This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: e9aSRgKcyJIMRjBybOePS7AInpX+dnWtO0pQe2D4dtg= Subject key identifier: F4:A4:8F:04:03:A7:E0:81:50:07:C2:F1:70:6F:DB:2B:76:FA:3D:77 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D01 Signing time: Sat 20 Dec 2025 17:43:54 +0000 Manifest this update: Sat 20 Dec 2025 17:43:53 +0000 Manifest next update: Sat 27 Dec 2025 17:43:53 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: MWRRngQV8fW41urZGxeBSc3/9m1tVyKLHednI+iwaVw=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3343 (0xd0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Dec 20 17:43:53 2025 GMT Not After : Dec 27 17:43:53 2025 GMT Subject: CN=6946e05a-20a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:8a:84:db:1a:3f:34:d7:33:7d:eb:da:bf: 36:88:08:39:7e:5b:35:59:50:80:52:8c:6f:b3:12: 0d:ed:cf:3a:4a:d6:00:0f:57:22:33:ef:63:9d:32: 21:b4:c0:41:fa:63:98:61:3b:d2:8b:0d:83:f5:43: fe:70:61:c2:39:1a:a1:db:ae:57:c4:7a:93:0e:1f: df:e6:e8:a3:66:50:32:16:89:17:60:32:b9:0a:36: 08:06:14:f8:b5:85:d9:a0:4d:09:05:73:30:12:7a: ea:b1:a8:6c:07:6d:59:ee:05:37:21:ad:d2:b8:7d: b3:9d:fa:4f:1e:19:72:c4:6f:21:6c:f7:e2:ce:d9: 28:61:e7:eb:3c:b8:cb:1d:56:47:53:40:9c:e9:ef: f2:78:37:ad:aa:73:f8:64:ae:12:27:77:1a:87:89: b6:ea:ce:6d:43:f2:46:19:2b:bb:3c:a0:6f:5e:7b: 0b:55:84:ba:5c:82:38:bf:32:38:2a:6b:03:53:ce: 8f:14:41:56:2f:76:ad:fc:7c:52:55:22:ba:23:c9: 5f:b8:1c:2b:de:1f:03:a8:c6:9a:2e:b7:81:97:c3: 86:0e:1a:31:d1:e9:21:53:bc:05:43:c1:24:9a:8d: 2b:7c:08:c0:fc:43:cf:0f:71:72:ab:e9:9e:e8:2a: b0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A4:8F:04:03:A7:E0:81:50:07:C2:F1:70:6F:DB:2B:76:FA:3D:77 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f4:c2:3c:35:4d:13:bd:b0:4d:f9:aa:22:0d:aa:3e:dc:cc: 8f:87:4f:f3:66:e1:d9:57:d4:eb:d7:b9:b1:07:3b:eb:19:25: c3:e8:ca:32:b9:74:58:43:2b:45:b2:6b:94:23:da:83:82:66: 8c:77:eb:33:af:23:c8:50:6b:fe:29:ee:b8:79:2e:e1:57:fc: ef:02:d2:59:fe:6c:60:15:91:8f:d6:f0:26:64:14:84:73:06: 8c:2f:ca:3e:51:2d:f6:6f:75:ba:be:c5:97:f0:2e:15:8c:62: 86:9e:7a:2c:05:21:52:8f:c5:d1:8c:2a:2a:fc:88:d9:d8:87: 10:09:f6:9d:31:c3:bf:c2:2f:f8:8c:4a:23:a4:62:73:43:b0: b6:16:99:4e:6d:c0:b1:5e:07:6c:93:52:88:e3:cd:70:91:86: fe:56:f7:8c:cb:08:98:76:86:47:d0:03:00:01:e8:82:d8:6b: 72:82:2d:ba:62:0d:87:71:93:d0:af:53:e4:f7:c5:20:78:57: e3:48:a0:73:57:f1:0c:53:52:55:75:34:37:e5:99:2b:37:18: 26:85:40:34:7f:a2:f2:a4:1b:6a:f5:c1:6c:e8:51:1c:9f:58: 57:05:72:cb:32:af:35:fd:4a:43:42:ea:38:db:83:b5:bd:6b: c2:d4:74:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjUxMjIwMTc0MzUzWhcNMjUxMjI3MTc0MzUzWjAYMRYwFAYD VQQDDA02OTQ2ZTA1YS0yMGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7GKhNsaPzTXM33r2r82iAg5fls1WVCAUoxvsxIN7c86StYAD1ciM+9jnTIh tMBB+mOYYTvSiw2D9UP+cGHCORqh265XxHqTDh/f5uijZlAyFokXYDK5CjYIBhT4 tYXZoE0JBXMwEnrqsahsB21Z7gU3Ia3SuH2znfpPHhlyxG8hbPfiztkoYefrPLjL HVZHU0Cc6e/yeDetqnP4ZK4SJ3cah4m26s5tQ/JGGSu7PKBvXnsLVYS6XII4vzI4 KmsDU86PFEFWL3at/HxSVSK6I8lfuBwr3h8DqMaaLreBl8OGDhox0ekhU7wFQ8Ek mo0rfAjA/EPPD3Fyq+me6CqwjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSkjwQD p+CBUAfC8XBv2yt2+j13MB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH9MI8NU0TvbBN+aoiDao+3MyPh0/zZuHZV9Tr17mxBzvrGSXD6Moy uXRYQytFsmuUI9qDgmaMd+szryPIUGv+Ke64eS7hV/zvAtJZ/mxgFZGP1vAmZBSE cwaML8o+US32b3W6vsWX8C4VjGKGnnosBSFSj8XRjCoq/IjZ2IcQCfadMcO/wi/4 jEojpGJzQ7C2FplObcCxXgdsk1KI481wkYb+VveMywiYdoZH0AMAAeiC2Gtygi26 Yg2HcZPQr1Pk98UgeFfjSKBzV/EMU1JVdTQ35ZkrNxgmhUA0f6LypBtq9cFs6FEc n1hXBXLLMq81/UpDQuo424O1vWvC1HTv -----END CERTIFICATE-----Generated at Mon Dec 22 07:59:07 2025 by rpki-client