This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: lsgfgSmroEkVt0vPfsrPSrfp8Vs+x70Hn8dkhf7yoAs= Subject key identifier: C2:67:F4:0F:24:C5:22:2C:92:06:80:A3:A6:BC:FF:19:AF:73:52:15 Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 01CA Signing time: Sun 21 Dec 2025 02:30:28 +0000 Manifest this update: Sun 21 Dec 2025 02:30:28 +0000 Manifest next update: Sun 28 Dec 2025 02:30:28 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: kaDnFABSsmLyZbx74gSXMYCPg2dtjG/z5EgaJ69jiVQ=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: zdwZO0F8HmTS0a7Wa5QQzty6jheoVPgBvRYPbS/dvxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Validity Not Before: Dec 21 02:30:28 2025 GMT Not After : Dec 28 02:30:28 2025 GMT Subject: CN=69475bc4-9032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b9:9d:3e:37:2d:83:9d:95:fb:12:98:2a:4c: 5a:5f:eb:51:86:c9:61:b4:96:c2:04:09:d5:af:c1: 1d:31:a0:1a:ac:ac:c5:83:5c:af:ae:d6:2c:b3:1b: af:e7:30:5b:4f:cd:f0:4f:51:d2:cd:55:c7:3a:69: 24:78:0c:11:dd:5f:8b:3f:6a:db:5b:ea:96:87:cb: dc:aa:9f:6b:00:d0:24:27:87:ef:fe:e3:8d:80:4b: 64:35:1b:65:df:44:ca:3b:f4:8d:20:b9:fe:1f:2e: 83:15:2f:a8:d0:0f:29:8b:bf:83:3b:87:cc:7b:25: 61:1f:40:d4:f6:60:28:61:54:ca:9a:28:3a:a4:f3: a9:2a:d7:07:db:9c:6d:43:93:c3:33:59:5e:20:c3: 20:d5:cd:50:e7:84:71:67:4f:82:c1:d1:12:00:df: a8:39:cb:3c:5f:d7:ea:f9:e2:b6:a4:15:cb:c2:21: b9:b7:09:17:f7:88:cc:3f:92:28:d7:e3:fc:be:4e: d3:f8:ca:26:09:e7:f8:08:3f:85:27:3d:78:4b:14: c3:61:90:81:48:0f:0f:c3:c2:04:0e:3c:9a:7b:b2: bd:5c:42:49:81:0c:d5:d5:e4:b8:31:6d:48:4f:cc: f5:8b:22:72:d7:6b:f1:22:4e:c4:60:4a:a8:76:f4: c9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:67:F4:0F:24:C5:22:2C:92:06:80:A3:A6:BC:FF:19:AF:73:52:15 X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:25:71:b4:d1:8d:d5:f4:54:2d:ea:e0:07:cc:2e:19:79:ea: f6:29:72:82:41:3e:64:bc:38:34:af:2b:e9:a8:9b:20:2e:a3: 27:c5:73:5e:93:7a:77:c7:96:c8:cb:31:f8:4a:b2:01:ef:40: 26:fd:90:f4:0b:d6:44:78:9b:45:2d:ea:1f:1f:11:6e:4a:7b: 8a:ae:9f:96:1c:e2:6f:db:80:e7:94:5b:04:28:3c:9a:9b:a0: f8:c5:39:18:2c:ed:a4:0b:a6:52:e4:6a:31:5b:84:9e:8f:a6: de:61:f8:e2:8e:2e:52:8e:42:24:aa:c3:b3:cd:45:70:e4:71: 4a:6e:9c:2c:b7:f7:aa:aa:a1:f6:fb:87:b9:85:61:24:b0:8a: ac:72:47:78:6f:a9:f8:96:10:9f:e2:98:6e:e9:b0:d6:68:05: ba:a9:4e:9e:5e:5f:a3:6d:27:67:07:c9:8f:74:06:70:53:b1: 8d:f5:60:ba:ba:22:89:1d:80:de:39:9e:cf:67:14:88:ca:1e: 48:09:1b:05:cb:65:03:8e:3f:c4:79:0b:3b:37:4b:8f:d4:f2: d8:4f:05:88:b2:f9:ec:90:dc:d9:db:2a:02:5f:c5:e2:9c:6e: f0:77:64:f1:7c:7c:6d:83:b0:4e:2c:88:3e:04:67:13:e8:77: 23:79:dd:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUxMjIxMDIzMDI4WhcNMjUxMjI4MDIzMDI4WjAYMRYwFAYD VQQDDA02OTQ3NWJjNC05MDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7mdPjctg52V+xKYKkxaX+tRhslhtJbCBAnVr8EdMaAarKzFg1yvrtYssxuv 5zBbT83wT1HSzVXHOmkkeAwR3V+LP2rbW+qWh8vcqp9rANAkJ4fv/uONgEtkNRtl 30TKO/SNILn+Hy6DFS+o0A8pi7+DO4fMeyVhH0DU9mAoYVTKmig6pPOpKtcH25xt Q5PDM1leIMMg1c1Q54RxZ0+CwdESAN+oOcs8X9fq+eK2pBXLwiG5twkX94jMP5Io 1+P8vk7T+MomCef4CD+FJz14SxTDYZCBSA8Pw8IEDjyae7K9XEJJgQzV1eS4MW1I T8z1iyJy12vxIk7EYEqodvTJVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJn9A8k xSIskgaAo6a8/xmvc1IVMB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSJXG00Y3V9FQt6uAHzC4Zeer2KXKCQT5kvDg0ryvpqJsgLqMnxXNe k3p3x5bIyzH4SrIB70Am/ZD0C9ZEeJtFLeofHxFuSnuKrp+WHOJv24DnlFsEKDya m6D4xTkYLO2kC6ZS5GoxW4Sej6beYfjiji5SjkIkqsOzzUVw5HFKbpwst/eqqqH2 +4e5hWEksIqsckd4b6n4lhCf4phu6bDWaAW6qU6eXl+jbSdnB8mPdAZwU7GN9WC6 uiKJHYDeOZ7PZxSIyh5ICRsFy2UDjj/EeQs7N0uP1PLYTwWIsvnskNzZ2yoCX8Xi nG7wd2TxfHxtg7BOLIg+BGcT6Hcjed1R -----END CERTIFICATE-----Generated at Sun Dec 21 19:29:15 2025 by rpki-client