This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: 0u5aYBiPDzMThBUC9R8HGwgD1XAvw/uY40R7x6UFavg= Subject key identifier: 56:64:7E:FC:72:2F:78:1A:03:28:B3:8F:8C:E4:E0:1E:70:B2:FC:5C Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 0890 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0882 Signing time: Sun 28 Dec 2025 19:57:56 +0000 Manifest this update: Sun 28 Dec 2025 19:57:56 +0000 Manifest next update: Sun 04 Jan 2026 19:57:56 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: BtfTHjuUl3fjRGIZpGQI6KPQSG3n1mcmrwmZbuR+iFU=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: h/ONFX5RBxxUCv61ioAJ3Q3fkstH618CVb7fuwaMYno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Dec 28 19:57:56 2025 GMT Not After : Jan 4 19:57:56 2026 GMT Subject: CN=69518bc4-a6cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:cd:e7:2d:0f:4c:e7:77:1b:16:79:5f:f4: c2:c2:04:ca:f3:2a:6e:ae:20:1f:4e:8d:1f:a9:f6: 87:37:8e:32:97:62:47:ac:7f:49:2f:c7:be:d4:bd: 24:51:80:fb:68:c2:bc:06:f0:18:c7:50:b2:b0:90: 15:c0:54:ce:ca:50:a1:0c:7b:4e:ab:17:d1:90:8f: e3:96:e9:e1:0f:3b:13:a2:18:0b:27:e1:11:89:de: 65:ed:ea:e3:36:88:61:c3:e1:b3:5f:45:2a:54:67: 89:44:27:69:c1:b8:88:06:1e:b9:00:1b:46:8c:0e: be:bb:90:37:db:3c:ff:5c:3d:50:a1:4d:39:8a:3d: 34:f8:4b:b9:ee:db:43:f2:bb:5a:25:0d:aa:b8:14: 39:40:c3:64:fe:67:13:f4:35:fc:5c:dc:8c:da:bf: eb:15:02:e8:7d:7f:bc:db:7b:03:be:0f:c4:f4:09: d6:88:18:1c:db:00:c0:44:eb:6e:f3:ed:0d:9a:17: a1:9a:e2:5e:3f:66:b4:35:63:5d:39:70:2a:0d:d1: b4:9c:5a:e5:73:97:30:b3:1d:f4:65:bd:47:54:1f: 94:df:1f:6f:4d:e3:35:84:91:f9:14:2d:4e:8e:f7: c3:4a:2e:e8:d1:b2:c2:14:48:50:17:d5:16:a0:17: 7c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:64:7E:FC:72:2F:78:1A:03:28:B3:8F:8C:E4:E0:1E:70:B2:FC:5C X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:2f:93:dd:a1:89:34:97:98:3d:52:f5:32:07:1a:63:12:a2: be:fb:80:0d:04:44:1d:21:bc:94:00:68:64:1b:d1:ae:85:1b: e7:91:bb:75:d4:af:5f:37:b4:a1:c2:af:dd:9a:1a:d2:09:5f: 5b:9a:a7:d8:81:83:22:41:63:f5:98:ae:54:31:5b:f7:f2:d4: 28:a4:2c:cc:3e:ee:bd:10:28:d0:d3:cc:88:90:f4:ab:ff:b3: 0e:44:2a:fb:24:43:ba:27:b9:17:27:19:fd:fe:13:82:4d:5d: 0b:57:1c:c8:a9:60:76:70:ae:05:75:ab:f1:0a:c1:ea:8c:f5: 31:35:78:f2:09:eb:d6:fb:df:4a:b2:0b:db:20:52:5b:98:dc: c4:7f:85:43:da:6d:76:55:c6:6d:ba:7d:d2:91:1b:7b:1b:d8: 72:b7:85:a8:92:97:d6:42:37:e1:b6:d7:a7:38:eb:2d:3e:f7: d2:4a:ac:43:a3:02:9d:2a:ef:a3:3d:93:18:30:df:8a:de:01: a3:ab:a7:54:4b:b3:7c:b0:08:ce:1d:26:16:a8:dc:42:5a:84: 30:cf:26:07:b2:a9:83:90:78:4c:39:fa:11:cc:c0:c1:a6:8a: 8d:d4:57:31:dd:c8:37:3a:bf:61:0f:cb:92:ee:6d:b0:12:7f: 2d:24:78:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjUxMjI4MTk1NzU2WhcNMjYwMTA0MTk1NzU2WjAYMRYwFAYD VQQDDA02OTUxOGJjNC1hNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GzN5y0PTOd3GxZ5X/TCwgTK8ypuriAfTo0fqfaHN44yl2JHrH9JL8e+1L0k UYD7aMK8BvAYx1CysJAVwFTOylChDHtOqxfRkI/jlunhDzsTohgLJ+ERid5l7erj Nohhw+GzX0UqVGeJRCdpwbiIBh65ABtGjA6+u5A32zz/XD1QoU05ij00+Eu57ttD 8rtaJQ2quBQ5QMNk/mcT9DX8XNyM2r/rFQLofX+823sDvg/E9AnWiBgc2wDAROtu 8+0NmhehmuJeP2a0NWNdOXAqDdG0nFrlc5cwsx30Zb1HVB+U3x9vTeM1hJH5FC1O jvfDSi7o0bLCFEhQF9UWoBd84wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZkfvxy L3gaAyizj4zk4B5wsvxcMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5L5PdoYk0l5g9UvUyBxpjEqK++4ANBEQdIbyUAGhkG9GuhRvnkbt1 1K9fN7Shwq/dmhrSCV9bmqfYgYMiQWP1mK5UMVv38tQopCzMPu69ECjQ08yIkPSr /7MORCr7JEO6J7kXJxn9/hOCTV0LVxzIqWB2cK4FdavxCsHqjPUxNXjyCevW+99K sgvbIFJbmNzEf4VD2m12VcZtun3SkRt7G9hyt4WokpfWQjfhttenOOstPvfSSqxD owKdKu+jPZMYMN+K3gGjq6dUS7N8sAjOHSYWqNxCWoQwzyYHsqmDkHhMOfoRzMDB poqN1Fcx3cg3Or9hD8uS7m2wEn8tJHgo -----END CERTIFICATE-----Generated at Mon Dec 29 16:15:27 2025 by rpki-client