This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: jmFIq6rp9i7uAIGhajgfHyE2P1yQOQCCknSbLU/hWgk= Subject key identifier: FB:BF:8A:EA:5A:81:ED:67:1D:6B:CC:5A:E5:A3:65:DA:1A:95:13:DE Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 081C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07F4 Signing time: Wed 31 Dec 2025 20:47:50 +0000 Manifest this update: Wed 31 Dec 2025 20:47:49 +0000 Manifest next update: Wed 07 Jan 2026 20:47:49 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: IyBiO0nwjtXQiNpUB18sxyh2E6TYmYJxIYiRL7aTQMY=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 20:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2076 (0x81c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Dec 31 20:47:49 2025 GMT Not After : Jan 7 20:47:49 2026 GMT Subject: CN=69558bf6-3cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4e:f4:97:26:54:59:4b:35:4c:33:10:5a:fa: 52:e7:76:23:4d:4d:a4:17:dc:c5:48:ba:fe:aa:d1: 58:7a:83:73:57:bf:6b:81:74:34:0a:83:e0:84:2e: bd:8f:1b:8a:fc:2a:70:78:eb:34:31:d0:59:07:a9: 5c:93:46:fc:b8:16:3b:c3:09:de:3c:df:d8:04:5c: 70:f5:37:81:ad:53:14:20:63:3a:4e:f4:fe:00:d9: ee:80:52:55:47:08:02:10:3f:ac:5a:cc:f8:3c:fd: a4:00:63:9d:15:f8:f2:41:c0:8d:83:1e:ad:68:27: 89:d5:17:f5:75:7c:bd:b0:3b:14:0d:29:27:fa:fa: 03:10:80:b7:81:21:e2:e2:dc:78:6f:66:0e:45:60: 0a:76:a1:b4:42:26:2e:41:35:86:b3:43:b0:f8:e2: 7d:fa:51:49:67:44:52:4a:81:8e:8e:41:f1:79:c5: 57:59:44:96:08:7a:0f:4c:80:a2:d2:c1:8b:ce:c1: 8f:12:2d:f2:e4:70:5c:40:6d:0d:89:4b:54:53:71: c8:a4:1b:89:1f:54:f5:29:ea:f4:68:32:9c:4b:20: d3:23:a9:04:77:b9:fa:04:a7:7a:12:20:2f:b7:01: 1f:e3:7e:f5:03:3d:ac:03:5e:15:ce:13:93:82:2b: d0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BF:8A:EA:5A:81:ED:67:1D:6B:CC:5A:E5:A3:65:DA:1A:95:13:DE X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:0e:9e:91:5e:b2:a4:35:75:1f:70:92:7f:37:d4:09:88:d3: e6:2c:bb:d1:f2:d7:ec:76:24:4c:b2:f8:6f:a3:70:83:e0:1c: a3:65:fe:58:60:db:82:97:58:68:b8:10:c9:2d:57:51:51:d1: b0:46:a7:98:31:a2:eb:e3:dc:cb:1b:d8:33:a3:3c:36:70:9f: 38:1a:9a:ac:49:06:5f:8d:10:1a:b5:3b:40:4f:90:7d:b5:be: 68:87:fe:53:c9:51:a3:69:4c:48:d9:e5:0f:84:03:f6:19:8b: 15:96:72:3f:16:f2:23:2f:d3:d4:9a:ab:5f:a1:24:76:77:20: 69:a3:25:73:5f:2f:83:93:a4:40:f2:e3:99:ca:73:15:58:7d: 6f:d8:33:dc:cf:a6:af:cd:30:ac:0f:15:6e:2e:fc:fa:66:cb: d6:f2:6e:5d:ec:d9:42:96:bb:fe:f6:90:d5:43:ed:a3:4c:4a: 99:5a:51:24:5a:ff:42:0c:05:f4:de:22:cb:10:82:9d:88:59: a8:ff:a7:39:01:a7:19:33:ed:d8:e0:b0:77:a1:52:e3:40:2c: c7:6a:8c:3d:1c:76:45:9c:35:a3:af:74:ce:78:46:92:42:07: 9b:e7:e4:7d:ce:4c:f9:cd:d3:9a:7b:c1:e5:5d:94:74:28:50: 54:f2:1e:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMjMxMjA0NzQ5WhcNMjYwMTA3MjA0NzQ5WjAYMRYwFAYD VQQDDA02OTU1OGJmNi0zY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1070lyZUWUs1TDMQWvpS53YjTU2kF9zFSLr+qtFYeoNzV79rgXQ0CoPghC69 jxuK/CpweOs0MdBZB6lck0b8uBY7wwnePN/YBFxw9TeBrVMUIGM6TvT+ANnugFJV RwgCED+sWsz4PP2kAGOdFfjyQcCNgx6taCeJ1Rf1dXy9sDsUDSkn+voDEIC3gSHi 4tx4b2YORWAKdqG0QiYuQTWGs0Ow+OJ9+lFJZ0RSSoGOjkHxecVXWUSWCHoPTICi 0sGLzsGPEi3y5HBcQG0NiUtUU3HIpBuJH1T1Ker0aDKcSyDTI6kEd7n6BKd6EiAv twEf4371Az2sA14VzhOTgivQMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu/iupa ge1nHWvMWuWjZdoalRPeMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Dp6RXrKkNXUfcJJ/N9QJiNPmLLvR8tfsdiRMsvhvo3CD4ByjZf5Y YNuCl1houBDJLVdRUdGwRqeYMaLr49zLG9gzozw2cJ84GpqsSQZfjRAatTtAT5B9 tb5oh/5TyVGjaUxI2eUPhAP2GYsVlnI/FvIjL9PUmqtfoSR2dyBpoyVzXy+Dk6RA 8uOZynMVWH1v2DPcz6avzTCsDxVuLvz6ZsvW8m5d7NlClrv+9pDVQ+2jTEqZWlEk Wv9CDAX03iLLEIKdiFmo/6c5AacZM+3Y4LB3oVLjQCzHaow9HHZFnDWjr3TOeEaS Qgeb5+R9zkz5zdOae8HlXZR0KFBU8h5w -----END CERTIFICATE-----Generated at Thu Jan 1 12:30:41 2026 by rpki-client