This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft File: ygBwrFIB1vandapSXVPY4zDjIJY.mft (raw, json) Hash identifier: w90diUkK3OQ8xLdCwQCOv5xHdbFklV+oOHjZXAAL1eE= Subject key identifier: DD:5E:08:0A:87:71:BB:86:CD:D4:AC:05:03:64:11:F0:1D:56:C9:B3 Authority key identifier: CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 Certificate issuer: /CN=A9116907/serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft Manifest number: 0234 Signing time: Fri 05 Dec 2025 00:20:55 +0000 Manifest this update: Fri 05 Dec 2025 00:20:54 +0000 Manifest next update: Fri 12 Dec 2025 00:20:54 +0000 Files and hashes: 1: ygBwrFIB1vandapSXVPY4zDjIJY.crl (hash: mXUkUb0BY3N4egW5I66l1uqcFCRe/S7TX73dL4+g0Fk=) 2: 9DE3DEAEAC9E11EFBAC6A027C4F9AE02.roa (hash: CUo1siMGawHGbsId1UkMfelcslFB8Pvn5Wk0YkKc5fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116907, serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Validity Not Before: Dec 5 00:20:54 2025 GMT Not After : Dec 12 00:20:54 2025 GMT Subject: CN=69322567-1c70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:31:8f:b5:46:e2:29:3d:03:e4:f5:73:ef:2b: 87:fa:1b:19:36:af:7e:3c:dc:e4:bb:97:57:c4:6e: be:39:60:0e:ff:ea:70:4c:e5:66:2f:4a:d7:77:d8: d8:6d:cb:91:28:7a:a2:86:9f:e4:e5:4c:5a:6e:72: 4e:cf:4c:9f:bb:a3:6f:7e:5c:63:94:9b:ba:e7:ae: d4:9a:c3:1e:2d:34:63:2d:18:bf:84:ae:dd:51:14: 1b:53:35:b3:ea:78:4a:ad:db:57:ab:8c:ec:b2:d7: d4:7b:d9:9a:b1:a2:3e:63:b1:ef:eb:19:5e:af:1a: 65:37:aa:08:ae:de:df:a1:e0:d3:10:19:89:55:f5: 3f:b8:84:7d:35:26:a6:1c:35:65:c4:a5:77:70:09: 5d:51:e5:71:b6:a5:e4:a0:e7:7a:d3:8b:2f:4a:2a: e6:28:61:7d:2d:40:3d:a3:0a:be:84:fd:d3:39:1c: 22:15:ec:39:63:63:46:ae:45:c2:56:3b:a1:a5:02: 0a:c9:ba:17:99:88:0e:24:e5:e8:1b:e4:db:26:d2: 6a:cc:27:a8:db:0a:07:fd:84:d1:40:6f:73:f7:d1: be:b5:ed:a5:64:fd:87:bb:e9:19:c5:ad:0a:63:b9: 0b:6c:56:2a:5e:0e:82:98:bb:e4:8a:6b:52:cc:2f: cd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5E:08:0A:87:71:BB:86:CD:D4:AC:05:03:64:11:F0:1D:56:C9:B3 X509v3 Authority Key Identifier: keyid:CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:84:06:b6:bf:7c:6f:3e:7e:7f:94:37:3a:47:bf:f7:94:49: 21:df:af:da:a8:38:47:4c:5d:4e:46:93:05:f2:2a:87:e5:c1: eb:4a:28:29:d2:40:e3:e6:fa:c5:2d:52:42:7a:79:83:68:af: 39:61:ae:18:95:1e:31:d7:e6:0b:de:d1:c4:53:ff:f1:a8:75: 0b:e6:b0:1f:19:d5:d9:08:3d:e2:44:42:95:11:22:c1:bb:b5: a7:5f:c9:37:ae:f4:8d:f9:80:fa:6a:2b:57:47:0f:a4:4d:ca: 81:4e:1f:c0:82:15:2a:53:d5:96:29:28:56:f3:c8:d7:b6:6e: b7:2a:36:10:b1:62:2b:c1:69:22:93:06:6c:b5:4d:f1:d6:b1: e3:6c:f3:4b:ce:cd:5b:8c:3d:5c:fb:ed:c9:13:c9:0c:43:ff: 80:78:09:60:ff:72:60:85:a0:a9:a5:ed:d0:ee:f6:94:28:a5: 7f:60:5d:57:2a:b0:4b:00:6a:62:03:0c:41:0f:63:e8:b9:bb: cc:4a:68:c4:cb:d0:95:7e:24:66:30:69:00:2c:ed:38:de:f8: 07:b5:72:3b:3b:65:93:57:5e:75:0f:3b:4a:ea:2b:97:3f:7a: 5c:60:54:53:30:27:a8:55:e7:85:d9:fe:25:5b:ed:79:db:87: 83:2f:3c:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5MDcxMTAvBgNVBAUTKENBMDA3MEFDNTIwMUQ2RjZBNzc1QUE1MjVENTNEOEUz MzBFMzIwOTYwHhcNMjUxMjA1MDAyMDU0WhcNMjUxMjEyMDAyMDU0WjAYMRYwFAYD VQQDEw02OTMyMjU2Ny0xYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TGPtUbiKT0D5PVz7yuH+hsZNq9+PNzku5dXxG6+OWAO/+pwTOVmL0rXd9jY bcuRKHqihp/k5UxabnJOz0yfu6NvflxjlJu6567UmsMeLTRjLRi/hK7dURQbUzWz 6nhKrdtXq4zsstfUe9masaI+Y7Hv6xlerxplN6oIrt7foeDTEBmJVfU/uIR9NSam HDVlxKV3cAldUeVxtqXkoOd604svSirmKGF9LUA9owq+hP3TORwiFew5Y2NGrkXC VjuhpQIKyboXmYgOJOXoG+TbJtJqzCeo2woH/YTRQG9z99G+te2lZP2Hu+kZxa0K Y7kLbFYqXg6CmLvkimtSzC/N6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1eCAqH cbuGzdSsBQNkEfAdVsmzMB8GA1UdIwQYMBaAFMoAcKxSAdb2p3WqUl1T2OMw4yCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjkwNy9CNTZBN0NCMDdB QjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2YW5kYXBTWFZQWTR6RGpJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lnQndyRklCMXZhbmRhcFNYVlBZNHpEaklKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjkwNy9CNTZBN0NCMDdBQjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2 YW5kYXBTWFZQWTR6RGpJSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+hAa2v3xvPn5/lDc6R7/3lEkh36/aqDhHTF1ORpMF8iqH5cHrSigp 0kDj5vrFLVJCenmDaK85Ya4YlR4x1+YL3tHEU//xqHUL5rAfGdXZCD3iREKVESLB u7WnX8k3rvSN+YD6aitXRw+kTcqBTh/AghUqU9WWKShW88jXtm63KjYQsWIrwWki kwZstU3x1rHjbPNLzs1bjD1c++3JE8kMQ/+AeAlg/3JghaCppe3Q7vaUKKV/YF1X KrBLAGpiAwxBD2PoubvMSmjEy9CVfiRmMGkALO043vgHtXI7O2WTV151DztK6iuX P3pcYFRTMCeoVeeF2f4lW+1524eDLzwL -----END CERTIFICATE-----Generated at Sat Dec 6 19:50:01 2025 by rpki-client