This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft (raw, json) Hash identifier: fi9ni4alPmwmMudluzJlVXisB6XGCn0RFjFhtryUyLk= Subject key identifier: A2:56:A7:03:53:2D:4F:9D:C8:E7:E6:9A:60:C2:94:68:0A:5C:FD:9C Authority key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Certificate issuer: /CN=A9159FAF/serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft Manifest number: 019F Signing time: Sun 21 Dec 2025 02:40:48 +0000 Manifest this update: Sun 21 Dec 2025 02:40:48 +0000 Manifest next update: Sun 28 Dec 2025 02:40:48 +0000 Files and hashes: 1: y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl (hash: mcN+jO/x8Apb/LDrZpCr10i+pa5SiV0mbDyUXJteD9A=) 2: B752E03A97CE11F0ADE43030C4F9AE02.roa (hash: UlT/oF85OcS2SKCUgl+PsPTlbGKhNl+SEibXUqkYmEY=) 3: A910F37297CE11F0885B0A30C4F9AE02.roa (hash: cQK647yMwwLX45q9mOT0EIccACxOtmPbIGvaw9w+/pc=) 4: 6A0C1182CA9D11F084B0E810C4F9AE02.roa (hash: TaQe7pVCJcOvg3Dz/rOBAa2x20/W94Gc+N+7uDAQWBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Validity Not Before: Dec 21 02:40:48 2025 GMT Not After : Dec 28 02:40:48 2025 GMT Subject: CN=69475e30-6429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:15:3b:40:56:bf:cc:43:0d:6e:59:4d:cf:01: 55:72:12:a2:63:48:92:e8:6c:48:38:a1:43:0a:2e: b8:6d:3e:30:b6:1a:1d:c6:0b:cc:46:bb:0d:bc:9b: 31:7a:c6:e0:3b:f6:48:5d:2e:b1:46:f5:3b:ed:44: a9:a4:70:c8:40:e9:e0:dc:ba:a7:f7:8c:ef:50:30: c7:2f:bd:61:2c:59:05:ab:1c:20:09:2c:b6:ef:8c: c9:1a:8e:f2:a4:23:e7:43:12:5d:e3:cb:7e:93:ce: 41:7f:a1:28:08:32:a4:f6:f4:9f:17:65:b6:8f:f0: 11:b9:56:27:95:20:76:4c:e8:5f:eb:89:2a:73:25: a5:46:46:97:f6:ec:c3:66:31:ca:bd:47:ea:ee:ef: e9:cf:e6:f7:51:37:77:63:a4:c7:51:49:db:14:81: 9c:43:75:45:76:af:dd:ff:e6:73:9c:92:9c:cf:d4: 24:14:64:67:e2:33:f3:c4:8d:f0:67:f5:f3:d0:ba: 3f:0f:45:09:af:aa:a4:e5:b6:ed:90:a5:85:24:e3: 89:2c:91:61:86:b9:7f:51:80:5d:26:9a:d4:d2:92: 06:99:67:7a:ec:eb:b9:c9:87:5a:56:a2:c9:50:be: e7:1c:c7:51:a3:c1:26:65:f8:1f:fa:00:66:9c:6f: b4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:56:A7:03:53:2D:4F:9D:C8:E7:E6:9A:60:C2:94:68:0A:5C:FD:9C X509v3 Authority Key Identifier: keyid:CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ac:04:27:ce:06:ff:d8:f8:4c:31:04:2f:68:0f:85:d7:f5: 34:9b:73:61:7b:6b:a9:82:8d:91:d5:0b:60:7c:f4:8c:25:5a: b8:61:00:6e:0f:7f:49:ac:5a:e4:59:41:0b:a7:5f:5d:93:7d: 38:a4:6f:65:0e:f2:69:ca:5a:d2:d1:95:1c:3a:ca:e6:84:69: c5:60:86:c1:c5:af:e8:25:80:72:7c:eb:bd:e0:94:b1:00:24: 6f:ed:68:c1:35:1b:58:04:1c:38:03:ea:d4:f7:3a:fb:27:a4: 0a:e6:d4:b4:1f:af:a4:b2:76:0d:60:6e:6b:b3:7c:a7:f4:9e: 47:63:87:9e:ab:de:d2:15:f7:aa:5f:35:e0:5e:99:be:43:4e: 97:58:31:cf:eb:d3:32:07:29:8c:1e:3f:e6:9b:58:2a:62:c6: 90:cd:77:71:6b:71:08:39:a5:06:1b:d9:f2:83:30:58:35:9a: 5c:bf:e2:73:3e:c4:89:45:a4:f0:cb:08:71:2e:f8:b8:a8:b0: 91:6b:6b:ef:dc:63:d5:46:81:46:3f:32:05:04:6a:0b:ab:f0: a3:75:31:2a:33:88:ea:4c:cc:96:85:c7:c2:08:06:0c:cd:4c: 89:15:9e:36:07:59:27:31:1a:cf:33:64:73:f8:d3:84:11:12: 41:da:48:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3QjRGN0JGRDZD Qjc4REE0NzkwHhcNMjUxMjIxMDI0MDQ4WhcNMjUxMjI4MDI0MDQ4WjAYMRYwFAYD VQQDDA02OTQ3NWUzMC02NDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RU7QFa/zEMNbllNzwFVchKiY0iS6GxIOKFDCi64bT4wthodxgvMRrsNvJsx esbgO/ZIXS6xRvU77USppHDIQOng3Lqn94zvUDDHL71hLFkFqxwgCSy274zJGo7y pCPnQxJd48t+k85Bf6EoCDKk9vSfF2W2j/ARuVYnlSB2TOhf64kqcyWlRkaX9uzD ZjHKvUfq7u/pz+b3UTd3Y6THUUnbFIGcQ3VFdq/d/+ZznJKcz9QkFGRn4jPzxI3w Z/Xz0Lo/D0UJr6qk5bbtkKWFJOOJLJFhhrl/UYBdJprU0pIGmWd67Ou5yYdaVqLJ UL7nHMdRo8EmZfgf+gBmnG+0hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJWpwNT LU+dyOfmmmDClGgKXP2cMB8GA1UdIwQYMBaAFMvsbxg5BUh1IceUe097/Wy3jaR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUZBRi8xMjk1NzVDNDZF NDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNIVWh4NVI3VDN2OWJMZU5w SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kteHZHRGtGU0hVaHg1UjdUM3Y5YkxlTnBIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0RrRlNI VWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXrAQnzgb/2PhMMQQvaA+F1/U0m3Nhe2upgo2R1QtgfPSMJVq4YQBu D39JrFrkWUELp19dk304pG9lDvJpylrS0ZUcOsrmhGnFYIbBxa/oJYByfOu94JSx ACRv7WjBNRtYBBw4A+rU9zr7J6QK5tS0H6+ksnYNYG5rs3yn9J5HY4eeq97SFfeq XzXgXpm+Q06XWDHP69MyBymMHj/mm1gqYsaQzXdxa3EIOaUGG9nygzBYNZpcv+Jz PsSJRaTwywhxLvi4qLCRa2vv3GPVRoFGPzIFBGoLq/CjdTEqM4jqTMyWhcfCCAYM zUyJFZ42B1knMRrPM2Rz+NOEERJB2kgu -----END CERTIFICATE-----Generated at Sun Dec 21 11:27:04 2025 by rpki-client