzExNjUzNTMxMUVFQUVBRjBCODBDNEY5QUUwMi9Zc0RhZnpBZ1ho UVpBNFVyaGpJdy1lSGktYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2TyS6f9zfTS+dS8R+vLBxTjaj0ySjacYAjTtiQ5oLDIq+HsxIlRmY P5Z3WbT+4EoKJHxl5ZfoSu15u9DzbnYb8WMtHX+Jk0sI3n+acFnh1VChBrXJt0NI C5O950SYT1BaKwyivrRsjETB6+zmWVURzOtd/CohjjZlpSnVfBiuTPx07V5bIY+I 2Wz780+5rH0br8Rhfy5wRol77dluI41KsQaXaglTki4ZJzqXNodRwX3350ZUrdMV WxWpnFBf+4zrt02MwQXYob0Vj0VJ59A1TfHoODne4ivgFrB6/tqryXaOdkVKdXah zfvGtrB71p0zIFTdyIbUfB93zNdh4m8U -----END CERTIFICATE-----Generated at Tue Dec 23 07:37:06 2025 by rpki-client