This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.mft File: -Y3cNC9-J7aMoI09R8emmyaVXqE.mft (raw, json) Hash identifier: bfiF+rfz/HasVk/Lbxfd1xDQgkewbBxe8unO8ub53hc= Subject key identifier: 33:3D:47:5C:3D:04:3B:BE:E3:87:BC:54:06:A8:DC:79:27:23:1D:4A Authority key identifier: F9:8D:DC:34:2F:7E:27:B6:8C:A0:8D:3D:47:C7:A6:9B:26:95:5E:A1 Certificate issuer: /CN=A913C68B/serialNumber=F98DDC342F7E27B68CA08D3D47C7A69B26955EA1 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.mft Manifest number: 01A0 Signing time: Fri 19 Dec 2025 02:32:42 +0000 Manifest this update: Fri 19 Dec 2025 02:32:41 +0000 Manifest next update: Fri 26 Dec 2025 02:32:41 +0000 Files and hashes: 1: -Y3cNC9-J7aMoI09R8emmyaVXqE.crl (hash: UBPIqudtb/N+AJiduhxq13wPCDfW7JoZ6/+QxcS9g7s=) 2: B0EBC1C862D111EEB797E270C4F9AE02.roa (hash: ++0QiVeLPEmyT+ITtj57pCo9A+xq5C1IFHR2CEvwF04=) 3: 98647190660511EE9F741151C4F9AE02.roa (hash: w5qfrybVCNEt6L5g9RuoRTFfg1zzv3yykY9V2clxDGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.crl rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C68B, serialNumber=F98DDC342F7E27B68CA08D3D47C7A69B26955EA1 Validity Not Before: Dec 19 02:32:41 2025 GMT Not After : Dec 26 02:32:41 2025 GMT Subject: CN=6944b94a-880d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ee:05:cc:14:10:46:cc:a8:c9:61:2d:31:ae: ee:da:81:ce:f7:87:a5:87:f6:c9:75:95:4d:04:63: f5:23:92:bf:92:14:45:d0:97:04:5d:32:45:dc:fd: e1:a5:5d:2e:d3:d2:ee:fa:5e:2f:9e:8f:f1:45:5c: a2:33:c3:d2:5a:08:43:d4:49:32:7e:80:d2:25:22: 1f:6c:e1:5d:b3:0d:40:34:8b:7c:fe:26:d6:fb:03: 8d:3e:60:94:75:c3:ad:b7:bf:50:de:fd:19:46:c9: d1:d9:26:cd:51:57:44:b3:50:52:23:47:ce:14:cd: 4b:49:a6:2b:7d:80:57:e3:4d:09:46:05:7d:26:be: 25:1f:82:15:af:99:18:ba:14:d0:f9:71:e5:cc:b0: e6:c7:d3:d2:d8:69:76:07:84:8e:b9:39:cc:44:ac: 30:32:27:73:f2:af:2f:57:7f:fe:68:34:76:46:b8: 76:63:3e:47:59:97:c1:8f:f7:22:15:b2:9f:40:22: 85:7b:d6:5a:ba:e3:8e:cf:30:42:cc:d1:b1:86:eb: 7a:ee:bb:e6:0d:99:09:da:0f:a3:81:ab:da:8d:d4: 12:69:00:d3:a8:c5:0f:ac:54:f9:92:b4:21:d7:5b: 52:80:fc:0f:99:b2:64:9a:fa:1d:3b:23:a2:2c:8b: 5c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3D:47:5C:3D:04:3B:BE:E3:87:BC:54:06:A8:DC:79:27:23:1D:4A X509v3 Authority Key Identifier: keyid:F9:8D:DC:34:2F:7E:27:B6:8C:A0:8D:3D:47:C7:A6:9B:26:95:5E:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Y3cNC9-J7aMoI09R8emmyaVXqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C68B/4E9C1F9062D111EEAA1C864DC4F9AE02/-Y3cNC9-J7aMoI09R8emmyaVXqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:8d:93:29:92:6f:f8:0b:dc:74:ab:bd:e2:27:4a:ec:ec:15: 