This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: JwxYEABW4n6rMineGQUijvOPNNGHHN6Lf9OYOmo5bto= Subject key identifier: 76:6E:32:12:BE:00:34:1D:17:43:35:7E:12:B4:E7:6B:38:4D:AF:5B Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0228 Signing time: Fri 19 Dec 2025 01:16:06 +0000 Manifest this update: Fri 19 Dec 2025 01:16:05 +0000 Manifest next update: Fri 26 Dec 2025 01:16:05 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: UDyg1W+ldF3nLsams7S3izxjadD6f+1rtBA52+B8uzk=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Dec 19 01:16:05 2025 GMT Not After : Dec 26 01:16:05 2025 GMT Subject: CN=6944a755-47a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:66:7b:da:67:2d:de:44:00:47:b1:ee:f8:2c: 51:a3:bf:57:cd:37:6b:17:9f:17:1d:c6:97:fc:d0: 12:d9:6e:9c:24:fc:82:fe:fb:ee:29:bb:cc:0c:3d: 23:68:b4:d6:cb:96:b2:ce:42:52:4e:d6:dd:0f:e2: a2:e7:f9:64:c7:9b:5b:df:a6:34:f3:9a:a8:db:87: fe:28:cd:4b:90:46:00:79:f1:2c:a9:fc:cd:f6:62: 73:36:5d:1c:2c:63:73:7c:ef:60:87:c9:94:3c:35: 89:6b:b9:64:8e:f5:bf:3a:76:a7:d3:f7:7d:9f:5c: 6b:77:b2:a8:fd:5b:b4:03:a8:90:20:41:37:b7:47: 30:bb:58:43:21:18:2c:18:71:fe:55:b3:4f:fd:d4: fe:8d:74:03:a8:96:6f:60:68:50:b4:11:9a:58:28: d3:bd:54:26:7e:f8:0b:43:27:81:29:cc:12:3a:0d: 33:58:b8:8f:cd:31:b5:20:d8:52:c4:26:ca:ae:2d: 08:0a:e3:e5:a3:0e:6a:5b:9a:f1:ae:f0:2f:6d:5c: 4d:96:71:3d:58:e2:eb:ea:46:e8:ea:85:f1:34:c5: 43:bc:02:be:7b:96:27:0a:9c:32:3c:4b:ca:9a:cf: f7:7a:45:a1:0f:da:58:13:8b:5c:d6:3e:be:ff:1d: a5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6E:32:12:BE:00:34:1D:17:43:35:7E:12:B4:E7:6B:38:4D:AF:5B X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:50:d1:9d:ff:66:58:9b:0a:39:0e:3a:d2:59:a6:40:83:e0: 75:dc:b5:a2:bc:3b:b5:d9:45:bd:df:4b:3b:a1:70:e6:8d:4b: ae:6b:e9:cd:f9:b6:9e:31:40:b9:de:ee:f8:58:a0:75:fc:e0: aa:03:54:94:b3:d4:07:f8:c8:b8:79:d0:61:61:90:d7:39:e0: 1c:2e:5c:c4:45:c1:c6:b6:37:fd:56:52:73:94:7c:ca:5c:a6: 86:6e:33:2c:43:f4:01:0f:c5:a8:e9:8e:4b:40:08:5c:43:1f: 47:00:96:0e:92:81:6b:82:f3:68:76:43:7a:4d:ee:77:d4:33: 15:bf:b7:be:2e:f2:4d:2a:8d:5d:4a:3c:bb:a2:1b:2c:21:91: b3:e6:7f:77:b5:02:80:15:35:4a:19:f6:71:c8:be:2a:20:dc: 27:9f:72:0e:fa:c5:19:8f:03:8b:1d:bd:de:9c:8f:ef:93:48: 75:6c:f0:0d:48:d0:37:dd:ff:55:5f:33:06:0d:ae:0e:af:77: 19:94:cb:fb:e3:a0:38:c0:ee:e2:96:7f:fc:a0:ab:47:92:d4: 41:22:05:6b:c5:4b:bd:28:4a:95:82:9a:15:7d:80:4a:4d:7a: 1b:35:0c:2b:b4:4e:be:83:e3:9c:bf:31:9e:f1:f4:91:2c:90: b1:a4:ff:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUxMjE5MDExNjA1WhcNMjUxMjI2MDExNjA1WjAYMRYwFAYD VQQDDA02OTQ0YTc1NS00N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomZ72mct3kQAR7Hu+CxRo79XzTdrF58XHcaX/NAS2W6cJPyC/vvuKbvMDD0j aLTWy5ayzkJSTtbdD+Ki5/lkx5tb36Y085qo24f+KM1LkEYAefEsqfzN9mJzNl0c LGNzfO9gh8mUPDWJa7lkjvW/Onan0/d9n1xrd7Ko/Vu0A6iQIEE3t0cwu1hDIRgs GHH+VbNP/dT+jXQDqJZvYGhQtBGaWCjTvVQmfvgLQyeBKcwSOg0zWLiPzTG1INhS xCbKri0ICuPlow5qW5rxrvAvbVxNlnE9WOLr6kbo6oXxNMVDvAK+e5YnCpwyPEvK ms/3ekWhD9pYE4tc1j6+/x2lSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZuMhK+ ADQdF0M1fhK052s4Ta9bMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwUNGd/2ZYmwo5DjrSWaZAg+B13LWivDu12UW930s7oXDmjUuua+nN +baeMUC53u74WKB1/OCqA1SUs9QH+Mi4edBhYZDXOeAcLlzERcHGtjf9VlJzlHzK XKaGbjMsQ/QBD8Wo6Y5LQAhcQx9HAJYOkoFrgvNodkN6Te531DMVv7e+LvJNKo1d Sjy7ohssIZGz5n93tQKAFTVKGfZxyL4qINwnn3IO+sUZjwOLHb3enI/vk0h1bPAN SNA33f9VXzMGDa4Or3cZlMv746A4wO7iln/8oKtHktRBIgVrxUu9KEqVgpoVfYBK TXobNQwrtE6+g+OcvzGe8fSRLJCxpP91 -----END CERTIFICATE-----Generated at Sat Dec 20 04:58:43 2025 by rpki-client