This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: /mKZC0oElKfcet6skYOF/OaVtUFKgDOCdZmsOIqriTE= Subject key identifier: 7A:52:7C:6C:59:3F:31:77:E1:88:F7:88:1B:1E:80:A2:79:43:7C:BB Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0D12 Signing time: Tue 06 Jan 2026 17:43:57 +0000 Manifest this update: Tue 06 Jan 2026 17:43:57 +0000 Manifest next update: Tue 13 Jan 2026 17:43:57 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: z005W/cxTVM1yClE9FSxn10UcSAzOgKgzzgcvGMOlx0=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: wB1sovbilxKTEjHlhwxxiGzC+zOOhC0FN6B3+See3J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 Jan 2026 17:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Jan 6 17:43:57 2026 GMT Not After : Jan 13 17:43:57 2026 GMT Subject: CN=695d49dd-0dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a8:ca:8b:57:1a:fe:fe:b6:e6:a6:b5:90:98: 36:c5:48:91:09:00:bd:cc:c9:68:75:fe:32:bd:ef: 5b:17:cf:54:25:99:89:e2:81:e7:f4:92:28:9e:b2: 3d:b0:5a:97:59:91:c8:96:2e:2b:66:ca:f4:7d:c4: 58:6c:11:13:fe:1b:56:f2:03:87:46:e8:79:9a:ce: d2:cd:a8:e0:2b:01:c9:79:9c:06:10:c8:eb:88:5d: 75:79:cf:55:c6:84:28:e7:17:8a:30:e7:6a:f0:68: 8a:3d:bf:a6:75:3e:40:42:d6:70:1f:db:7e:5b:6f: 49:78:9f:d1:bd:9a:d5:01:02:76:d0:d8:e1:37:b1: 34:64:f3:db:a9:1c:79:e4:d2:5a:01:1e:6b:02:13: 76:bd:ea:69:52:70:98:10:d0:8c:a5:bc:9c:20:df: 10:07:cc:24:82:96:08:4b:85:c2:6e:46:95:1b:a3: 89:f9:6f:1b:41:46:48:db:0d:0f:17:cf:33:d7:da: 57:3f:85:76:3e:c9:cd:c1:29:86:a3:93:3e:f4:85: a7:9a:36:13:b6:23:91:c2:4f:6b:93:7b:b9:9e:5c: 6f:38:5f:eb:dd:e8:75:81:a5:9d:09:2e:8c:5e:c5: 6b:47:84:b3:39:99:bc:f9:fc:4f:9d:39:b3:61:14: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:52:7C:6C:59:3F:31:77:E1:88:F7:88:1B:1E:80:A2:79:43:7C:BB X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:04:b3:46:6b:2f:0e:e3:d2:ef:b9:b9:0b:d6:93:2a:45:25: a9:0b:94:63:6e:b0:ec:ec:f9:b2:38:37:ab:9c:41:bd:25:77: df:5f:53:2b:f8:68:ff:1a:71:b0:76:a3:e7:0b:15:20:ba:6f: 00:56:93:7b:3e:9c:af:13:f0:31:eb:07:a8:fe:27:7f:7b:d4: e4:a7:e0:91:d6:75:ee:c6:de:57:bf:4e:03:61:5c:4a:bc:4a: e3:72:f1:0f:04:19:9f:e0:21:44:f1:3e:f1:eb:48:5d:6a:3d: 9c:ac:e6:2e:86:4a:cc:c5:b5:3d:e4:1e:da:01:2b:4c:95:24: 53:39:47:b7:23:16:9a:44:12:2c:df:3e:a4:82:52:85:97:26: e2:48:b8:ab:2b:da:35:74:5b:fa:11:f9:bf:ae:e2:30:9d:e9: 91:d6:e6:35:84:0d:21:e8:63:fa:78:cb:81:78:4d:2d:94:d5: be:c6:df:4c:c3:88:49:ca:85:20:1a:49:01:9a:6f:5f:a6:1f: 80:cf:2e:a4:b5:af:31:8a:61:b7:d8:bc:06:31:0c:24:f7:ec: fd:7f:3e:eb:33:5e:b8:31:39:3e:23:23:25:c1:6c:a2:6d:e1: 28:b2:e8:ce:d8:90:44:2d:83:a1:c8:80:9d:48:43:89:90:83: 1c:80:83:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjYwMTA2MTc0MzU3WhcNMjYwMTEzMTc0MzU3WjAYMRYwFAYD VQQDDA02OTVkNDlkZC0wZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmajKi1ca/v625qa1kJg2xUiRCQC9zMlodf4yve9bF89UJZmJ4oHn9JIonrI9 sFqXWZHIli4rZsr0fcRYbBET/htW8gOHRuh5ms7SzajgKwHJeZwGEMjriF11ec9V xoQo5xeKMOdq8GiKPb+mdT5AQtZwH9t+W29JeJ/RvZrVAQJ20NjhN7E0ZPPbqRx5 5NJaAR5rAhN2veppUnCYENCMpbycIN8QB8wkgpYIS4XCbkaVG6OJ+W8bQUZI2w0P F88z19pXP4V2PsnNwSmGo5M+9IWnmjYTtiORwk9rk3u5nlxvOF/r3eh1gaWdCS6M XsVrR4SzOZm8+fxPnTmzYRQRTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpSfGxZ PzF34Yj3iBsegKJ5Q3y7MB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6BLNGay8O49LvubkL1pMqRSWpC5RjbrDs7PmyODernEG9JXffX1Mr +Gj/GnGwdqPnCxUgum8AVpN7PpyvE/Ax6weo/id/e9Tkp+CR1nXuxt5Xv04DYVxK vErjcvEPBBmf4CFE8T7x60hdaj2crOYuhkrMxbU95B7aAStMlSRTOUe3IxaaRBIs 3z6kglKFlybiSLirK9o1dFv6Efm/ruIwnemR1uY1hA0h6GP6eMuBeE0tlNW+xt9M w4hJyoUgGkkBmm9fph+Azy6kta8ximG32LwGMQwk9+z9fz7rM164MTk+IyMlwWyi beEosujO2JBELYOhyICdSEOJkIMcgIN9 -----END CERTIFICATE-----Generated at Wed Jan 7 02:36:17 2026 by rpki-client