This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft File: zYmoJo6xHjMPvUTASHINEyXFpgs.mft (raw, json) Hash identifier: rO1mjHfo9Xb9+UHmh0TVZl9wGpFjAu+lUjOWGwuFAOU= Subject key identifier: DE:F3:D2:E4:86:BD:6F:CA:D4:2D:4B:75:EA:75:A2:AF:4D:64:CE:D4 Authority key identifier: CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B Certificate issuer: /CN=A9144261/serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft Manifest number: 0185 Signing time: Sun 21 Dec 2025 02:55:51 +0000 Manifest this update: Sun 21 Dec 2025 02:55:51 +0000 Manifest next update: Sun 28 Dec 2025 02:55:51 +0000 Files and hashes: 1: zYmoJo6xHjMPvUTASHINEyXFpgs.crl (hash: TQ3AFSZPf/UH69jlhk1wT3MO+EoeA0de1r2bTQmpkiw=) 2: EEF965C0989011EE982B5B23C4F9AE02.roa (hash: cOcYEcKHuf/JYD0AEBC5IpcPkABHQnNi85MejRVjkMU=) 3: 0DFFB0D2989111EEB7938523C4F9AE02.roa (hash: 05BxmRyvKNcOlG0da2lnXsYOxEsMKdSx2ZRkaVaMWv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144261, serialNumber=CD89A8268EB11E330FBD44C048720D1325C5A60B Validity Not Before: Dec 21 02:55:51 2025 GMT Not After : Dec 28 02:55:51 2025 GMT Subject: CN=694761b7-630f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:90:f1:c4:3c:39:93:e6:29:d2:e8:0a:62:9a: ac:bf:27:6a:d3:c3:2c:a8:ac:f1:29:9d:40:02:ab: 8c:4d:9b:91:90:c2:f0:98:71:7b:89:00:80:77:aa: 11:94:5b:62:49:99:8f:a4:e9:e6:35:52:3f:2c:f4: 05:40:6a:57:9f:2f:f4:74:4b:74:83:46:49:11:05: ff:34:12:ca:7a:f0:d0:39:36:d9:ef:2d:25:ee:5b: bb:48:b0:1b:5a:e7:58:72:7c:74:01:72:ed:8a:59: b0:c8:e7:bd:93:eb:10:df:38:ce:15:8f:ca:13:58: f3:97:32:64:4d:a7:24:db:a9:13:61:78:a8:d8:94: 4f:b1:49:bf:0b:b9:ed:2e:82:24:22:dd:79:d3:77: 70:37:0d:b5:5c:4a:14:0f:d8:96:41:06:2e:46:8b: 65:50:db:d7:ce:82:27:28:3b:56:1f:c4:75:f1:41: fa:92:05:58:c0:7d:c8:b5:fb:79:09:1e:1a:6f:71: f4:0c:a3:b8:bd:79:74:1d:66:e4:a1:35:71:cf:b8: bf:16:2f:38:64:f4:1b:90:63:3b:45:2a:d6:c5:11: e5:f2:38:41:7b:1c:fc:72:e4:7c:6e:21:d2:59:68: a4:fe:d6:3e:f9:94:78:b3:52:40:23:29:09:20:c4: f0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F3:D2:E4:86:BD:6F:CA:D4:2D:4B:75:EA:75:A2:AF:4D:64:CE:D4 X509v3 Authority Key Identifier: keyid:CD:89:A8:26:8E:B1:1E:33:0F:BD:44:C0:48:72:0D:13:25:C5:A6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zYmoJo6xHjMPvUTASHINEyXFpgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144261/D065BC4C934211EEA8C15478C4F9AE02/zYmoJo6xHjMPvUTASHINEyXFpgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a7:3f:70:78:d7:bc:14:fe:52:2f:14:12:32:f8:99:91:53: