This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: PpRIalyhetDrL0VjpzOUhlncTR5uHOwkdq3OQdPUUF0= Subject key identifier: A5:37:64:52:92:10:93:62:87:EA:A9:0D:9C:34:68:0F:66:A8:AF:0B Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07EE Signing time: Sat 20 Dec 2025 20:35:35 +0000 Manifest this update: Sat 20 Dec 2025 20:35:34 +0000 Manifest next update: Sat 27 Dec 2025 20:35:34 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: dC9O14Sr8g/faFSGVh1R2sGCxsU9bSE2541gDwcihJ0=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Dec 20 20:35:34 2025 GMT Not After : Dec 27 20:35:34 2025 GMT Subject: CN=69470897-8d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c9:a7:98:e8:54:6e:20:42:9a:84:39:e2:b9: 7f:41:36:da:09:c8:e1:29:65:fc:ca:6e:3f:f0:f1: f7:d1:26:c3:08:f4:36:6c:fe:4a:71:76:f9:ab:dc: f5:3b:e3:59:11:73:81:58:8d:f6:de:96:7a:72:85: 19:6f:16:71:0e:db:54:96:ba:43:45:49:ff:b5:06: 65:1f:9c:84:d5:a0:7d:f2:8d:02:eb:2f:8f:8a:71: d2:8b:ba:59:20:de:a2:1f:7b:59:f3:1a:93:b7:51: 53:c4:5c:89:ed:e4:c5:0b:1f:dc:67:fa:fa:aa:fd: 92:e8:f7:44:71:36:e2:9b:b1:ff:10:60:e3:79:f4: 25:09:d2:b2:6e:5a:8d:da:a5:af:c5:c3:97:d9:a6: 8c:4d:82:a4:58:6d:f0:89:0a:06:5b:26:0c:57:7b: ec:ae:dd:80:43:e8:3d:9a:97:0a:bf:7a:b5:3d:dd: 4e:30:18:ea:28:5d:71:c7:a9:5b:6c:64:05:53:98: 6b:40:21:0c:3a:e9:ac:fe:24:8e:d7:ea:a6:ea:4e: f6:9b:f2:44:c6:22:26:f6:cb:f5:2e:02:f2:71:aa: 6e:e5:ce:c8:2d:c1:c4:a2:48:02:41:b8:80:82:ba: 14:19:31:1b:35:ed:24:6d:bf:3d:f3:ca:e9:2c:46: d6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:37:64:52:92:10:93:62:87:EA:A9:0D:9C:34:68:0F:66:A8:AF:0B X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:bf:11:3a:71:e1:32:86:e8:47:61:8f:ee:a3:a1:11:4d:1a: de:5d:52:6b:c0:1d:b6:33:2b:1a:72:02:e1:7c:41:c8:77:db: f8:b7:82:83:ab:a5:e7:ab:22:9f:56:b0:00:77:df:fc:a5:7f: 66:d2:56:73:25:a3:6d:e7:9b:b2:d2:b6:37:8a:59:05:f7:50: aa:cf:ab:93:09:b4:b6:21:64:a2:fe:27:a0:b4:14:3c:a9:81: 00:b7:51:2c:61:46:45:de:54:63:77:31:85:ee:1e:ce:f1:9a: f2:a9:ff:56:8d:a5:cd:42:a4:01:6a:f6:16:4e:1b:a7:ee:9e: f9:f1:8a:53:89:10:3f:c3:f9:4d:d6:0b:8d:9f:24:42:40:fa: 07:e5:29:8a:41:07:2b:b9:c2:67:85:bc:86:03:23:09:2d:be: 60:16:6a:50:19:d5:76:31:e2:af:eb:0c:5b:87:b7:32:14:1b: 06:7b:7d:92:5a:f7:df:39:48:55:4f:da:1a:e7:83:87:48:a7: 5b:bd:09:2b:9b:57:20:99:b3:15:ac:3d:4f:5c:7b:b9:62:1d: 54:e6:e4:4f:cf:89:ce:11:6b:50:35:10:48:34:ab:09:73:43: a8:49:1b:46:c5:9d:06:d7:86:19:94:14:e5:8e:9c:1d:8c:ed: 82:bd:08:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMjIwMjAzNTM0WhcNMjUxMjI3MjAzNTM0WjAYMRYwFAYD VQQDDA02OTQ3MDg5Ny04ZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMmnmOhUbiBCmoQ54rl/QTbaCcjhKWX8ym4/8PH30SbDCPQ2bP5KcXb5q9z1 O+NZEXOBWI323pZ6coUZbxZxDttUlrpDRUn/tQZlH5yE1aB98o0C6y+PinHSi7pZ IN6iH3tZ8xqTt1FTxFyJ7eTFCx/cZ/r6qv2S6PdEcTbim7H/EGDjefQlCdKyblqN 2qWvxcOX2aaMTYKkWG3wiQoGWyYMV3vsrt2AQ+g9mpcKv3q1Pd1OMBjqKF1xx6lb bGQFU5hrQCEMOums/iSO1+qm6k72m/JExiIm9sv1LgLycapu5c7ILcHEokgCQbiA groUGTEbNe0kbb8988rpLEbWNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKU3ZFKS EJNih+qpDZw0aA9mqK8LMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSvxE6ceEyhuhHYY/uo6ERTRreXVJrwB22MysacgLhfEHId9v4t4KD q6XnqyKfVrAAd9/8pX9m0lZzJaNt55uy0rY3ilkF91Cqz6uTCbS2IWSi/iegtBQ8 qYEAt1EsYUZF3lRjdzGF7h7O8Zryqf9WjaXNQqQBavYWThun7p758YpTiRA/w/lN 1guNnyRCQPoH5SmKQQcrucJnhbyGAyMJLb5gFmpQGdV2MeKv6wxbh7cyFBsGe32S WvffOUhVT9oa54OHSKdbvQkrm1cgmbMVrD1PXHu5Yh1U5uRPz4nOEWtQNRBINKsJ c0OoSRtGxZ0G14YZlBTljpwdjO2CvQjh -----END CERTIFICATE-----Generated at Sun Dec 21 19:47:29 2025 by rpki-client