This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: 4QhRR5pizyTOg3T05kpip1rO0ijbuZ4K9xD8HPmHt4E= Subject key identifier: F2:6A:CD:F0:D9:0F:D6:73:9E:69:33:BA:53:F6:65:FF:4C:A3:23:E3 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 0961 Signing time: Mon 22 Dec 2025 19:31:11 +0000 Manifest this update: Mon 22 Dec 2025 19:31:11 +0000 Manifest next update: Mon 29 Dec 2025 19:31:11 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: NRHRehM5dWCkoLIwgi5XfN0Ojm94Hp085LVb2iu/eiY=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Dec 22 19:31:11 2025 GMT Not After : Dec 29 19:31:11 2025 GMT Subject: CN=69499c7f-42f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5d:e1:1d:75:79:fc:d2:45:45:37:c6:fa:a6: 3f:ed:31:9b:76:88:18:37:f5:7c:40:10:9f:a7:34: 72:dc:06:85:8a:80:7a:ad:b7:58:87:cc:1d:a9:22: 04:28:19:f3:2e:ac:4e:ff:4d:0c:d7:ae:bb:fa:ce: 10:5a:cb:c7:6c:be:89:41:eb:2e:73:72:76:35:2f: 47:60:b6:7c:a9:c9:c7:ed:95:f4:37:9e:cc:27:9e: 07:7b:c6:8e:b0:2d:ce:c3:f7:3d:49:94:45:33:9e: 43:94:83:b7:12:ed:d3:62:ff:80:43:b4:bf:63:36: c0:fd:6b:fe:b1:bf:11:a8:55:1f:25:7a:25:c9:07: 6c:80:79:3b:4c:7d:27:69:6e:3d:22:96:20:be:10: 57:cc:c1:aa:cc:26:b6:19:d4:cd:73:da:a6:02:ef: 28:a0:05:75:fc:b9:95:e2:3c:22:08:c4:a4:5a:7d: ee:37:ee:cc:a4:ef:c7:e1:0c:c4:f5:85:7a:44:2b: d9:33:b0:e9:54:99:1d:40:94:72:59:ad:7d:ec:ed: 8a:41:0f:ed:8f:10:7f:9a:f7:00:82:d7:6a:c8:a5: 93:db:c1:13:b8:a8:3c:bf:6b:d7:58:f8:80:4d:b0: 1c:84:49:79:fa:25:86:95:43:db:3d:03:15:01:18: dc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6A:CD:F0:D9:0F:D6:73:9E:69:33:BA:53:F6:65:FF:4C:A3:23:E3 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:35:a2:bc:7c:fd:69:4d:d2:41:3b:a2:64:b5:a0:9f:fd:aa: 26:e1:84:f6:c0:21:2b:3b:12:51:01:07:75:69:81:e2:d2:69: a3:52:96:f5:74:51:ab:7e:f7:f4:f1:86:86:90:89:61:de:34: 67:94:c0:bb:88:bb:17:26:29:38:fa:46:cf:9e:81:af:f4:a2: 65:c4:19:18:05:89:32:1c:f3:fe:dc:43:02:8b:28:20:fb:5c: 4b:5f:11:4e:6a:dd:83:01:c4:24:d3:23:ec:bb:8a:c4:75:23: 1e:91:0c:a2:10:6e:7b:fa:91:40:72:f8:09:3d:cc:13:53:04: a6:34:09:bd:95:bf:57:78:6e:18:ec:53:7f:c1:00:72:73:b3: 15:25:ad:c0:98:99:6d:7f:59:01:f9:e2:dd:9e:23:1e:6c:7f: b2:31:b7:e9:0c:fc:f8:c1:89:72:e3:18:81:99:d0:13:bd:a6: cc:e8:ba:f2:43:3a:73:b1:43:97:44:c9:a1:3f:fb:27:a6:9f: 56:0f:e9:ea:e5:2b:7c:25:e4:c8:2c:e6:e3:b4:5a:8c:da:2f: 3d:46:26:9a:23:ea:14:07:b1:45:b2:f6:12:93:49:64:8f:78: 6d:18:5c:77:16:c0:ea:e8:9e:47:d2:94:88:a3:42:64:9f:77: 88:bf:18:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUxMjIyMTkzMTExWhcNMjUxMjI5MTkzMTExWjAYMRYwFAYD VQQDDA02OTQ5OWM3Zi00MmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA413hHXV5/NJFRTfG+qY/7TGbdogYN/V8QBCfpzRy3AaFioB6rbdYh8wdqSIE KBnzLqxO/00M1667+s4QWsvHbL6JQesuc3J2NS9HYLZ8qcnH7ZX0N57MJ54He8aO sC3Ow/c9SZRFM55DlIO3Eu3TYv+AQ7S/YzbA/Wv+sb8RqFUfJXolyQdsgHk7TH0n aW49IpYgvhBXzMGqzCa2GdTNc9qmAu8ooAV1/LmV4jwiCMSkWn3uN+7MpO/H4QzE 9YV6RCvZM7DpVJkdQJRyWa197O2KQQ/tjxB/mvcAgtdqyKWT28ETuKg8v2vXWPiA TbAchEl5+iWGlUPbPQMVARjcbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJqzfDZ D9ZznmkzulP2Zf9MoyPjMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+NaK8fP1pTdJBO6JktaCf/aom4YT2wCErOxJRAQd1aYHi0mmjUpb1 dFGrfvf08YaGkIlh3jRnlMC7iLsXJik4+kbPnoGv9KJlxBkYBYkyHPP+3EMCiygg +1xLXxFOat2DAcQk0yPsu4rEdSMekQyiEG57+pFAcvgJPcwTUwSmNAm9lb9XeG4Y 7FN/wQByc7MVJa3AmJltf1kB+eLdniMebH+yMbfpDPz4wYly4xiBmdATvabM6Lry QzpzsUOXRMmhP/snpp9WD+nq5St8JeTILObjtFqM2i89RiaaI+oUB7FFsvYSk0lk j3htGFx3FsDq6J5H0pSIo0Jkn3eIvxgC -----END CERTIFICATE-----Generated at Tue Dec 23 20:56:38 2025 by rpki-client