This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft File: Ys-2EOllD-PIACvGF7cFck0qAt0.mft (raw, json) Hash identifier: xN8wkDFk0B76x24uC43WFHz9OtZm8dN37YQ3ZOGqqFg= Subject key identifier: F6:34:16:56:DD:4D:2D:06:D0:2B:B4:16:A0:3A:72:D3:9C:BC:96:6F Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 1891 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft Manifest number: 1883 Signing time: Mon 22 Dec 2025 16:15:08 +0000 Manifest this update: Mon 22 Dec 2025 16:15:08 +0000 Manifest next update: Mon 29 Dec 2025 16:15:08 +0000 Files and hashes: 1: Ys-2EOllD-PIACvGF7cFck0qAt0.crl (hash: qoQ9qGdQSMRqNSNPxliRVdLcjphT9qYVesyMLlFrOdk=) 2: C1C12662CFC811EB9A5C5879C4F9AE02.roa (hash: XNKpRb8/02tHDrrS9S3tLwWbmiJabIsnKyEKhJUYUM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6289 (0x1891) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1, serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Dec 22 16:15:08 2025 GMT Not After : Dec 29 16:15:08 2025 GMT Subject: CN=69496e8c-dff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:13:db:73:72:1b:89:fa:c2:8b:a0:4f:a1:b2: 1e:4f:51:0a:30:d1:04:23:94:be:a0:7a:56:27:9c: 91:9b:83:39:53:33:8b:ec:c1:77:aa:ad:9b:fe:38: d0:01:5e:e9:9f:09:3f:f5:06:7b:b3:3a:17:c9:0f: f4:ca:80:86:49:3f:0b:64:40:8d:ed:97:e9:af:fb: a2:dc:24:a2:2b:cb:ba:58:c8:8f:08:ec:88:ce:a1: 70:e2:6a:df:45:40:cc:ad:65:74:74:c8:cc:2e:78: b1:96:ae:ee:a7:4f:a0:75:50:a8:89:43:21:52:35: 2d:d0:37:65:4a:84:7b:62:e3:ef:f2:1c:a0:ac:99: e2:3b:17:fc:cb:4a:f5:3f:9f:42:42:ba:e7:2e:ec: 6a:1d:3a:05:6f:10:c6:a1:91:b4:9f:d9:8e:c6:6c: 70:e5:a4:6c:12:01:fd:15:e6:3a:a3:ed:5f:99:bc: af:16:bd:0d:62:20:3c:f2:d1:ed:fb:01:15:f6:6e: f6:6d:40:9b:fe:fa:ce:ed:c7:69:6f:24:e7:7e:58: 74:6e:ec:b4:a5:02:ac:15:cf:cc:1e:d5:ed:ff:e6: c2:94:9a:34:31:c5:7f:1f:2f:1f:83:da:fe:15:3a: ca:4f:22:75:0e:2a:1b:d0:23:98:49:c5:f2:38:bc: b4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:34:16:56:DD:4D:2D:06:D0:2B:B4:16:A0:3A:72:D3:9C:BC:96:6F X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:46:6c:f9:c6:d3:f1:95:b8:81:35:4e:3f:0a:a4:e7:8c:3e: c3:9b:4f:af:ac:4b:bd:27:25:12:b4:5b:24:32:8a:b2:db:ba: 6b:5e:58:e8:01:f6:06:70:2b:81:3b:d5:e1:e1:d3:eb:ff:01: 6e:8e:b6:f7:b6:0f:d0:e6:bc:79:75:40:36:c4:22:f7:63:de: e9:28:ee:c6:11:78:b0:99:87:67:2a:db:8d:86:b3:1d:66:3c: 83:3e:73:71:5c:f1:18:96:5d:d2:75:96:b3:fd:6d:34:ab:79: d1:26:68:b2:18:36:b8:51:8f:37:11:b5:9c:31:2d:11:d8:49: ca:ff:49:64:e4:bf:64:e7:ab:aa:2c:51:4b:a7:11:5f:19:c6: e0:ae:ef:66:c1:9a:7d:e1:85:90:6b:35:fc:18:a6:75:b4:1d: 7a:f9:23:d8:61:1d:b1:ec:a5:e2:38:64:60:1b:7c:0d:5f:7a: 18:04:f1:52:e5:91:bf:0d:25:8a:c1:e2:b0:32:f8:0a:21:4e: 74:de:3b:c8:f4:2e:9c:8b:df:ea:46:ce:81:ca:34:11:df:82: a3:be:20:0f:b6:88:ff:00:09:48:6d:6a:a2:16:62:81:f3:02: 60:f5:4e:80:59:db:92:1a:bd:42:a6:91:2c:97:af:ac:94:1d: 08:77:88:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjUxMjIyMTYxNTA4WhcNMjUxMjI5MTYxNTA4WjAYMRYwFAYD VQQDDA02OTQ5NmU4Yy1kZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxPbc3IbifrCi6BPobIeT1EKMNEEI5S+oHpWJ5yRm4M5UzOL7MF3qq2b/jjQ AV7pnwk/9QZ7szoXyQ/0yoCGST8LZECN7Zfpr/ui3CSiK8u6WMiPCOyIzqFw4mrf RUDMrWV0dMjMLnixlq7up0+gdVCoiUMhUjUt0DdlSoR7YuPv8hygrJniOxf8y0r1 P59CQrrnLuxqHToFbxDGoZG0n9mOxmxw5aRsEgH9FeY6o+1fmbyvFr0NYiA88tHt +wEV9m72bUCb/vrO7cdpbyTnflh0buy0pQKsFc/MHtXt/+bClJo0McV/Hy8fg9r+ FTrKTyJ1Diob0COYScXyOLy02wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPY0Flbd TS0G0Cu0FqA6ctOcvJZvMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjFCMS9BMEYwQURGMEIyNTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQt UElBQ3ZHRjdjRmNrMHFBdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFRmz5xtPxlbiBNU4/CqTnjD7Dm0+vrEu9JyUStFskMoqy27prXljo AfYGcCuBO9Xh4dPr/wFujrb3tg/Q5rx5dUA2xCL3Y97pKO7GEXiwmYdnKtuNhrMd ZjyDPnNxXPEYll3SdZaz/W00q3nRJmiyGDa4UY83EbWcMS0R2EnK/0lk5L9k56uq LFFLpxFfGcbgru9mwZp94YWQazX8GKZ1tB16+SPYYR2x7KXiOGRgG3wNX3oYBPFS 5ZG/DSWKweKwMvgKIU503jvI9C6ci9/qRs6ByjQR34KjviAPtoj/AAlIbWqiFmKB 8wJg9U6AWduSGr1CppEsl6+slB0Id4i+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:41 2025 by rpki-client