This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: ZXX/uQu5PXY7pPAK2OnJ1bKtV5W8Riij8Qu8bpsVzxw= Subject key identifier: 34:4F:83:2D:6D:92:1D:30:1B:77:17:53:6C:54:D3:E4:B5:49:16:F4 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 0920 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 08F3 Signing time: Mon 22 Dec 2025 19:47:38 +0000 Manifest this update: Mon 22 Dec 2025 19:47:37 +0000 Manifest next update: Mon 29 Dec 2025 19:47:37 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: WI+2PICOZKRbm+EX4VULgn3AZKo+t6JgSLb4ZQs4/GA=) 2: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: /6RdNjawuKYuhK/injB7VuoeyL7n6oTSV9kNVsfLQfE=) 3: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K4ZsrhlRHbGz6KmikspiKMatFVTA+yV67UI0J6tV1jI=) 4: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: bPeJO2btPaCYUVh0qNcUsTHYhYl9S+AMYJDMiRwcwDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2336 (0x920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Dec 22 19:47:37 2025 GMT Not After : Dec 29 19:47:37 2025 GMT Subject: CN=6949a05a-05b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:86:1f:f2:7b:7c:09:eb:47:70:97:b3:ee:1c: 16:15:02:8f:75:20:5e:da:ac:f8:bd:2e:2e:9b:6a: e2:d6:12:0a:a6:5f:71:6d:7b:a7:fe:ba:cc:e9:5b: 37:6d:0e:53:39:24:ae:9e:8f:6a:d5:25:18:40:8b: a7:e5:c5:76:a0:78:05:cd:65:ef:96:4b:ba:ef:ed: 4c:d9:4a:60:45:c7:0a:c9:a9:e2:39:56:e3:9f:93: 3a:2e:09:13:75:2b:6b:eb:13:15:e5:ac:00:a9:b3: bb:79:59:bd:19:72:ba:4e:e7:d2:80:b3:1b:b9:c9: a6:03:f6:ee:88:3a:eb:27:71:71:37:71:90:4e:b0: 9d:67:df:47:d4:9a:c5:b9:11:e7:92:b0:d5:54:0c: 53:29:e4:05:84:1c:d8:00:8f:57:7c:c6:2e:9c:b5: ee:2b:30:43:93:07:b3:75:5a:2a:f8:53:31:bd:93: 45:ee:33:c7:5a:6d:b9:13:18:67:09:e6:57:91:d9: d0:c5:9e:f6:c6:4d:b6:29:87:c8:6e:8e:22:50:8b: 5e:b2:ac:19:26:ff:91:de:1f:e2:3a:dc:13:e6:9d: 4e:60:12:cb:eb:d5:52:32:ff:36:7a:48:fa:2c:f9: d8:62:a6:d0:7d:99:8f:9d:e0:49:11:9f:82:0f:90: 56:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4F:83:2D:6D:92:1D:30:1B:77:17:53:6C:54:D3:E4:B5:49:16:F4 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b4:66:d4:8c:1e:a7:f3:c3:e2:5b:c0:bf:96:d8:c9:26:a7: 3d:8d:1f:1e:c2:2b:71:57:b7:46:59:e0:00:c6:9d:19:74:d7: 2e:c5:fd:94:85:c9:47:32:4e:e7:cb:8b:fd:cc:e4:f7:51:9b: da:f0:63:56:b8:3a:1e:49:ab:af:ba:cc:92:63:ab:43:7e:a2: f8:7b:d2:b4:75:20:22:76:dd:44:1c:e2:81:90:8a:d5:ed:93: 94:c9:fe:5d:58:e4:ec:7c:79:c3:c7:39:29:b7:9d:65:5b:15: 85:08:4e:a4:f5:89:07:09:0a:d2:84:eb:f3:2e:67:d2:35:dd: 71:4b:97:5f:da:22:34:4f:6a:f4:58:a7:83:61:ac:bc:f6:73: af:53:9f:b0:c1:05:73:6c:02:a6:36:8b:47:c2:db:ac:f2:82: d2:e9:d7:d6:7a:de:40:25:c8:13:c2:9b:24:24:8d:88:36:5e: 43:62:bd:74:8f:ee:48:f9:c2:7a:3a:ef:d0:24:53:7a:cb:b7: 43:73:a8:82:82:d4:ca:56:df:f4:e5:41:8b:ee:a1:de:5d:52: af:b8:aa:96:be:cb:f6:50:93:17:65:be:fe:90:89:af:92:5f: 91:dd:54:00:5f:7b:3d:e9:e1:6c:19:cb:10:d5:b4:b9:63:9e: cb:7d:4f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUxMjIyMTk0NzM3WhcNMjUxMjI5MTk0NzM3WjAYMRYwFAYD VQQDDA02OTQ5YTA1YS0wNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlIYf8nt8CetHcJez7hwWFQKPdSBe2qz4vS4um2ri1hIKpl9xbXun/rrM6Vs3 bQ5TOSSuno9q1SUYQIun5cV2oHgFzWXvlku67+1M2UpgRccKyaniOVbjn5M6LgkT dStr6xMV5awAqbO7eVm9GXK6TufSgLMbucmmA/buiDrrJ3FxN3GQTrCdZ99H1JrF uRHnkrDVVAxTKeQFhBzYAI9XfMYunLXuKzBDkwezdVoq+FMxvZNF7jPHWm25Exhn CeZXkdnQxZ72xk22KYfIbo4iUItesqwZJv+R3h/iOtwT5p1OYBLL69VSMv82ekj6 LPnYYqbQfZmPneBJEZ+CD5BWXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRPgy1t kh0wG3cXU2xU0+S1SRb0MB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmtGbUjB6n88PiW8C/ltjJJqc9jR8ewitxV7dGWeAAxp0ZdNcuxf2U hclHMk7ny4v9zOT3UZva8GNWuDoeSauvusySY6tDfqL4e9K0dSAidt1EHOKBkIrV 7ZOUyf5dWOTsfHnDxzkpt51lWxWFCE6k9YkHCQrShOvzLmfSNd1xS5df2iI0T2r0 WKeDYay89nOvU5+wwQVzbAKmNotHwtus8oLS6dfWet5AJcgTwpskJI2INl5DYr10 j+5I+cJ6Ou/QJFN6y7dDc6iCgtTKVt/05UGL7qHeXVKvuKqWvsv2UJMXZb7+kImv kl+R3VQAX3s96eFsGcsQ1bS5Y57LfU/I -----END CERTIFICATE-----Generated at Wed Dec 24 15:16:25 2025 by rpki-client