This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: 41JhKv+RgZgJB0s7E+7hffNEJUi5a7rWtDSchqzOBA4= Subject key identifier: 37:9D:BE:14:72:5C:B9:7A:C4:15:A9:A7:4A:23:DC:F7:C0:57:D3:2A Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0D11 Signing time: Sun 04 Jan 2026 17:41:25 +0000 Manifest this update: Sun 04 Jan 2026 17:41:25 +0000 Manifest next update: Sun 11 Jan 2026 17:41:25 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: sya86ffpaW7E+md0H1emGvs7nM/UHN2e89QG0/64QeY=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: wB1sovbilxKTEjHlhwxxiGzC+zOOhC0FN6B3+See3J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 17:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Jan 4 17:41:25 2026 GMT Not After : Jan 11 17:41:25 2026 GMT Subject: CN=695aa645-bde4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:ad:79:2a:20:a1:16:27:38:be:3e:07:cc: 73:b7:11:5a:db:ba:82:10:67:23:dd:1a:f8:40:4a: e2:4a:fa:bc:6f:02:2e:8f:b2:be:1c:20:60:68:2b: b4:97:ff:7c:64:dc:ed:54:b2:90:12:a3:49:67:24: 24:ad:29:51:bf:db:1e:9a:2a:46:48:eb:95:ed:7d: 41:ff:03:e5:7c:7f:a5:75:d1:e6:0d:53:df:c0:d8: 06:05:38:55:9f:83:35:bd:57:22:95:c1:bb:a6:c5: e1:95:d4:8b:fc:d4:5a:71:66:23:4d:8b:70:f8:7b: aa:b8:97:b2:74:ff:94:72:52:3c:f8:d6:45:e7:0f: 8e:5f:16:5f:88:3d:d3:dc:2e:58:4e:40:94:5b:01: 62:ad:b2:0f:4d:f4:66:cb:35:d8:ac:3f:fa:a5:3a: d7:e5:9f:2d:b3:0a:ff:95:a8:83:56:25:5f:cc:28: df:41:78:76:ad:3c:d3:1d:61:5f:64:0e:45:fc:c7: 81:41:27:18:05:07:22:99:53:1d:df:cf:92:64:70: 11:b3:2d:02:0e:4b:fc:c7:cb:08:fe:31:41:42:c3: 31:54:d0:c9:9f:06:50:dc:d9:d8:a4:7b:8f:36:8d: 75:50:a9:85:89:bb:75:a3:e2:c5:fb:81:89:f5:96: 00:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9D:BE:14:72:5C:B9:7A:C4:15:A9:A7:4A:23:DC:F7:C0:57:D3:2A X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:df:22:23:71:18:2e:88:12:51:e4:8d:99:1e:19:4f:86:d3: 74:e6:4c:a6:79:f2:e9:c2:07:08:c3:53:7d:11:cb:4d:5a:02: b5:61:25:16:68:ac:63:f8:93:75:2e:ec:ae:3f:fa:83:0f:a7: 17:b4:64:fb:d4:cf:b3:ab:40:c9:b1:d2:45:66:42:98:97:32: 8d:60:ea:3d:58:22:36:b3:10:19:be:58:1c:ae:b9:c0:f9:31: 34:22:88:32:07:9e:21:df:ae:8b:b3:6c:2e:d5:0d:da:d8:23: b6:bf:19:95:3b:3f:fd:54:65:88:31:5b:dd:af:f2:6a:3b:82: 82:5b:f7:e5:6b:eb:d7:ac:ed:36:0e:20:7d:a8:e6:e4:e4:c4: 4c:2a:ac:c6:47:92:95:76:86:54:3c:bf:e6:4f:3d:8d:4b:3f: 03:d6:16:da:01:47:6a:89:89:5d:38:f0:fa:31:98:93:4c:c1: aa:14:31:74:56:29:77:c2:60:03:3b:13:fc:4b:ac:c4:5d:bc: 58:f3:c3:7d:07:24:6b:6b:2b:c6:a3:09:2f:27:8a:c6:e8:41: 40:b7:83:4a:a8:1d:f2:78:8d:90:54:e4:bd:bb:7f:f8:2e:2b: 88:60:16:24:87:02:6d:7c:59:59:a7:c3:84:fb:eb:0c:0d:93: 89:45:47:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjYwMTA0MTc0MTI1WhcNMjYwMTExMTc0MTI1WjAYMRYwFAYD VQQDDA02OTVhYTY0NS1iZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFKteSogoRYnOL4+B8xztxFa27qCEGcj3Rr4QEriSvq8bwIuj7K+HCBgaCu0 l/98ZNztVLKQEqNJZyQkrSlRv9semipGSOuV7X1B/wPlfH+lddHmDVPfwNgGBThV n4M1vVcilcG7psXhldSL/NRacWYjTYtw+HuquJeydP+UclI8+NZF5w+OXxZfiD3T 3C5YTkCUWwFirbIPTfRmyzXYrD/6pTrX5Z8tswr/laiDViVfzCjfQXh2rTzTHWFf ZA5F/MeBQScYBQcimVMd38+SZHARsy0CDkv8x8sI/jFBQsMxVNDJnwZQ3NnYpHuP No11UKmFibt1o+LF+4GJ9ZYAGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDedvhRy XLl6xBWpp0oj3PfAV9MqMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo3yIjcRguiBJR5I2ZHhlPhtN05kymefLpwgcIw1N9EctNWgK1YSUW aKxj+JN1LuyuP/qDD6cXtGT71M+zq0DJsdJFZkKYlzKNYOo9WCI2sxAZvlgcrrnA +TE0IogyB54h366Ls2wu1Q3a2CO2vxmVOz/9VGWIMVvdr/JqO4KCW/fla+vXrO02 DiB9qObk5MRMKqzGR5KVdoZUPL/mTz2NSz8D1hbaAUdqiYldOPD6MZiTTMGqFDF0 Vil3wmADOxP8S6zEXbxY88N9ByRrayvGowkvJ4rG6EFAt4NKqB3yeI2QVOS9u3/4 LiuIYBYkhwJtfFlZp8OE++sMDZOJRUcQ -----END CERTIFICATE-----Generated at Mon Jan 5 19:08:42 2026 by rpki-client