fb:ce:65:38:00:bd:98:02:f9:98:01:92:05:ea:87:6f:ec:b3: d2:f1:9b:2a:7f:e3:3e:40:97:fe:7c:95:e6:f4:02:b6:57:94: a3:70:5b:6d:e1:03:dc:28:77:65:1a:05:00:43:c2:9e:9e:86: 24:bc:d6:23:f0:7b:d7:06:ef:06:d2:8f:e4:c7:9b:7d:2f:0f: 7d:44:cd:73:45:46:7e:6a:60:bd:cf:b1:5d:0a:b7:6a:fb:bf: bd:83:e3:3c:73:3f:bd:50:2e:88:2d:a3:9a:a1:76:19:0e:ce: 28:ba:2e:b6:bb:28:22:2d:cf:d9:7a:48:20:31:6c:d8:53:c8: d4:c0:b3:f6:ed:11:e1:a5:79:bf:74:c7:9b:e9:f4:b7:e4:9f: 71:f6:18:df:ff:a0:d1:88:ac:7f:24:f8:f6:98:68:e1:0d:22: b3:06:5c:7c:1c:bd:a9:3f:11:9f:f4:62:0a:65:d6:45:8b:8c: e7:f6:aa:63:4a:74:96:d7:ea:47:56:01:97:c1:7c:6a:33:8d: 51:a2:c2:aa:f2:7f:92:36:d4:e5:81:f9:92:27:cf:9e:a3:d3: 75:66:35:73:d2:e1:5a:be:52:da:f7:ed:51:4e:d8:63:f0:7d: 37:4d:33:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyNjExMTAvBgNVBAUTKENEODlBODI2OEVCMTFFMzMwRkJENDRDMDQ4NzIwRDEz MjVDNUE2MEIwHhcNMjUxMjIxMDI1NTUxWhcNMjUxMjI4MDI1NTUxWjAYMRYwFAYD VQQDDA02OTQ3NjFiNy02MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJDxxDw5k+Yp0ugKYpqsvydq08MsqKzxKZ1AAquMTZuRkMLwmHF7iQCAd6oR lFtiSZmPpOnmNVI/LPQFQGpXny/0dEt0g0ZJEQX/NBLKevDQOTbZ7y0l7lu7SLAb WudYcnx0AXLtilmwyOe9k+sQ3zjOFY/KE1jzlzJkTack26kTYXio2JRPsUm/C7nt LoIkIt1503dwNw21XEoUD9iWQQYuRotlUNvXzoInKDtWH8R18UH6kgVYwH3Itft5 CR4ab3H0DKO4vXl0HWbkoTVxz7i/Fi84ZPQbkGM7RSrWxRHl8jhBexz8cuR8biHS WWik/tY++ZR4s1JAIykJIMTwywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7z0uSG vW/K1C1Ldep1oq9NZM7UMB8GA1UdIwQYMBaAFM2JqCaOsR4zD71EwEhyDRMlxaYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDI2MS9EMDY1QkM0Qzkz NDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhqTVB2VVRBU0hJTkV5WEZw Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pZbW9KbzZ4SGpNUHZVVEFTSElORXlYRnBncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDI2MS9EMDY1QkM0QzkzNDIxMUVFQThDMTU0NzhDNEY5QUUwMi96WW1vSm82eEhq TVB2VVRBU0hJTkV5WEZwZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwpz9weNe8FP5SLxQSMviZkVP7zmU4AL2YAvmYAZIF6odv7LPS8Zsq f+M+QJf+fJXm9AK2V5SjcFtt4QPcKHdlGgUAQ8KenoYkvNYj8HvXBu8G0o/kx5t9 Lw99RM1zRUZ+amC9z7FdCrdq+7+9g+M8cz+9UC6ILaOaoXYZDs4oui62uygiLc/Z ekggMWzYU8jUwLP27RHhpXm/dMeb6fS35J9x9hjf/6DRiKx/JPj2mGjhDSKzBlx8 HL2pPxGf9GIKZdZFi4zn9qpjSnSW1+pHVgGXwXxqM41RosKq8n+SNtTlgfmSJ8+e o9N1ZjVz0uFavlLa9+1RTthj8H03TTMM -----END CERTIFICATE-----Generated at Sun Dec 21 13:39:59 2025 by rpki-client