This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft File: yl96MSHB9fmJUgx6UZcT-zpoyn4.mft (raw, json) Hash identifier: dA/JPJJZbgu5a39g9PWCzyCwihmK4v0bvyJE6teR8eA= Subject key identifier: BA:6A:96:8A:17:F8:5E:0A:62:2D:FC:5F:70:07:7C:DA:A4:03:14:0A Authority key identifier: CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E Certificate issuer: /CN=A919E1FC/serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft Manifest number: A2 Signing time: Fri 19 Dec 2025 05:23:25 +0000 Manifest this update: Fri 19 Dec 2025 05:23:24 +0000 Manifest next update: Fri 26 Dec 2025 05:23:24 +0000 Files and hashes: 1: yl96MSHB9fmJUgx6UZcT-zpoyn4.crl (hash: tmuhovvaC0nq3PtOBulVIY1xWtoV18X37O7QpqmW8xY=) 2: 0A34182CE9FC11EF9D3DE972C4F9AE02.roa (hash: nS3x5Wrf6OGlupRs4tpRKGZuj5/u2uLXlydcgcq1K8s=) 3: F70CBA98E9B911EFB5B54650C4F9AE02.roa (hash: 2T6Fyq/x0X9hd51yz+uFduciFhCl9089BnkJOOwfbVI=) 4: 09852FF6E9FC11EF9D3DE972C4F9AE02.roa (hash: DPBnqYDTJSln1r3AOtKRNxAr3JL7tCw2D7o2HDWUU1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1FC, serialNumber=CA5F7A3121C1F5F989520C7A519713FB3A68CA7E Validity Not Before: Dec 19 05:23:24 2025 GMT Not After : Dec 26 05:23:24 2025 GMT Subject: CN=6944e14d-1a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8b:0e:c6:32:cc:01:21:a0:82:0c:4f:48:62: 99:a7:92:c9:fd:03:1e:6c:24:84:49:aa:ba:91:02: 5d:9e:e5:0d:bd:ee:55:52:e7:03:38:db:6c:ed:67: 2a:22:c8:77:7d:7d:20:3a:04:c0:db:0d:53:e8:1f: ff:0e:d5:a2:23:da:19:00:e0:d4:bc:17:09:df:03: dc:c6:03:77:99:97:5b:19:d5:02:fc:af:ca:db:f7: 8a:da:9c:db:44:32:51:c2:48:4a:46:18:30:16:fe: e0:a6:10:d5:d4:fd:9b:f6:59:c4:c5:f7:db:71:a8: 9c:f9:6e:78:ff:8c:db:2a:9e:8d:f8:92:5d:9f:d0: 3e:61:0d:b6:c4:53:13:bf:98:fe:71:b0:0c:88:05: e3:ca:35:fa:da:c2:f1:14:3c:a5:83:2b:82:d1:48: 38:0f:82:d6:f8:c8:e1:fc:a2:57:2a:bd:82:d5:d6: 05:2e:48:10:f1:ff:80:36:de:0c:d3:55:43:b6:53: ca:ab:56:2f:09:f1:4e:e1:3d:33:b7:82:98:f2:1b: 7e:91:cd:2d:96:c7:2f:a0:15:f1:ca:04:ef:6e:e4: 03:ab:22:02:60:e8:07:fa:f3:90:3c:b6:b7:41:2d: 84:a1:d6:4b:cd:1d:1e:48:0a:42:88:91:d1:67:f4: d6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6A:96:8A:17:F8:5E:0A:62:2D:FC:5F:70:07:7C:DA:A4:03:14:0A X509v3 Authority Key Identifier: keyid:CA:5F:7A:31:21:C1:F5:F9:89:52:0C:7A:51:97:13:FB:3A:68:CA:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yl96MSHB9fmJUgx6UZcT-zpoyn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1FC/5B325FA6E9B911EFB6DA414CC4F9AE02/yl96MSHB9fmJUgx6UZcT-zpoyn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ed:ab:86:94:b4:6f:2d:08:5c:a6:a9:a9:d2:83:de:2e:f3: 