This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft File: yCt7N51v7So8MMRTfg-HzLYIIus.mft (raw, json) Hash identifier: 7xkwAwDLbpikTjq1JK9vDJqrsYWP3i8LGNMqMXd2PjQ= Subject key identifier: C9:DE:00:52:2A:0A:C3:78:D0:DF:C5:1E:54:3F:35:50:FB:EF:EF:3C Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft Manifest number: 01CE Signing time: Sun 21 Dec 2025 02:07:19 +0000 Manifest this update: Sun 21 Dec 2025 02:07:19 +0000 Manifest next update: Sun 28 Dec 2025 02:07:19 +0000 Files and hashes: 1: yCt7N51v7So8MMRTfg-HzLYIIus.crl (hash: rpM90yPRYxqYNBsizDe/Aj7CS1kcMedewz+rwMfmy5M=) 2: 348BAEE41C2D11EEB362491FC4F9AE02.roa (hash: qxrX+Z3cG6vZ3aS4ZRQYNGD9CmXUX4wxNipZHWRT9gc=) 3: B50ECD32A57E11EEB4533738C4F9AE02.roa (hash: 1HSPz5fptSUhMZGOqCo4GWHbK/jQcYLJDQgsd3l//0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96, serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Dec 21 02:07:19 2025 GMT Not After : Dec 28 02:07:19 2025 GMT Subject: CN=69475657-fc6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:57:35:fc:6a:a5:64:f8:93:bd:de:47:ef:1c: 23:9c:bb:ad:cc:98:6f:fd:63:23:e1:cb:c4:25:60: b8:ba:1c:74:28:ed:cd:51:0b:1b:9e:e2:0f:51:8f: e3:44:2f:fc:92:50:12:38:b7:16:dc:91:3f:fa:10: 72:32:44:e3:3a:e2:0a:41:ce:ff:36:2e:af:55:37: f2:c0:e2:d3:99:0a:51:d9:57:ba:ed:fb:d7:24:df: 5a:bc:2e:71:8d:8d:cf:5e:88:c0:27:81:43:af:ea: a8:bf:20:5a:40:ac:9a:ff:d2:bb:8a:25:f3:ef:04: 28:b6:d2:dc:7c:27:12:dd:5b:c5:b7:42:33:76:cb: 7b:48:32:29:1c:e9:5b:93:5f:50:f3:f0:6a:89:27: 8c:f3:35:3e:10:d1:d4:63:54:01:c3:1c:88:4b:16: 0c:8b:a3:d3:23:5c:4f:be:95:00:fe:ca:8f:c7:dd: ae:10:24:66:52:09:cd:a5:7a:7d:35:a7:2f:8f:fa: e3:e9:52:51:57:ec:4b:bc:09:05:69:54:cd:14:2f: 6e:dd:7a:6b:c4:2a:cc:0f:cf:02:c8:a8:28:bf:ed: 41:a7:d7:fe:8c:94:5b:ca:ae:b8:28:e7:f5:8b:ad: 25:63:06:51:37:23:98:6c:f3:bc:58:f9:43:c0:6e: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DE:00:52:2A:0A:C3:78:D0:DF:C5:1E:54:3F:35:50:FB:EF:EF:3C X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:91:85:9a:bb:70:0a:63:eb:60:d4:16:35:b2:20:61:7c:ea: 10:87:6b:ac:70:b9:15:6d:bd:cf:c9:13:7c:f0:bc:fb:98:7b: 43:49:fd:f2:f4:b3:10:36:78:79:95:51:cf:4e:f0:70:3e:b5: 8c:d2:b0:9a:f7:07:3d:12:ad:76:d5:4f:eb:33:e4:69:1b:0a: 9e:f6:1c:7e:bd:94:07:27:e0:40:3a:e2:b5:d2:84:66:8a:05: e2:c9:9e:69:7b:7d:05:21:a4:03:94:47:33:5e:26:47:28:04: 35:fb:26:cf:6f:8d:1c:d8:f6:72:f5:d0:a7:cd:9d:04:ae:6d: 23:c7:f6:e7:3e:ed:59:1a:b5:1d:8e:08:db:c3:3d:8d:d9:c1: f5:af:f0:44:98:a7:c4:9b:17:6f:b8:8a:2e:0b:47:9b:6a:fa: 29:08:ab:1f:08:42:4a:18:de:d6:9c:b4:e7:ab:91:2f:84:10: 13:cf:5e:2c:2e:ec:87:68:ef:ee:5a:a8:4a:a4:bf:3f:32:54: ef:b5:c2:d1:1c:03:a4:a7:86:6e:b7:77:bb:34:02:7a:bb:a4: 95:4d:c7:95:ed:3e:eb:d4:58:b1:48:98:47:d2:d6:13:6d:26: 32:b9:20:a8:12:04:9f:77:64:17:69:1a:e0:f5:f4:3a:d0:65: 64:d4:f5:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjUxMjIxMDIwNzE5WhcNMjUxMjI4MDIwNzE5WjAYMRYwFAYD VQQDDA02OTQ3NTY1Ny1mYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlc1/GqlZPiTvd5H7xwjnLutzJhv/WMj4cvEJWC4uhx0KO3NUQsbnuIPUY/j RC/8klASOLcW3JE/+hByMkTjOuIKQc7/Ni6vVTfywOLTmQpR2Ve67fvXJN9avC5x jY3PXojAJ4FDr+qovyBaQKya/9K7iiXz7wQottLcfCcS3VvFt0Izdst7SDIpHOlb k19Q8/BqiSeM8zU+ENHUY1QBwxyISxYMi6PTI1xPvpUA/sqPx92uECRmUgnNpXp9 Nacvj/rj6VJRV+xLvAkFaVTNFC9u3XprxCrMD88CyKgov+1Bp9f+jJRbyq64KOf1 i60lYwZRNyOYbPO8WPlDwG7c3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMneAFIq CsN40N/FHlQ/NVD77+88MB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUI5Ni82NEQ2QkRDQzFDMjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdT bzhNTVJUZmctSHpMWUlJdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFkYWau3AKY+tg1BY1siBhfOoQh2uscLkVbb3PyRN88Lz7mHtDSf3y 9LMQNnh5lVHPTvBwPrWM0rCa9wc9Eq121U/rM+RpGwqe9hx+vZQHJ+BAOuK10oRm igXiyZ5pe30FIaQDlEczXiZHKAQ1+ybPb40c2PZy9dCnzZ0Erm0jx/bnPu1ZGrUd jgjbwz2N2cH1r/BEmKfEmxdvuIouC0ebavopCKsfCEJKGN7WnLTnq5EvhBATz14s LuyHaO/uWqhKpL8/MlTvtcLRHAOkp4Zut3e7NAJ6u6SVTceV7T7r1FixSJhH0tYT bSYyuSCoEgSfd2QXaRrg9fQ60GVk1PXH -----END CERTIFICATE-----Generated at Mon Dec 22 05:05:34 2025 by rpki-client