This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft File: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft (raw, json) Hash identifier: dyfPpLUKA9yi5SnnnExoszW014pAEN890XbtKZPAOkM= Subject key identifier: 4B:01:F5:70:09:4C:40:4D:84:98:88:DF:6D:0D:1C:29:F6:FA:D6:37 Authority key identifier: C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 Certificate issuer: /CN=A912B2EE/serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Certificate serial: 0FE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft Manifest number: 0FCC Signing time: Sat 20 Dec 2025 17:13:12 +0000 Manifest this update: Sat 20 Dec 2025 17:13:12 +0000 Manifest next update: Sat 27 Dec 2025 17:13:12 +0000 Files and hashes: 1: yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl (hash: NnJ3BWyQ30Moq4mXOW6hAuaehIXqbwxWQpZRFx49w1U=) 2: 05449490E17B11EC93AB7473C4F9AE02.roa (hash: TQO7DA2C+52oraPsdnjGz3A009856ZzetwGGv8/CUtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4065 (0xfe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B2EE, serialNumber=C824347425BAC8AF59B4E1966BC10DBFA8BDAB82 Validity Not Before: Dec 20 17:13:12 2025 GMT Not After : Dec 27 17:13:12 2025 GMT Subject: CN=6946d928-4b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ec:ae:1d:91:ef:d0:0b:76:e6:4a:45:c6:75: d0:c0:02:43:a7:8a:af:ab:00:0c:4c:e9:cf:ff:7a: 9c:c8:c2:74:4c:70:32:1d:37:c1:0c:ef:94:8a:22: d1:92:df:d6:4b:94:7e:79:4b:88:d0:17:3c:06:ee: 5e:9f:13:15:58:4f:c2:2d:1b:75:1c:65:44:39:10: a7:22:d8:ed:26:6a:fc:66:83:67:cf:57:a7:61:62: 4a:33:99:ab:3d:d0:08:d8:59:57:5e:dd:6a:a0:77: 4b:68:20:d1:16:be:0f:6a:77:6c:28:26:e3:7b:d5: e2:e2:79:1a:be:23:66:59:c3:25:40:95:ff:a8:f2: c5:2a:b7:e4:e9:3f:bb:e1:58:d1:ec:f5:03:57:fc: 3e:0e:cd:68:fc:9a:89:1f:8d:94:93:3c:69:6b:6e: b1:93:5e:e1:a8:ba:da:77:79:08:2a:9e:c8:71:61: 10:0c:02:2a:e1:25:99:4b:bc:5d:ac:ff:21:3b:94: 92:d0:d9:3c:6b:32:a0:38:52:9f:c8:65:9b:cb:ac: f5:a7:ab:2e:cd:8e:8a:a8:ad:cf:c0:06:7a:be:06: 6d:bc:b2:44:54:01:7e:db:8f:d8:4c:80:b0:ab:7c: c7:6d:e3:21:d3:49:5c:fb:04:ba:23:59:3d:6f:98: 18:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:01:F5:70:09:4C:40:4D:84:98:88:DF:6D:0D:1C:29:F6:FA:D6:37 X509v3 Authority Key Identifier: keyid:C8:24:34:74:25:BA:C8:AF:59:B4:E1:96:6B:C1:0D:BF:A8:BD:AB:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B2EE/1F411F586C2111E9B76FA909C4F9AE02/yCQ0dCW6yK9ZtOGWa8ENv6i9q4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:6f:30:00:c1:a1:a2:ff:b6:f0:2c:77:eb:73:d8:fc:9a:6a: 