97:8c:9e:80:04:e0:6f:92:9e:1b:f5:90:e6:df:7d:ec:34:78: cb:f8:30:b5:e8:30:61:22:4f:a3:b6:54:d7:02:0d:59:ed:b0: 1b:3b:0b:5e:0e:45:c4:5d:c1:01:47:aa:19:8b:35:19:44:db: de:e2:49:49:a6:1b:44:5a:85:30:00:5a:bc:20:62:33:44:2b: 27:b2:5d:e5:b8:24:d9:42:5d:8f:5c:72:17:09:cd:dd:3b:f8: 56:f7:ff:17:a9:30:6d:cf:64:3b:f0:9a:15:90:bc:4d:41:91: de:2c:b2:4b:28:61:d4:e8:ae:ef:c6:68:46:4a:14:22:4b:39: b9:f7:a7:e0:0f:64:e2:0f:f1:36:b6:53:25:ee:84:4f:3d:ad: 49:7c:68:3e:81:63:b2:3f:d3:8d:79:c0:38:5d:d4:24:00:93: 73:48:b8:80:e3:4c:85:48:34:ee:a6:fa:fa:87:1c:f3:d5:ef: b7:4d:7c:7e:04:d8:19:88:fa:58:08:a0:73:58:f3:df:23:b1: 44:b0:2b:65:8c:7f:d3:45:d6:d6:e3:4a:b2:af:a1:89:80:9e: 9b:2a:62:08:97:01:66:6b:6a:ba:92:8c:dd:bf:30:50:82:87: 11:98:a6:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxRkMxMTAvBgNVBAUTKENBNUY3QTMxMjFDMUY1Rjk4OTUyMEM3QTUxOTcxM0ZC M0E2OENBN0UwHhcNMjUxMjE5MDUyMzI0WhcNMjUxMjI2MDUyMzI0WjAYMRYwFAYD VQQDDA02OTQ0ZTE0ZC0xYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqosOxjLMASGgggxPSGKZp5LJ/QMebCSESaq6kQJdnuUNve5VUucDONts7Wcq Ish3fX0gOgTA2w1T6B//DtWiI9oZAODUvBcJ3wPcxgN3mZdbGdUC/K/K2/eK2pzb RDJRwkhKRhgwFv7gphDV1P2b9lnExffbcaic+W54/4zbKp6N+JJdn9A+YQ22xFMT v5j+cbAMiAXjyjX62sLxFDylgyuC0Ug4D4LW+Mjh/KJXKr2C1dYFLkgQ8f+ANt4M 01VDtlPKq1YvCfFO4T0zt4KY8ht+kc0tlscvoBXxygTvbuQDqyICYOgH+vOQPLa3 QS2EodZLzR0eSApCiJHRZ/TW8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpqlooX +F4KYi38X3AHfNqkAxQKMB8GA1UdIwQYMBaAFMpfejEhwfX5iVIMelGXE/s6aMp+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFGQy81QjMyNUZBNkU5 QjkxMUVGQjZEQTQxNENDNEY5QUUwMi95bDk2TVNIQjlmbUpVZ3g2VVpjVC16cG95 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lsOTZNU0hCOWZtSlVneDZVWmNULXpwb3luNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFGQy81QjMyNUZBNkU5QjkxMUVGQjZEQTQxNENDNEY5QUUwMi95bDk2TVNIQjlm bUpVZ3g2VVpjVC16cG95bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS7auGlLRvLQhcpqmp0oPeLvOXjJ6ABOBvkp4b9ZDm333sNHjL+DC1 6DBhIk+jtlTXAg1Z7bAbOwteDkXEXcEBR6oZizUZRNve4klJphtEWoUwAFq8IGIz RCsnsl3luCTZQl2PXHIXCc3dO/hW9/8XqTBtz2Q78JoVkLxNQZHeLLJLKGHU6K7v xmhGShQiSzm596fgD2TiD/E2tlMl7oRPPa1JfGg+gWOyP9ONecA4XdQkAJNzSLiA 40yFSDTupvr6hxzz1e+3TXx+BNgZiPpYCKBzWPPfI7FEsCtljH/TRdbW40qyr6GJ gJ6bKmIIlwFma2q6kozdvzBQgocRmKYH -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:36 2025 by rpki-client