This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: eRO/DX0ZXA0q8gafdDvDXysDYDqOWZC+jzBQtrdx9LE= Subject key identifier: 82:04:3D:39:FC:26:63:3E:A1:D0:A1:B7:1F:19:83:81:50:C7:E0:50 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 01C7 Signing time: Fri 19 Dec 2025 02:07:16 +0000 Manifest this update: Fri 19 Dec 2025 02:07:16 +0000 Manifest next update: Fri 26 Dec 2025 02:07:16 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: gtqbOyzjy6poF7TeI6I2AnMfiR1hBXCSDdih+wq2/PA=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: Ae2kzkiPbHsneEUo3gobHEERA3S8mH2dAIJpdvxeRck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Dec 19 02:07:16 2025 GMT Not After : Dec 26 02:07:16 2025 GMT Subject: CN=6944b354-8d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8e:43:5b:44:6a:2b:f1:38:dd:53:ea:75:4f: 61:0d:5c:77:6e:b4:ab:af:03:61:c2:c3:d6:68:ce: 6c:91:5c:84:4f:c2:98:d6:ac:86:df:c9:9d:a8:d9: dc:ac:30:15:e7:db:87:83:44:7e:3a:08:bb:90:91: 81:17:91:3b:43:73:94:61:c6:65:3c:33:55:4f:33: 66:41:66:80:be:84:ef:3b:6d:2a:87:6c:b4:65:cd: 24:82:35:ba:0b:1b:75:54:c7:2a:ea:c6:bf:92:54: f2:2a:8d:04:7e:4d:a0:66:b9:74:a2:ba:47:99:6c: e3:8f:e9:f9:87:83:25:15:5a:d5:86:22:45:28:2c: 77:c5:44:41:9b:2a:d8:f4:6b:3d:81:a0:14:98:6a: 3d:10:52:a8:83:38:e9:cc:5a:b2:48:19:63:be:9a: 66:93:b8:3d:09:d5:fb:db:3e:e4:0a:d2:55:83:80: e9:bb:57:00:1c:d7:d6:ac:3a:d8:a2:39:61:b5:c2: 95:97:06:60:11:26:5a:a2:ce:9c:38:b7:26:31:38: 2b:e9:20:da:df:76:fc:55:41:49:95:ac:c4:42:dc: 64:b9:23:29:3d:7a:17:c2:31:2c:50:53:0e:fc:42: ac:6d:c8:46:09:de:65:1b:b3:6f:11:cd:33:8c:c2: 96:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:04:3D:39:FC:26:63:3E:A1:D0:A1:B7:1F:19:83:81:50:C7:E0:50 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:9d:06:22:c9:28:a3:06:7f:57:19:ea:99:ed:cf:07:89:db: dc:c1:f7:63:ca:a1:1d:b3:28:f8:70:61:a2:c9:e3:6c:10:1a: 6a:b0:a7:46:95:34:b7:a6:23:1f:59:53:1a:65:35:41:b2:dd: d3:a3:ba:91:50:8d:64:46:a4:d3:89:b5:0e:d1:18:2e:ce:d7: ba:6a:f9:00:cb:2e:eb:72:f6:21:06:3c:73:5d:d3:1b:c4:a2: 48:16:8c:87:d0:06:4a:93:d1:3a:2a:cf:ac:f2:bd:b4:ab:28: 77:09:70:b2:76:da:6d:57:96:c6:3f:f7:7a:c1:6a:eb:f8:10: 74:04:c8:e0:1a:ca:de:0c:65:51:ff:fe:d1:2c:c0:c3:50:11: 24:72:be:e6:c0:35:4f:46:f4:d7:ea:d6:ab:d8:d3:af:69:68: 8f:99:db:ac:2f:75:6c:84:4c:99:35:3a:26:b8:42:39:56:da: 03:49:92:72:fe:df:8a:26:d2:ee:6c:a7:8a:8b:1b:09:97:63: 54:a1:da:db:bf:98:94:9f:11:ff:fd:0d:96:de:dc:cd:6f:a5: 62:9f:5a:77:fe:c4:40:b1:bd:11:71:15:e0:07:d3:e8:ce:c8: 79:5b:e8:50:e9:05:f0:98:91:7c:d8:77:1e:1a:db:3a:31:33: 7f:af:1e:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUxMjE5MDIwNzE2WhcNMjUxMjI2MDIwNzE2WjAYMRYwFAYD VQQDDA02OTQ0YjM1NC04ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y5DW0RqK/E43VPqdU9hDVx3brSrrwNhwsPWaM5skVyET8KY1qyG38mdqNnc rDAV59uHg0R+Ogi7kJGBF5E7Q3OUYcZlPDNVTzNmQWaAvoTvO20qh2y0Zc0kgjW6 Cxt1VMcq6sa/klTyKo0Efk2gZrl0orpHmWzjj+n5h4MlFVrVhiJFKCx3xURBmyrY 9Gs9gaAUmGo9EFKogzjpzFqySBljvppmk7g9CdX72z7kCtJVg4Dpu1cAHNfWrDrY ojlhtcKVlwZgESZaos6cOLcmMTgr6SDa33b8VUFJlazEQtxkuSMpPXoXwjEsUFMO /EKsbchGCd5lG7NvEc0zjMKWBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIEPTn8 JmM+odChtx8Zg4FQx+BQMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAknQYiySijBn9XGeqZ7c8HidvcwfdjyqEdsyj4cGGiyeNsEBpqsKdG lTS3piMfWVMaZTVBst3To7qRUI1kRqTTibUO0Rguzte6avkAyy7rcvYhBjxzXdMb xKJIFoyH0AZKk9E6Ks+s8r20qyh3CXCydtptV5bGP/d6wWrr+BB0BMjgGsreDGVR //7RLMDDUBEkcr7mwDVPRvTX6tar2NOvaWiPmdusL3VshEyZNTomuEI5VtoDSZJy /t+KJtLubKeKixsJl2NUodrbv5iUnxH//Q2W3tzNb6Vin1p3/sRAsb0RcRXgB9Po zsh5W+hQ6QXwmJF82HceGts6MTN/rx5f -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:22 2025 by rpki-client