This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft File: yQm9soTk3whHdmDWgrfLP1lIMeM.mft (raw, json) Hash identifier: yvAhOfnckDbSvv0l3asbwMki7CsimvYeSbbJr46mq/M= Subject key identifier: F5:69:A6:08:87:DF:6F:48:4B:CB:CF:26:3A:F5:7F:6F:6D:83:C6:41 Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft Manifest number: 0C5D Signing time: Sat 20 Dec 2025 18:13:08 +0000 Manifest this update: Sat 20 Dec 2025 18:13:07 +0000 Manifest next update: Sat 27 Dec 2025 18:13:07 +0000 Files and hashes: 1: yQm9soTk3whHdmDWgrfLP1lIMeM.crl (hash: bcyWwJKYrft9TwlHECn6wrveO1/RsFmZo2gnNKD9yOI=) 2: CF3378E272DB11ED8483E95DC4F9AE02.roa (hash: oTWmtO2mgStqeMj6jPmXnnLNrPwchhiOjUM05tQ62SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25, serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Dec 20 18:13:07 2025 GMT Not After : Dec 27 18:13:07 2025 GMT Subject: CN=6946e734-4267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:94:2a:c3:19:40:43:4e:a6:63:08:67:c5:71: cd:77:bb:95:ba:7c:23:6b:72:ae:d7:0e:8f:47:f9: 22:8f:a9:2c:41:6f:5c:24:cc:d6:c6:16:ac:16:78: 80:ee:67:fd:0a:66:6e:98:9a:5b:72:ef:fc:e9:c9: 42:47:7b:e8:3f:86:16:e1:d5:95:eb:46:d5:f0:0d: fb:ae:cf:3c:46:8c:0f:c6:6f:5f:10:8f:c8:8d:63: c6:d8:f2:96:09:44:bd:39:65:64:09:16:0b:23:54: 21:ae:60:0a:78:40:ca:fc:b6:76:ed:07:4c:8e:e1: b9:24:70:d0:d0:e4:a2:6b:58:21:0f:4f:a4:f8:60: 9e:8d:d5:34:7d:b7:42:bf:1c:fa:6c:26:1d:55:e4: 08:b3:01:13:cb:eb:01:74:d7:1e:ba:60:ae:e1:15: 91:9e:b6:93:82:15:b3:b8:16:f6:4c:98:7f:af:b2: 5b:8a:af:81:8b:64:71:53:cf:0a:cc:f0:46:17:4b: 60:38:b1:24:e8:58:13:10:b0:29:e0:fb:d7:39:c3: 09:6b:1a:e9:db:69:13:9b:8a:9e:8c:fe:4d:48:d8: 75:c0:ae:17:5d:85:83:e8:49:df:53:1f:40:38:a8: f7:93:e5:30:04:e3:70:9e:a6:a2:c6:45:7e:df:54: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:69:A6:08:87:DF:6F:48:4B:CB:CF:26:3A:F5:7F:6F:6D:83:C6:41 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:29:a2:d4:1f:48:e6:e9:2e:15:d3:20:6c:39:77:5c:41:ae: 98:58:d0:a5:8d:e4:86:13:0e:73:9d:53:30:b4:37:bf:84:b9: 85:de:a5:78:21:1a:0d:1d:44:d9:e8:f3:63:45:47:3b:9c:cb: ec:f8:04:d9:27:61:cc:e7:85:86:dc:d4:58:6f:9c:4d:c1:85: e0:08:a7:a3:9c:2d:16:5d:18:58:ce:c3:33:a5:3a:13:b1:44: b4:3a:df:23:de:37:53:1f:ce:d7:2e:42:47:96:2a:04:30:ec: 26:b2:8c:0f:19:f9:7d:88:fe:2c:0a:79:02:a9:b7:b0:fa:91: 19:7d:c1:e0:cb:c0:67:84:51:6d:27:5c:e2:2d:bd:15:35:55: 9b:6e:2e:91:26:3c:74:b5:73:2e:14:db:92:04:a4:e2:81:43: 60:0b:ca:e3:1e:8b:b1:3c:b4:50:a8:0f:48:e6:e8:f1:99:01: ae:77:04:08:13:e1:d6:f0:85:cb:ea:cb:22:e0:33:05:80:fc: 17:61:bb:89:ae:ce:f5:83:3e:fa:3c:0b:e6:10:f9:cb:3e:dd: 33:6b:f8:b3:ad:22:8c:03:db:44:10:4a:67:8d:b1:ef:4f:b2: 6e:3d:98:35:80:90:06:12:b1:df:7b:57:cf:53:f3:ee:33:c4: 52:92:36:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjUxMjIwMTgxMzA3WhcNMjUxMjI3MTgxMzA3WjAYMRYwFAYD VQQDDA02OTQ2ZTczNC00MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpQqwxlAQ06mYwhnxXHNd7uVunwja3Ku1w6PR/kij6ksQW9cJMzWxhasFniA 7mf9CmZumJpbcu/86clCR3voP4YW4dWV60bV8A37rs88RowPxm9fEI/IjWPG2PKW CUS9OWVkCRYLI1QhrmAKeEDK/LZ27QdMjuG5JHDQ0OSia1ghD0+k+GCejdU0fbdC vxz6bCYdVeQIswETy+sBdNceumCu4RWRnraTghWzuBb2TJh/r7Jbiq+Bi2RxU88K zPBGF0tgOLEk6FgTELAp4PvXOcMJaxrp22kTm4qejP5NSNh1wK4XXYWD6EnfUx9A OKj3k+UwBONwnqaixkV+31Sp5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVppgiH 329IS8vPJjr1f29tg8ZBMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkQyNS8wN0Y4MjE0QTE0RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3 aEhkbURXZ3JmTFAxbElNZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANKaLUH0jm6S4V0yBsOXdcQa6YWNCljeSGEw5znVMwtDe/hLmF3qV4 IRoNHUTZ6PNjRUc7nMvs+ATZJ2HM54WG3NRYb5xNwYXgCKejnC0WXRhYzsMzpToT sUS0Ot8j3jdTH87XLkJHlioEMOwmsowPGfl9iP4sCnkCqbew+pEZfcHgy8BnhFFt J1ziLb0VNVWbbi6RJjx0tXMuFNuSBKTigUNgC8rjHouxPLRQqA9I5ujxmQGudwQI E+HW8IXL6ssi4DMFgPwXYbuJrs71gz76PAvmEPnLPt0za/izrSKMA9tEEEpnjbHv T7JuPZg1gJAGErHfe1fPU/PuM8RSkjbo -----END CERTIFICATE-----Generated at Mon Dec 22 03:48:28 2025 by rpki-client