This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: +DhJkT8jrpgPqyXagX0SXpmS/Rq6TEznBLzmQCdQJmE= Subject key identifier: 07:BD:06:D4:B4:27:C0:B7:FB:DA:B4:9D:86:70:5F:63:2D:D6:DC:FF Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 061B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 0614 Signing time: Thu 18 Dec 2025 22:13:13 +0000 Manifest this update: Thu 18 Dec 2025 22:13:13 +0000 Manifest next update: Thu 25 Dec 2025 22:13:13 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: Ru9g6Eg8nEaoaGWCFEND3zXte/wWtiDOdYMYiIqUEA8=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: W1fkw/mYSuTpBkq23h73Gt2ZtwtQaM95I1fyF0uTlto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Dec 18 22:13:13 2025 GMT Not After : Dec 25 22:13:13 2025 GMT Subject: CN=69447c79-19c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:71:39:3b:f6:97:ff:7f:1f:30:3b:f3:96:49: f2:d9:a6:53:4a:4e:42:da:ae:11:6a:ef:36:9f:f0: 0d:9d:5d:25:c5:21:14:ef:fb:96:db:a8:07:27:eb: 6b:a1:4a:e8:4e:34:f0:58:6d:da:f2:b0:e6:42:69: 93:72:b5:e3:ad:7e:8a:38:3a:cf:d6:80:46:33:b2: 96:4a:2f:4f:d4:10:fe:8b:e5:08:1e:fe:2d:25:73: ca:7d:7e:a8:41:6e:e2:37:2f:a1:70:f4:a8:95:00: d2:e9:d6:70:17:78:00:49:ef:ef:b0:86:e3:c9:83: 03:18:2d:49:10:c7:3c:bf:55:8e:02:a2:0f:17:22: bb:ab:1e:08:ad:fd:4c:e2:61:1e:d2:9c:b6:65:60: fd:37:66:b0:98:4c:1b:e8:b4:b7:af:50:49:e8:7f: 10:f2:28:d6:42:85:5c:3d:c1:19:f7:f3:eb:09:8e: e1:cc:79:24:05:16:de:34:e8:bc:8d:0a:ab:23:64: cd:e4:22:09:a8:08:7f:0f:ec:c2:4c:be:61:47:bd: ba:af:ae:bb:e1:e9:f9:ac:9b:d9:00:a2:40:b2:e6: 85:e9:90:2f:87:d4:93:f6:45:a2:a6:91:fa:34:92: 08:da:33:cd:e5:72:25:2c:b7:73:2f:3a:f5:15:8c: ef:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BD:06:D4:B4:27:C0:B7:FB:DA:B4:9D:86:70:5F:63:2D:D6:DC:FF X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:29:ab:1e:59:aa:04:19:1c:6f:c2:91:29:fe:d8:ca:8f:29: 23:5c:fa:00:d5:3a:cd:09:d4:7b:ea:81:d7:f8:b3:d3:cc:de: 0e:b6:d2:9a:17:62:29:df:d0:49:2c:09:77:bc:05:e7:3c:22: 20:d0:5a:10:30:3c:3a:7c:55:58:ed:eb:15:cf:e7:cb:9d:94: 9f:1f:30:30:7e:20:60:f7:43:09:c5:c1:06:6b:32:e3:93:18: 23:10:88:61:a0:e1:54:59:a7:1b:2e:c9:d1:9d:b8:42:b1:61: 36:aa:9e:36:d1:1a:ec:af:a2:1a:d7:7e:12:97:2a:cb:9b:e1: 38:1e:7c:4e:6d:ea:be:fe:83:22:bc:58:19:b8:7d:6e:4a:9b: 39:bd:b4:e1:cb:30:ee:87:3b:cc:bc:ac:4d:7b:a3:7a:ac:31: 2b:ff:b4:ec:de:52:51:5c:6e:e8:7b:84:64:30:a3:7c:74:5b: 15:4d:f2:f4:34:bb:9f:f5:d7:f6:ee:84:5f:90:c3:5a:76:ea: 45:f1:76:a8:bd:85:72:54:cc:df:90:c0:ba:9a:4c:d2:fb:e3: 1f:f3:ec:68:5e:b8:6a:10:0f:70:d7:e4:a1:da:d5:d6:1b:07: e2:6b:a6:3b:e0:54:66:6b:ee:63:dc:7f:14:52:45:6c:1a:20: 56:2c:80:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUxMjE4MjIxMzEzWhcNMjUxMjI1MjIxMzEzWjAYMRYwFAYD VQQDDA02OTQ0N2M3OS0xOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnE5O/aX/38fMDvzlkny2aZTSk5C2q4Rau82n/ANnV0lxSEU7/uW26gHJ+tr oUroTjTwWG3a8rDmQmmTcrXjrX6KODrP1oBGM7KWSi9P1BD+i+UIHv4tJXPKfX6o QW7iNy+hcPSolQDS6dZwF3gASe/vsIbjyYMDGC1JEMc8v1WOAqIPFyK7qx4Irf1M 4mEe0py2ZWD9N2awmEwb6LS3r1BJ6H8Q8ijWQoVcPcEZ9/PrCY7hzHkkBRbeNOi8 jQqrI2TN5CIJqAh/D+zCTL5hR726r6674en5rJvZAKJAsuaF6ZAvh9ST9kWippH6 NJII2jPN5XIlLLdzLzr1FYzvvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAe9BtS0 J8C3+9q0nYZwX2Mt1tz/MB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9KaseWaoEGRxvwpEp/tjKjykjXPoA1TrNCdR76oHX+LPTzN4OttKa F2Ip39BJLAl3vAXnPCIg0FoQMDw6fFVY7esVz+fLnZSfHzAwfiBg90MJxcEGazLj kxgjEIhhoOFUWacbLsnRnbhCsWE2qp420Rrsr6Ia134SlyrLm+E4HnxObeq+/oMi vFgZuH1uSps5vbThyzDuhzvMvKxNe6N6rDEr/7Ts3lJRXG7oe4RkMKN8dFsVTfL0 NLuf9df27oRfkMNadupF8XaovYVyVMzfkMC6mkzS++Mf8+xoXrhqEA9w1+Sh2tXW Gwfia6Y74FRma+5j3H8UUkVsGiBWLIBG -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:32 2025 by rpki-client