This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft File: y2bgNeLweFj09ztHjc2FpjakJQo.mft (raw, json) Hash identifier: bBj6AJ15/YiUNJnOPxUl4HmWcV8a51sq49p6IzvE+F8= Subject key identifier: 51:31:E0:74:8B:8C:9E:A9:7C:4E:C6:1F:EE:5A:9D:83:C5:4C:05:78 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft Manifest number: 0139 Signing time: Wed 31 Dec 2025 03:41:06 +0000 Manifest this update: Wed 31 Dec 2025 03:41:06 +0000 Manifest next update: Wed 07 Jan 2026 03:41:06 +0000 Files and hashes: 1: y2bgNeLweFj09ztHjc2FpjakJQo.crl (hash: ghOcV8uJeJcs1NAMrfNnCYl0mcV+lzqSViWBZQup6Yw=) 2: 82D8082A292611EF875A5C36C4F9AE02.roa (hash: LUt9DJS6Jpbs8PDzvIpOLhLuEq85uifRo0wnGTYcGuc=) 3: 851515FC1C8711EF964ED80AC4F9AE02.roa (hash: ZVnEYOHXINGZEw1RnF1Uj9Pw7AnbBUgkIn8eDQrA8T4=) 4: AF27640226FA11F0B0383240C4F9AE02.roa (hash: 1i0d6pr2ELd59qaQmu9345pITiiNAhlVL8hxc+i1TcY=) 5: 24D519F226FA11F0B737393FC4F9AE02.roa (hash: 08jGNnEflD8e5x3Cs8u4vH+jCRzHFAlUOBfwuUSSNb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 03:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: Dec 31 03:41:06 2025 GMT Not After : Jan 7 03:41:06 2026 GMT Subject: CN=69549b52-f83c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7e:0d:aa:10:9d:fb:78:97:10:7a:12:fe:56: a1:19:52:1a:9f:d3:7a:ac:fe:c8:ea:8e:ab:71:b2: 21:03:b2:91:9f:fc:13:bb:df:b2:0a:16:3a:66:c1: f1:7d:6a:e7:89:90:48:64:ad:e7:57:53:2b:2b:95: 73:94:62:13:b2:3c:76:9a:95:94:07:3f:99:5e:64: 5b:09:0d:c8:dc:48:e2:01:2f:c1:97:ff:fe:2c:d7: a0:5f:5b:90:37:82:1e:6c:7e:13:a3:43:b3:d3:83: 7c:c9:f4:04:99:2e:11:b6:fd:96:50:2f:3d:e1:19: eb:1b:30:0e:4c:76:49:cf:e5:d3:75:d3:a9:0e:95: 48:af:20:3c:5a:54:39:6c:26:7d:3d:81:da:b0:9b: 70:1a:f9:32:3b:1f:59:08:a4:6a:cc:dd:b6:8c:5d: c0:45:81:61:86:d1:4d:d2:d5:1a:60:69:58:59:b2: 60:1a:07:98:ee:78:cd:86:18:f2:0d:8a:c9:06:85: 6c:97:a4:ed:91:99:05:70:e0:04:1c:62:6a:ff:f3: 46:f7:fc:5d:15:47:14:13:30:16:74:30:d7:b0:f3: 35:b5:91:ff:64:1a:e6:f2:e2:e5:6f:11:89:d3:e3: ef:5e:d3:93:0e:38:b0:c2:73:54:d3:e9:a3:d7:fb: 23:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:31:E0:74:8B:8C:9E:A9:7C:4E:C6:1F:EE:5A:9D:83:C5:4C:05:78 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:2c:a4:d9:21:c6:c4:0f:4d:24:df:79:d6:88:d5:29:b4:68: 12:4e:5f:1c:c7:50:6f:62:d5:e6:5f:46:b0:cc:90:50:d7:20: ee:95:43:3b:70:35:24:f6:51:54:1b:77:70:3d:f2:e0:b7:cd: e3:df:9a:26:42:c9:c4:79:7f:9b:c7:39:df:71:a9:49:8a:db: f6:cc:42:b0:af:ed:fc:4e:5a:44:87:f1:f0:65:2c:32:06:e1: d0:11:0f:c5:a2:40:86:99:7b:07:46:dc:96:8e:e2:be:10:75: a8:7f:8f:6e:70:8d:8c:ed:24:75:50:e8:7f:ec:cb:81:e5:0e: e1:ff:54:d3:6e:ab:7a:ff:a9:60:13:70:c9:63:43:f6:ca:05: 01:2e:da:4d:23:7f:07:c6:3f:42:34:71:b8:96:9b:ef:1b:f1: 0a:87:5d:70:58:c7:5f:a9:d1:73:63:11:af:78:34:83:94:df: 98:40:a0:08:97:ef:b0:6b:2a:b2:cb:63:98:2f:47:b5:77:e4: b5:f6:d9:51:aa:58:6b:8e:db:a3:75:bf:4c:be:09:03:e3:90: d0:84:8f:4a:29:7c:26:c9:3b:86:7b:86:31:dd:de:a4:84:24: 11:2c:d8:4d:00:70:e2:55:1c:ad:c6:fc:e5:56:50:29:ea:7c: ef:73:8e:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUxMjMxMDM0MTA2WhcNMjYwMTA3MDM0MTA2WjAYMRYwFAYD VQQDDA02OTU0OWI1Mi1mODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX4NqhCd+3iXEHoS/lahGVIan9N6rP7I6o6rcbIhA7KRn/wTu9+yChY6ZsHx fWrniZBIZK3nV1MrK5VzlGITsjx2mpWUBz+ZXmRbCQ3I3EjiAS/Bl//+LNegX1uQ N4IebH4To0Oz04N8yfQEmS4Rtv2WUC894RnrGzAOTHZJz+XTddOpDpVIryA8WlQ5 bCZ9PYHasJtwGvkyOx9ZCKRqzN22jF3ARYFhhtFN0tUaYGlYWbJgGgeY7njNhhjy DYrJBoVsl6TtkZkFcOAEHGJq//NG9/xdFUcUEzAWdDDXsPM1tZH/ZBrm8uLlbxGJ 0+PvXtOTDjiwwnNU0+mj1/sjVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEx4HSL jJ6pfE7GH+5anYPFTAV4MB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VG ajA5enRIamMyRnBqYWtKUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBULKTZIcbED00k33nWiNUptGgSTl8cx1BvYtXmX0awzJBQ1yDulUM7 cDUk9lFUG3dwPfLgt83j35omQsnEeX+bxznfcalJitv2zEKwr+38TlpEh/HwZSwy BuHQEQ/FokCGmXsHRtyWjuK+EHWof49ucI2M7SR1UOh/7MuB5Q7h/1TTbqt6/6lg E3DJY0P2ygUBLtpNI38Hxj9CNHG4lpvvG/EKh11wWMdfqdFzYxGveDSDlN+YQKAI l++wayqyy2OYL0e1d+S19tlRqlhrjtujdb9MvgkD45DQhI9KKXwmyTuGe4Yx3d6k hCQRLNhNAHDiVRytxvzlVlAp6nzvc46Z -----END CERTIFICATE-----Generated at Wed Dec 31 11:55:39 2025 by rpki-client