This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft (raw, json) Hash identifier: vKv0qDIbnNPfeuAyqpH8ajvvIEg1LkWjv02z+4xWI5w= Subject key identifier: EC:93:79:D3:58:89:96:57:89:25:5D:D6:CA:E3:3F:C2:BF:09:0F:DE Authority key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 Certificate issuer: /CN=A917E1FA/serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft Manifest number: 67 Signing time: Tue 23 Dec 2025 05:53:54 +0000 Manifest this update: Tue 23 Dec 2025 05:53:54 +0000 Manifest next update: Tue 30 Dec 2025 05:53:54 +0000 Files and hashes: 1: yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl (hash: zQGiAouJPtQOqL8xZhx4u2PaTJC7Jks8q7nIrZpLoZ0=) 2: 7354ACC0472811F0ADE2D44BC4F9AE02.roa (hash: wcclgPl4R6E/Zzr/USbPvSIER4uFng9U6618g1EWkBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Validity Not Before: Dec 23 05:53:54 2025 GMT Not After : Dec 30 05:53:54 2025 GMT Subject: CN=694a2e72-eac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:8f:fc:2d:6d:24:b5:e6:9c:b0:5c:6d:eb: 4d:1f:29:1b:2e:31:b2:a0:2e:a2:69:62:27:99:bb: 5c:94:df:b0:d3:df:64:59:13:0e:85:59:bd:1e:8e: af:3f:99:b5:a1:eb:5e:51:b1:3a:91:bf:fe:5c:d7: 79:9b:10:a9:ad:b6:8e:62:cf:a7:54:64:b2:d4:bd: 0f:66:76:e8:8e:86:75:12:a1:a2:6b:0f:d3:9b:4d: 13:93:02:15:17:ff:fa:dc:00:ca:56:46:78:b7:e1: 16:f4:31:c2:49:bc:62:ca:a4:c0:f3:f8:b8:b6:cb: c8:99:1f:d6:d2:ef:bb:1b:b4:1f:d9:c9:c4:ed:a0: ac:18:25:4f:c7:e9:4a:f6:53:65:dd:8a:e1:42:38: be:9b:ca:5a:9f:6f:42:e6:42:25:31:57:0a:20:d6: 68:11:14:6d:f8:78:fa:65:96:50:f4:33:e4:e4:78: de:58:81:f6:3a:71:c9:71:46:20:cf:fd:6c:d8:b9: 5e:3a:ef:b9:12:ce:8e:d1:b2:6a:1e:a6:96:30:63: f1:9f:38:8a:8f:07:59:1d:38:dd:2d:d9:ae:06:3d: 9d:9e:41:64:bf:d7:73:e2:72:06:88:8f:c6:b3:3a: 55:5b:ca:eb:3d:6f:a4:37:35:ca:0d:c1:1d:0b:42: c5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:93:79:D3:58:89:96:57:89:25:5D:D6:CA:E3:3F:C2:BF:09:0F:DE X509v3 Authority Key Identifier: keyid:C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e5:23:39:cb:3b:99:7b:32:02:5f:ab:f6:df:1f:81:5a:64: 6e:b2:48:9f:9a:f6:17:e2:fd:7e:2c:5c:c4:05:c0:3e:ed:fb: 50:f9:23:7e:61:5d:98:2d:0f:eb:87:af:39:d4:b0:52:4f:41: 75:aa:a8:d1:42:21:83:d2:24:45:c8:6c:44:50:c4:15:22:cd: e2:89:19:52:fb:e9:4d:6d:2e:ca:c7:32:46:77:4a:82:8a:b3: 3f:ff:49:82:46:b4:6c:48:5f:6c:56:ef:65:98:05:94:13:4f: 7e:b4:71:8a:bc:39:3d:fe:46:19:44:7a:c9:b3:87:f5:26:e8: 3c:43:92:f4:be:76:82:76:0d:bb:23:d8:8e:64:3e:da:22:27: 8e:cb:46:40:f7:79:cb:ed:23:7b:77:86:82:78:eb:4e:68:70: 7d:fe:ca:5d:15:f2:67:f7:84:56:36:90:2c:42:81:ff:90:40: e2:d3:09:da:94:ab:b0:b3:08:cc:bf:07:d8:97:7a:30:d3:de: a4:a7:1d:40:5a:a8:58:86:f9:ee:3a:11:8c:5f:87:72:13:c8: 82:2e:f2:1f:12:76:82:e1:4d:53:81:93:a6:12:49:47:bf:cd: 0d:35:1c:56:5f:00:85:86:cb:8c:40:75:45:4e:1b:ec:a3:3e: 08:a2:b0:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoQzkxMkIwNTRDQTQzQTkzNEMxNzc1NzMzRDg0QkYxNkU0 ODU2QkVGMDAeFw0yNTEyMjMwNTUzNTRaFw0yNTEyMzAwNTUzNTRaMBgxFjAUBgNV BAMMDTY5NGEyZTcyLWVhYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVbI/8LW0kteacsFxt600fKRsuMbKgLqJpYieZu1yU37DT32RZEw6FWb0ejq8/ mbWh615RsTqRv/5c13mbEKmtto5iz6dUZLLUvQ9mduiOhnUSoaJrD9ObTROTAhUX //rcAMpWRni34Rb0McJJvGLKpMDz+Li2y8iZH9bS77sbtB/ZycTtoKwYJU/H6Ur2 U2XdiuFCOL6bylqfb0LmQiUxVwog1mgRFG34ePplllD0M+TkeN5YgfY6cclxRiDP /WzYuV4677kSzo7RsmoeppYwY/GfOIqPB1kdON0t2a4GPZ2eQWS/13PicgaIj8az OlVbyus9b6Q3NcoNwR0LQsXRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7JN501iJ lleJJV3WyuM/wr8JD94wHwYDVR0jBBgwFoAUyRKwVMpDqTTBd1cz2EvxbkhWvvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBL0EyRDVFRTVFNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRUQmQxY3oyRXZ4YmtoV3Z2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJLd1ZNcERxVFRCZDFjejJFdnhia2hXdnZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBL0EyRDVFRTVFNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRU QmQxY3oyRXZ4YmtoV3Z2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEXlIznLO5l7MgJfq/bfH4FaZG6ySJ+a9hfi/X4sXMQFwD7t+1D5I35h XZgtD+uHrznUsFJPQXWqqNFCIYPSJEXIbERQxBUizeKJGVL76U1tLsrHMkZ3SoKK sz//SYJGtGxIX2xW72WYBZQTT360cYq8OT3+RhlEesmzh/Um6DxDkvS+doJ2Dbsj 2I5kPtoiJ47LRkD3ecvtI3t3hoJ4605ocH3+yl0V8mf3hFY2kCxCgf+QQOLTCdqU q7CzCMy/B9iXejDT3qSnHUBaqFiG+e46EYxfh3ITyIIu8h8SdoLhTVOBk6YSSUe/ zQ01HFZfAIWGy4xAdUVOG+yjPgiisEE= -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:29 2025 by rpki-client