This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: F6oNCkpCd4a1dIa99Dcw/ABB9nUPcx+d5hU8KqPnTMA= Subject key identifier: 6F:79:76:59:2D:72:3A:33:DB:55:C7:E6:13:5A:B5:20:FD:D8:C8:73 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 222E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 220D Signing time: Sat 06 Dec 2025 15:36:59 +0000 Manifest this update: Sat 06 Dec 2025 15:36:58 +0000 Manifest next update: Sat 13 Dec 2025 15:36:58 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: Y9FGuQDkucXGMXbhDjuhVDnCYxa0fObjNQUtP/tMzw8=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8750 (0x222e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Dec 6 15:36:58 2025 GMT Not After : Dec 13 15:36:58 2025 GMT Subject: CN=69344d9a-8974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:98:11:78:bf:e4:6a:70:69:83:23:16:7e: 7f:fc:5b:74:2e:63:00:7d:64:62:c0:c4:08:15:66: e5:5c:a2:82:5b:84:1e:aa:25:67:69:46:80:7b:25: 40:cf:bb:c4:ff:3a:84:c8:c9:87:eb:92:d9:53:6c: 30:1e:d6:bf:0a:33:54:be:75:44:f7:ba:e1:29:2f: cc:a7:f4:4b:cc:b3:0d:e5:fd:e5:00:ae:0a:02:3f: 04:70:96:6d:1d:de:b3:a8:64:19:23:37:9d:df:b1: 4d:eb:fd:b0:14:b1:8a:cb:14:64:54:9e:8e:16:94: 1b:26:9e:ec:ea:99:c8:a9:3c:a8:d5:16:83:08:0b: 22:55:b9:78:b4:6d:15:cf:fd:88:0a:99:98:cc:07: 85:d0:d8:b9:6b:b2:06:31:0b:f2:72:83:ec:a3:58: 86:5e:10:5c:a0:bc:41:3f:e6:2c:fc:83:9a:5e:2c: 71:5b:a1:ae:8e:c7:7a:61:86:62:17:2a:c1:8a:53: 3a:ec:6a:24:88:ce:50:16:f4:ce:60:a5:c2:08:e1: c7:8e:94:49:4a:db:fc:a8:5d:30:02:8e:f9:54:d4: 67:04:3f:1f:09:a6:3d:1c:18:74:f3:81:b9:dc:b9: 3a:03:bd:c7:87:d9:cd:09:08:9b:d3:9b:0b:96:b5: 0b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:79:76:59:2D:72:3A:33:DB:55:C7:E6:13:5A:B5:20:FD:D8:C8:73 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1c:d2:cb:fb:78:40:f6:09:e5:0d:25:cb:7d:ec:53:41:ba: 2c:4b:0b:0b:89:a2:9e:a5:36:59:c4:d4:88:01:07:55:3b:4e: 58:2a:55:e3:e3:a7:c3:f7:d3:f4:05:99:8a:0a:4b:05:55:33: 4d:f7:56:64:91:07:c1:ba:d8:92:7b:1d:c9:ff:11:78:d6:ba: de:2b:7e:4b:98:70:cf:fb:ab:42:b9:25:b6:91:2a:99:0c:7e: 56:71:d8:3c:ad:81:59:13:fd:f2:24:a8:53:fa:c8:da:bd:e4: 48:a0:98:d8:43:e0:47:61:0a:f5:97:16:f6:93:2c:18:1c:01: b2:ff:c9:b3:76:02:42:10:47:5a:0c:6c:87:14:5f:d2:f1:4e: 19:fe:f9:3c:86:b3:44:2b:7a:02:c8:1d:26:92:a3:1a:f8:0d: 54:c7:61:97:ca:af:8b:2d:cf:22:64:b6:a7:20:1b:92:ca:04: e7:f2:5e:b5:79:53:67:9b:6f:62:9a:ba:b7:8a:2e:3f:97:fb: 6d:75:9d:e6:de:84:d8:fd:3e:f7:0a:cb:5c:d7:7f:0a:e3:28: 75:79:83:ed:10:66:4a:ab:09:5e:9b:b9:b8:4a:a6:7a:9f:04: 31:0f:51:31:d8:e6:09:7d:15:8a:42:e5:20:e1:6f:1a:78:43: 5d:01:de:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUxMjA2MTUzNjU4WhcNMjUxMjEzMTUzNjU4WjAYMRYwFAYD VQQDEw02OTM0NGQ5YS04OTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtKYEXi/5GpwaYMjFn5//Ft0LmMAfWRiwMQIFWblXKKCW4QeqiVnaUaAeyVA z7vE/zqEyMmH65LZU2wwHta/CjNUvnVE97rhKS/Mp/RLzLMN5f3lAK4KAj8EcJZt Hd6zqGQZIzed37FN6/2wFLGKyxRkVJ6OFpQbJp7s6pnIqTyo1RaDCAsiVbl4tG0V z/2ICpmYzAeF0Ni5a7IGMQvycoPso1iGXhBcoLxBP+Ys/IOaXixxW6Gujsd6YYZi FyrBilM67GokiM5QFvTOYKXCCOHHjpRJStv8qF0wAo75VNRnBD8fCaY9HBh084G5 3Lk6A73Hh9nNCQib05sLlrULxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG95dlkt cjoz21XH5hNatSD92MhzMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9HNLL+3hA9gnlDSXLfexTQbosSwsLiaKepTZZxNSIAQdVO05YKlXj 46fD99P0BZmKCksFVTNN91ZkkQfButiSex3J/xF41rreK35LmHDP+6tCuSW2kSqZ DH5Wcdg8rYFZE/3yJKhT+sjaveRIoJjYQ+BHYQr1lxb2kywYHAGy/8mzdgJCEEda DGyHFF/S8U4Z/vk8hrNEK3oCyB0mkqMa+A1Ux2GXyq+LLc8iZLanIBuSygTn8l61 eVNnm29imrq3ii4/l/ttdZ3m3oTY/T73Cstc138K4yh1eYPtEGZKqwlem7m4SqZ6 nwQxD1Ex2OYJfRWKQuUg4W8aeENdAd5m -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:34 2025 by rpki-client