This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: 5xpE+LJI5a3yOkk4icukF77A4A+K+Qiav4Zjo61QYQo= Subject key identifier: AA:8E:A6:71:6E:DB:B0:89:AE:40:A6:4F:2B:9B:63:0B:CA:18:CA:74 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 0967 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 095F Signing time: Thu 18 Dec 2025 19:41:13 +0000 Manifest this update: Thu 18 Dec 2025 19:41:12 +0000 Manifest next update: Thu 25 Dec 2025 19:41:12 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: 2VOnHIZsHM+P7h3wWH+k6Ky7A6SVAyBIfZiC1qDPqHg=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2407 (0x967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Dec 18 19:41:12 2025 GMT Not After : Dec 25 19:41:12 2025 GMT Subject: CN=694458d8-0cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1f:26:76:6c:20:2d:a8:a8:1c:b3:52:b3:00: 39:12:12:1d:54:6f:65:79:c7:81:f2:62:63:5e:d7: e4:42:fc:ba:a3:ed:c2:fd:be:e9:3e:50:03:77:fb: 84:5a:3b:df:64:55:af:54:54:f3:ce:1d:79:8a:62: 44:d4:4c:c2:59:c8:44:ad:39:a4:ee:0f:12:d3:5b: ae:5e:5c:17:28:2c:26:93:11:35:9c:e5:41:b7:e5: 28:b8:73:2d:e0:3e:28:02:a1:b4:1f:8f:d6:8c:f6: 53:9a:62:75:38:63:11:a4:27:38:b6:b0:37:ce:e5: 36:1e:58:9a:ca:f1:07:19:56:fb:f9:f1:7f:06:aa: ad:3e:c4:d1:92:70:49:40:0c:79:92:18:57:f2:e0: 75:4c:cb:28:5b:4b:cd:a0:64:e8:14:db:b1:5e:c6: 83:af:c2:6f:45:5c:1c:42:cf:b1:8a:2d:46:e9:7c: db:a7:42:9e:98:fb:fb:9c:6a:fd:7f:50:a7:31:7d: bc:76:38:c8:3e:d6:17:9d:a7:98:f4:74:41:e3:86: 4f:19:7c:ba:b8:5e:b3:32:0e:38:41:0d:73:b8:30: 1a:82:8f:e5:a0:bf:2c:e8:03:26:5c:9d:08:82:aa: 91:97:63:33:cd:aa:7a:09:29:d0:ff:d6:8a:f6:52: c9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8E:A6:71:6E:DB:B0:89:AE:40:A6:4F:2B:9B:63:0B:CA:18:CA:74 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ec:3a:08:73:70:a9:9c:96:02:4c:47:79:fb:e8:fa:be:7b: 89:94:49:af:56:cd:ac:1f:91:a1:79:eb:87:15:38:3c:aa:12: d5:f8:14:ee:f1:27:37:40:6b:ee:b2:dc:b9:2d:7f:5f:45:b9: 32:e5:2e:5a:af:ef:8d:8a:44:11:81:8c:1d:27:59:5b:2d:a6: 5f:4e:74:09:37:3d:a4:32:ff:12:32:8d:c8:d6:ef:1c:77:82: 07:c8:22:8e:16:5a:bd:c6:4d:3a:09:1a:3f:7b:52:93:13:90: 9a:c6:dd:55:7e:fe:56:d8:99:69:e3:eb:32:f8:56:09:82:41: 86:92:c2:3a:f0:f6:81:14:4c:58:30:85:fa:f6:f6:64:46:6c: fe:ed:fc:6a:fe:c6:5d:31:93:02:f7:b1:9c:60:0d:c2:c4:f2: 59:99:1e:02:88:f9:90:ef:2a:b5:dc:99:a9:65:41:95:c2:a8: a4:3b:54:40:0e:69:fe:9e:1e:55:d7:8b:36:66:d8:8e:05:3b: 48:5f:b8:49:1b:6b:cd:48:0e:93:93:f6:4e:b8:05:72:5d:43: a1:88:e0:8e:fc:ea:f2:31:a8:3f:47:b6:76:d8:fe:20:ce:c2: 14:14:97:44:9a:4d:fc:35:6f:70:7d:a9:2c:56:f3:22:8b:18: 3e:ab:d9:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUxMjE4MTk0MTEyWhcNMjUxMjI1MTk0MTEyWjAYMRYwFAYD VQQDDA02OTQ0NThkOC0wY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlR8mdmwgLaioHLNSswA5EhIdVG9leceB8mJjXtfkQvy6o+3C/b7pPlADd/uE WjvfZFWvVFTzzh15imJE1EzCWchErTmk7g8S01uuXlwXKCwmkxE1nOVBt+UouHMt 4D4oAqG0H4/WjPZTmmJ1OGMRpCc4trA3zuU2HliayvEHGVb7+fF/BqqtPsTRknBJ QAx5khhX8uB1TMsoW0vNoGToFNuxXsaDr8JvRVwcQs+xii1G6Xzbp0KemPv7nGr9 f1CnMX28djjIPtYXnaeY9HRB44ZPGXy6uF6zMg44QQ1zuDAago/loL8s6AMmXJ0I gqqRl2Mzzap6CSnQ/9aK9lLJPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqOpnFu 27CJrkCmTyubYwvKGMp0MB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg7DoIc3CpnJYCTEd5++j6vnuJlEmvVs2sH5GheeuHFTg8qhLV+BTu 8Sc3QGvusty5LX9fRbky5S5ar++NikQRgYwdJ1lbLaZfTnQJNz2kMv8SMo3I1u8c d4IHyCKOFlq9xk06CRo/e1KTE5Caxt1Vfv5W2Jlp4+sy+FYJgkGGksI68PaBFExY MIX69vZkRmz+7fxq/sZdMZMC97GcYA3CxPJZmR4CiPmQ7yq13JmpZUGVwqikO1RA Dmn+nh5V14s2ZtiOBTtIX7hJG2vNSA6Tk/ZOuAVyXUOhiOCO/OryMag/R7Z22P4g zsIUFJdEmk38NW9wfaksVvMiixg+q9nI -----END CERTIFICATE-----Generated at Fri Dec 19 03:50:12 2025 by rpki-client