5e:33:a1:5f:38:eb:66:ce:75:89:73:e1:62:20:bf:19:8b:88: dc:5e:9f:0f:a7:20:5a:80:bc:64:ab:b2:4a:6c:68:92:4d:0d: 7b:1e:c5:37:af:31:63:40:e7:38:1d:ab:82:7a:ea:ac:ac:57: 83:c9:91:cf:b1:c1:05:3f:07:26:f5:f0:0c:14:d2:cf:30:66: 60:c1:3b:77:3f:5e:72:09:44:b6:f0:9c:4f:d0:a8:48:10:bb: 0a:d0:ed:c9:1a:f3:e3:81:a4:d0:2c:bf:42:fc:50:cb:52:d5: bd:51:1b:45:b6:ec:4f:be:a2:fe:60:6a:69:b2:2b:83:2d:d2: a6:23:5e:e9:f4:b4:c5:f7:fc:c1:14:e6:20:65:8f:f7:06:b0: 52:6a:b1:d5:34:55:9b:85:f1:79:4b:b0:31:42:58:6e:d2:d8: 73:a9:5a:ec:a1:a1:f2:b9:40:1d:6a:38:19:81:2a:03:6a:12: e8:da:cd:04:6f:d2:19:76:d1:7a:2d:82:dc:31:fb:d1:b3:fd: 4e:7c:c8:eb:1f:cc:58:bd:d9:7c:de:8b:83:de:81:6e:26:59: e4:a8:e6:fb:80:2d:46:db:80:e7:15:ce:94:9c:df:da:1c:06: ed:d3:aa:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M2OEIxMTAvBgNVBAUTKEY5OEREQzM0MkY3RTI3QjY4Q0EwOEQzRDQ3QzdBNjlC MjY5NTVFQTEwHhcNMjUxMjE5MDIzMjQxWhcNMjUxMjI2MDIzMjQxWjAYMRYwFAYD VQQDDA02OTQ0Yjk0YS04ODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO4FzBQQRsyoyWEtMa7u2oHO94elh/bJdZVNBGP1I5K/khRF0JcEXTJF3P3h pV0u09Lu+l4vno/xRVyiM8PSWghD1EkyfoDSJSIfbOFdsw1ANIt8/ibW+wONPmCU dcOtt79Q3v0ZRsnR2SbNUVdEs1BSI0fOFM1LSaYrfYBX400JRgV9Jr4lH4IVr5kY uhTQ+XHlzLDmx9PS2Gl2B4SOuTnMRKwwMidz8q8vV3/+aDR2Rrh2Yz5HWZfBj/ci FbKfQCKFe9ZauuOOzzBCzNGxhut67rvmDZkJ2g+jgavajdQSaQDTqMUPrFT5krQh 11tSgPwPmbJkmvodOyOiLItceQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDM9R1w9 BDu+44e8VAao3HknIx1KMB8GA1UdIwQYMBaAFPmN3DQvfie2jKCNPUfHppsmlV6h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzY4Qi80RTlDMUY5MDYy RDExMUVFQUExQzg2NERDNEY5QUUwMi8tWTNjTkM5LUo3YU1vSTA5UjhlbW15YVZY cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ZM2NOQzktSjdhTW9JMDlSOGVtbXlhVlhxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzY4Qi80RTlDMUY5MDYyRDExMUVFQUExQzg2NERDNEY5QUUwMi8tWTNjTkM5LUo3 YU1vSTA5UjhlbW15YVZYcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1jZMpkm/4C9x0q73iJ0rs7BVeM6FfOOtmznWJc+FiIL8Zi4jcXp8P pyBagLxkq7JKbGiSTQ17HsU3rzFjQOc4HauCeuqsrFeDyZHPscEFPwcm9fAMFNLP MGZgwTt3P15yCUS28JxP0KhIELsK0O3JGvPjgaTQLL9C/FDLUtW9URtFtuxPvqL+ YGppsiuDLdKmI17p9LTF9/zBFOYgZY/3BrBSarHVNFWbhfF5S7AxQlhu0thzqVrs oaHyuUAdajgZgSoDahLo2s0Eb9IZdtF6LYLcMfvRs/1OfMjrH8xYvdl83ouD3oFu JlnkqOb7gC1G24DnFc6UnN/aHAbt06rv -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:49 2025 by rpki-client