1c:59:56:3c:8f:62:fd:aa:24:66:7d:da:5d:88:c5:7d:6f:b5: ed:e6:6d:5e:9f:bb:73:d2:d6:ef:60:70:8d:1d:0e:1e:70:d8: f2:1b:4a:f0:88:b9:9f:99:0a:47:5e:c7:9b:13:97:f9:16:99: b3:2c:d6:15:00:1b:64:51:fc:94:61:27:b0:e9:ba:11:bb:56: 5c:d1:3e:cf:0a:6c:88:67:a9:52:56:e1:43:72:93:2e:9f:45: 7c:11:25:c9:b1:db:a6:85:58:ab:9b:78:1a:87:02:eb:7c:46: 63:ac:5f:5d:96:f8:db:81:92:3b:55:54:03:85:98:7f:3a:4f: ef:a9:03:f0:00:af:1b:25:56:df:e2:b0:d2:6d:2f:8a:f2:19: 7a:e3:5a:2c:bc:6b:99:c6:ca:8e:c8:ba:6f:d0:d8:7a:27:b2: a6:b1:fa:5c:a0:4d:1f:37:3a:0d:58:1f:1d:1f:99:cb:20:67: 75:c5:77:e6:d8:ef:9e:36:fa:b1:5e:ee:90:4d:da:48:6b:ea: 8d:ca:c5:de:9f:fd:0e:32:fd:f3:20:88:4a:98:18:1c:b3:bc: 9a:b7:fb:fb:83:c0:a3:56:b8:9c:5c:eb:cf:4f:72:de:c7:4b: f6:ff:fa:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyRUUxMTAvBgNVBAUTKEM4MjQzNDc0MjVCQUM4QUY1OUI0RTE5NjZCQzEwREJG QThCREFCODIwHhcNMjUxMjIwMTcxMzEyWhcNMjUxMjI3MTcxMzEyWjAYMRYwFAYD VQQDDA02OTQ2ZDkyOC00YjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeyuHZHv0At25kpFxnXQwAJDp4qvqwAMTOnP/3qcyMJ0THAyHTfBDO+UiiLR kt/WS5R+eUuI0Bc8Bu5enxMVWE/CLRt1HGVEORCnItjtJmr8ZoNnz1enYWJKM5mr PdAI2FlXXt1qoHdLaCDRFr4PandsKCbje9Xi4nkaviNmWcMlQJX/qPLFKrfk6T+7 4VjR7PUDV/w+Ds1o/JqJH42Ukzxpa26xk17hqLrad3kIKp7IcWEQDAIq4SWZS7xd rP8hO5SS0Nk8azKgOFKfyGWby6z1p6suzY6KqK3PwAZ6vgZtvLJEVAF+24/YTICw q3zHbeMh00lc+wS6I1k9b5gY5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsB9XAJ TEBNhJiI320NHCn2+tY3MB8GA1UdIwQYMBaAFMgkNHQlusivWbThlmvBDb+ovauC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjJFRS8xRjQxMUY1ODZD MjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlLOVp0T0dXYThFTnY2aTlx NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDUTBkQ1c2eUs5WnRPR1dhOEVOdjZpOXE0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjJFRS8xRjQxMUY1ODZDMjExMUU5Qjc2RkE5MDlDNEY5QUUwMi95Q1EwZENXNnlL OVp0T0dXYThFTnY2aTlxNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAubzAAwaGi/7bwLHfrc9j8mmocWVY8j2L9qiRmfdpdiMV9b7Xt5m1e n7tz0tbvYHCNHQ4ecNjyG0rwiLmfmQpHXsebE5f5FpmzLNYVABtkUfyUYSew6boR u1Zc0T7PCmyIZ6lSVuFDcpMun0V8ESXJsdumhVirm3gahwLrfEZjrF9dlvjbgZI7 VVQDhZh/Ok/vqQPwAK8bJVbf4rDSbS+K8hl641osvGuZxsqOyLpv0Nh6J7Kmsfpc oE0fNzoNWB8dH5nLIGd1xXfm2O+eNvqxXu6QTdpIa+qNysXen/0OMv3zIIhKmBgc s7yat/v7g8CjVricXOvPT3Lex0v2//p3 -----END CERTIFICATE-----Generated at Sun Dec 21 04:29:02 2025 by rpki-client