This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: h+zeymWsmS/AECaHY79gHwlACRV3wXfIyRg2oc6FY8I= Subject key identifier: A7:8A:A1:4C:9D:6A:04:C2:AD:66:D6:EA:EE:B0:3C:2D:32:CD:A7:1A Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 087D Signing time: Thu 18 Dec 2025 20:06:53 +0000 Manifest this update: Thu 18 Dec 2025 20:06:52 +0000 Manifest next update: Thu 25 Dec 2025 20:06:52 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: 6y0rR6Rx6JO2WTHWhdEeTd3P0ySwYjjV4N6+EfQ5hWI=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: h/ONFX5RBxxUCv61ioAJ3Q3fkstH618CVb7fuwaMYno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Dec 18 20:06:52 2025 GMT Not After : Dec 25 20:06:52 2025 GMT Subject: CN=69445edc-acd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:8f:ec:6e:55:e2:ca:71:7d:0b:59:9e:09: 25:7d:cc:51:74:57:d9:b8:8f:88:1d:6a:43:f1:23: 06:b7:56:87:7c:79:0d:40:fc:1f:24:5f:9a:62:b8: 48:fb:68:ed:86:d7:40:5e:93:a8:8b:06:87:d9:6b: 1b:50:b3:6d:0a:de:23:d6:b7:7f:42:36:40:d5:73: 3d:cb:b2:ef:6c:08:92:01:0e:8a:c1:90:b6:fe:3d: 9d:bc:f4:dc:bf:5a:d7:85:05:6b:f1:98:7e:c1:e2: c6:3f:e5:f6:c9:43:f3:4e:4e:12:35:3f:ea:f6:f9: 35:72:f4:1a:0f:a2:da:c2:4c:b9:20:ee:05:1c:56: 2d:25:20:b0:51:7c:75:e5:7b:e7:c2:77:c6:75:17: 22:bc:57:65:1a:ba:5b:f6:03:ff:2f:1b:c0:73:0d: 3d:19:85:84:b1:e4:d5:dd:1f:95:4a:ef:db:07:8c: 1c:69:49:f4:a3:a9:e6:23:c4:a5:43:7d:e5:75:17: 40:b1:48:81:fa:c1:dc:d7:b2:e2:35:d5:5d:62:4d: aa:dc:50:51:74:7d:f4:32:89:47:d3:75:93:50:59: d2:e8:29:ea:94:bb:fe:c4:4c:fb:e7:ff:99:11:aa: dd:46:5a:ba:f9:a8:51:ce:10:60:ea:dd:73:c8:fd: f8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8A:A1:4C:9D:6A:04:C2:AD:66:D6:EA:EE:B0:3C:2D:32:CD:A7:1A X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:56:68:bb:85:cd:8f:61:ee:04:95:8b:d6:ed:62:1b:43:a5: f1:1c:79:15:f0:94:a3:a4:e4:17:eb:69:87:74:3e:33:0b:b0: 45:44:e0:ae:41:21:2e:58:d1:f8:d1:8d:9c:72:1e:6d:a6:66: 46:b3:69:5a:68:d4:30:81:f5:cc:67:80:68:47:60:62:f9:8e: 44:fa:1f:bc:d6:8d:27:9c:cc:7b:26:f4:7d:e6:51:1a:a1:c0: bf:16:bb:97:4d:58:6f:cb:3d:e5:72:12:af:38:18:66:3d:af: e1:7d:fb:68:01:4f:07:c2:7c:83:f6:b2:9c:a1:77:cf:e5:9b: 69:5b:12:c1:a7:4f:d2:18:d9:39:00:21:05:21:3a:e8:e9:26: 4e:0f:8d:5f:7b:aa:74:71:7c:b2:91:7f:9f:71:af:5f:af:24: 0b:c8:4c:1e:dc:b2:37:2f:08:fa:d0:e2:4b:51:73:87:15:d8: 5d:bc:24:fd:69:36:f1:77:9e:d6:cb:d0:b1:c9:19:fe:b9:b9: 99:bb:da:e0:89:25:c7:65:76:05:f5:8b:d8:81:c3:e8:d2:2f: 25:19:20:09:b5:fa:f3:dc:ba:9a:31:dc:7b:6a:f6:8a:ea:51: ce:a3:f2:a1:23:fd:26:5d:1b:e7:a9:69:26:4c:b9:f8:84:45: 93:2f:0f:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMjE4MjAwNjUyWhcNMjUxMjI1MjAwNjUyWjAYMRYwFAYD VQQDDA02OTQ0NWVkYy1hY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4CGP7G5V4spxfQtZngklfcxRdFfZuI+IHWpD8SMGt1aHfHkNQPwfJF+aYrhI +2jthtdAXpOoiwaH2WsbULNtCt4j1rd/QjZA1XM9y7LvbAiSAQ6KwZC2/j2dvPTc v1rXhQVr8Zh+weLGP+X2yUPzTk4SNT/q9vk1cvQaD6Lawky5IO4FHFYtJSCwUXx1 5XvnwnfGdRcivFdlGrpb9gP/LxvAcw09GYWEseTV3R+VSu/bB4wcaUn0o6nmI8Sl Q33ldRdAsUiB+sHc17LiNdVdYk2q3FBRdH30MolH03WTUFnS6CnqlLv+xEz75/+Z EardRlq6+ahRzhBg6t1zyP34DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeKoUyd agTCrWbW6u6wPC0yzacaMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsVmi7hc2PYe4ElYvW7WIbQ6XxHHkV8JSjpOQX62mHdD4zC7BFROCu QSEuWNH40Y2cch5tpmZGs2laaNQwgfXMZ4BoR2Bi+Y5E+h+81o0nnMx7JvR95lEa ocC/FruXTVhvyz3lchKvOBhmPa/hfftoAU8HwnyD9rKcoXfP5ZtpWxLBp0/SGNk5 ACEFITro6SZOD41fe6p0cXyykX+fca9fryQLyEwe3LI3Lwj60OJLUXOHFdhdvCT9 aTbxd57Wy9CxyRn+ubmZu9rgiSXHZXYF9YvYgcPo0i8lGSAJtfrz3LqaMdx7avaK 6lHOo/KhI/0mXRvnqWkmTLn4hEWTLw8k -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:52 2025 by rpki-client