This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft (raw, json) Hash identifier: FgJ6Y5zg5ol+kbpfmkvibn3XMHyZ6QZ4tqilAV6JEn0= Subject key identifier: 54:9E:1E:03:FF:B4:68:78:0B:1A:1F:97:E7:14:EB:85:6A:D2:4B:CD Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0D1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft Manifest number: 0D0E Signing time: Tue 30 Dec 2025 17:46:07 +0000 Manifest this update: Tue 30 Dec 2025 17:46:06 +0000 Manifest next update: Tue 06 Jan 2026 17:46:06 +0000 Files and hashes: 1: YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl (hash: rCRJzKnQnVFuF+Z0RBK0pO/p/QD3e4/sLzp2cmHWmhY=) 2: 4154E51AC91311EBA6226F45C4F9AE02.roa (hash: wB1sovbilxKTEjHlhwxxiGzC+zOOhC0FN6B3+See3J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 17:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3357 (0xd1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4, serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Dec 30 17:46:06 2025 GMT Not After : Jan 6 17:46:06 2026 GMT Subject: CN=69540fdf-3c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a4:fc:94:80:df:f9:4a:ef:87:31:e8:f6:61: 28:b7:89:1e:3f:88:75:00:41:54:c1:91:b5:ca:4f: db:87:bb:10:7b:bb:6a:ac:7d:4e:95:20:94:4c:38: 2f:9d:39:5c:e9:ad:ce:1d:48:f7:d2:31:d0:58:3f: f0:f8:bc:97:2c:63:ac:e0:22:8c:91:06:62:99:f3: 00:1a:6b:d7:2f:b8:5a:1f:c4:d2:03:95:ad:38:7c: c2:5c:82:fb:3d:73:85:93:d8:82:3f:6d:7f:95:5c: 94:c2:9a:ef:aa:5b:59:b2:a7:97:df:6e:b7:01:15: 82:dc:d3:d1:97:a9:d0:cb:ad:50:f1:c3:25:45:48: 34:2d:7f:e6:93:7a:80:95:18:a9:e0:4e:51:54:f0: 49:47:25:9a:c2:21:50:b7:9c:f0:99:ba:45:b6:27: 3d:f3:f0:dc:47:bd:de:93:db:37:0d:d0:ae:64:48: 04:cb:79:8b:09:bb:74:a6:b9:ac:32:c8:ad:d0:08: 48:a4:0e:f7:65:28:79:f0:ae:0f:99:27:9f:78:bc: 28:c9:5c:62:9f:fd:10:3d:2d:e6:5c:09:3f:7f:93: 86:bf:67:85:55:87:e9:85:fb:2f:d4:62:e5:ed:7a: da:76:aa:62:a0:c4:3b:68:8e:61:ea:11:8d:61:ae: 3c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:9E:1E:03:FF:B4:68:78:0B:1A:1F:97:E7:14:EB:85:6A:D2:4B:CD X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:66:93:5e:b2:96:13:93:26:c2:d4:97:e7:98:e5:1f:05:c7: 2c:d6:7b:b5:d6:e9:7e:d3:1a:20:13:c1:9b:ba:29:63:5c:6a: 6a:f4:f2:1c:82:a6:c7:99:7b:62:fb:d5:ce:0e:b1:19:7c:75: 13:aa:9e:2c:38:95:4b:df:29:4f:86:50:af:7e:a4:08:fb:0a: a5:51:92:bd:6a:63:c9:2b:3e:17:c8:ac:0f:89:87:20:53:09: ca:3d:ff:69:4a:ff:c3:ae:00:16:4c:05:0e:8b:96:29:c1:d2: 69:16:a8:9b:15:3b:94:ba:fa:f0:73:fb:ac:51:ee:41:92:1f: 36:5f:55:27:d6:47:1a:7d:6b:41:dc:37:25:a6:b3:26:9c:ab: 26:11:a3:06:d4:d6:ae:cc:2f:f5:a5:6d:86:c1:bf:a7:4e:9c: 8e:89:0a:7d:a6:7d:8a:25:d6:cb:d7:ab:25:be:70:0d:7f:6e: 23:06:90:49:7e:c7:2b:60:6f:36:12:27:d9:f0:ac:db:19:db: 56:2a:5f:31:df:d6:18:32:a8:ba:bb:d3:2d:a9:a4:bf:98:20: 4d:cd:75:83:11:3c:20:a0:50:fd:a4:6a:3d:62:0c:aa:73:e9: 11:a9:4d:bd:fa:d4:56:18:57:38:9b:e2:bf:7b:0f:14:f7:a1: 6c:66:94:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjUxMjMwMTc0NjA2WhcNMjYwMTA2MTc0NjA2WjAYMRYwFAYD VQQDDA02OTU0MGZkZi0zYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6T8lIDf+UrvhzHo9mEot4keP4h1AEFUwZG1yk/bh7sQe7tqrH1OlSCUTDgv nTlc6a3OHUj30jHQWD/w+LyXLGOs4CKMkQZimfMAGmvXL7haH8TSA5WtOHzCXIL7 PXOFk9iCP21/lVyUwprvqltZsqeX3263ARWC3NPRl6nQy61Q8cMlRUg0LX/mk3qA lRip4E5RVPBJRyWawiFQt5zwmbpFtic98/DcR73ek9s3DdCuZEgEy3mLCbt0prms Msit0AhIpA73ZSh58K4PmSefeLwoyVxin/0QPS3mXAk/f5OGv2eFVYfphfsv1GLl 7XradqpioMQ7aI5h6hGNYa48LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSeHgP/ tGh4Cxofl+cU64Vq0kvNMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEZENC84MDlDMjREMkY1NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBo VHp5MFA2dXpHX2dXRnJWTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTZpNespYTkybC1JfnmOUfBccs1nu11ul+0xogE8GbuiljXGpq9PIc gqbHmXti+9XODrEZfHUTqp4sOJVL3ylPhlCvfqQI+wqlUZK9amPJKz4XyKwPiYcg UwnKPf9pSv/DrgAWTAUOi5YpwdJpFqibFTuUuvrwc/usUe5Bkh82X1Un1kcafWtB 3DclprMmnKsmEaMG1NauzC/1pW2Gwb+nTpyOiQp9pn2KJdbL16slvnANf24jBpBJ fscrYG82EifZ8KzbGdtWKl8x39YYMqi6u9MtqaS/mCBNzXWDETwgoFD9pGo9Ygyq c+kRqU29+tRWGFc4m+K/ew8U96FsZpSh -----END CERTIFICATE-----Generated at Wed Dec 31 05:05:25 2025 by rpki-client