This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft File: y1sC0Pxzbip6stKIoPwzFnpLvO0.mft (raw, json) Hash identifier: 2v1ax5le58rLlCjsrAB7y/OHIvJOXoGBqVIfcrXmjNo= Subject key identifier: AF:7D:E0:0C:5F:2D:EC:44:B7:11:BF:85:CF:A6:4A:08:B0:C1:10:E6 Authority key identifier: CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED Certificate issuer: /CN=A9129F1D/serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft Manifest number: 0221 Signing time: Fri 05 Dec 2025 00:25:05 +0000 Manifest this update: Fri 05 Dec 2025 00:25:04 +0000 Manifest next update: Fri 12 Dec 2025 00:25:04 +0000 Files and hashes: 1: y1sC0Pxzbip6stKIoPwzFnpLvO0.crl (hash: hTQrcHM/7/8+9PY9A93k3YQZpzgWv4xuJ6VTMS1MYwU=) 2: 3E122AE0876011ED84335D46C4F9AE02.roa (hash: bMGYEkxmsNwyimLtEml2g/yxjeK2QwKmxudQ/0mQEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129F1D, serialNumber=CB5B02D0FC736E2A7AB2D288A0FC33167A4BBCED Validity Not Before: Dec 5 00:25:04 2025 GMT Not After : Dec 12 00:25:04 2025 GMT Subject: CN=69322660-6060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7b:10:0c:7c:11:9b:c6:39:d5:5e:3e:6b:3c: 58:2c:36:52:67:b9:62:36:31:91:2b:ce:d2:a7:a0: 83:97:1b:f6:0e:34:92:8f:52:a5:d9:71:d6:1f:b7: 59:82:cd:26:af:1c:ae:7e:8f:cf:da:1c:37:58:11: 6f:8e:9b:ff:5c:1d:62:97:2f:50:75:3f:6e:16:e9: d2:dc:6a:45:50:02:60:e6:a5:9c:84:7b:f7:5d:9e: 41:e1:30:0a:3e:ab:73:eb:14:67:76:48:dc:9c:4a: 65:32:f4:f5:d3:b3:82:ec:51:14:eb:dd:50:94:1c: fd:7e:d3:a5:e0:db:0d:3a:52:27:d7:3f:cf:2f:af: 3b:33:1f:e6:28:0e:ce:ef:64:2c:ae:03:86:66:82: c4:f7:93:6b:7b:46:e4:9b:3a:87:a1:bf:42:72:94: 6c:89:f2:e0:59:36:b3:2f:56:d8:54:fd:7a:2e:d2: fd:23:92:f0:72:a9:30:1f:5a:c5:30:1b:f9:25:aa: 81:c1:d6:47:c5:7a:39:33:28:9f:29:2a:c8:58:87: 5b:18:82:09:fd:6f:d7:70:cd:18:ce:bb:00:83:68: 6b:f2:8a:cb:8e:c8:c1:6b:40:19:d3:e7:5b:00:9f: 6b:f2:05:04:5b:8e:f0:a0:56:07:4a:d8:70:9c:78: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7D:E0:0C:5F:2D:EC:44:B7:11:BF:85:CF:A6:4A:08:B0:C1:10:E6 X509v3 Authority Key Identifier: keyid:CB:5B:02:D0:FC:73:6E:2A:7A:B2:D2:88:A0:FC:33:16:7A:4B:BC:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1sC0Pxzbip6stKIoPwzFnpLvO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129F1D/21CABA5C875E11EDBDC64946C4F9AE02/y1sC0Pxzbip6stKIoPwzFnpLvO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a9:d1:01:f5:7a:5f:d5:d0:1d:f5:db:d2:57:e8:22:4a:0a: ef:c6:95:69:d2:26:e9:70:4c:9d:5f:d8:f3:a4:aa:13:22:15: f1:c5:ce:25:7b:46:0d:05:d7:36:38:0d:44:b8:19:90:88:2a: e8:03:34:10:83:5e:f0:40:72:18:b5:6d:3e:57:3f:6e:89:36: c4:3e:76:70:73:29:84:eb:d5:a2:59:70:a5:af:ff:86:ad:b0: 29:ac:46:b8:11:9c:51:fb:8e:f9:d1:e2:e7:27:50:8b:d3:4b: 27:e7:0f:97:47:66:d7:f8:1b:0e:a2:ce:c1:9a:94:01:77:1a: 15:6f:2f:51:cd:81:59:ba:5c:40:ec:e5:86:03:c2:df:b6:e7: ea:02:9d:0e:b8:96:6a:ed:c9:65:ba:ed:75:9f:ce:56:ba:7f: 46:59:7e:f5:4d:8f:b8:2f:28:b8:da:8d:1d:fd:cf:4b:ce:0d: 6d:c8:37:61:e6:02:c7:da:7a:8e:89:eb:9b:fa:e1:73:da:3d: ff:b1:78:6e:6b:2d:99:2c:9b:64:f2:39:be:ce:b4:df:cb:27: f2:77:87:19:9d:b4:65:40:d7:c5:d8:ae:1f:46:0f:b5:f6:a1: 5f:72:f1:e1:4c:cc:5e:d8:64:c3:04:f8:da:32:84:ab:af:e1: 4f:ea:a3:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlGMUQxMTAvBgNVBAUTKENCNUIwMkQwRkM3MzZFMkE3QUIyRDI4OEEwRkMzMzE2 N0E0QkJDRUQwHhcNMjUxMjA1MDAyNTA0WhcNMjUxMjEyMDAyNTA0WjAYMRYwFAYD VQQDEw02OTMyMjY2MC02MDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XsQDHwRm8Y51V4+azxYLDZSZ7liNjGRK87Sp6CDlxv2DjSSj1Kl2XHWH7dZ gs0mrxyufo/P2hw3WBFvjpv/XB1ily9QdT9uFunS3GpFUAJg5qWchHv3XZ5B4TAK Pqtz6xRndkjcnEplMvT107OC7FEU691QlBz9ftOl4NsNOlIn1z/PL687Mx/mKA7O 72QsrgOGZoLE95Nre0bkmzqHob9CcpRsifLgWTazL1bYVP16LtL9I5LwcqkwH1rF MBv5JaqBwdZHxXo5MyifKSrIWIdbGIIJ/W/XcM0YzrsAg2hr8orLjsjBa0AZ0+db AJ9r8gUEW47woFYHSthwnHjRowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK994Axf LexEtxG/hc+mSgiwwRDmMB8GA1UdIwQYMBaAFMtbAtD8c24qerLSiKD8MxZ6S7zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUYxRC8yMUNBQkE1Qzg3 NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJpcDZzdEtJb1B3ekZucEx2 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxc0MwUHh6YmlwNnN0S0lvUHd6Rm5wTHZPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUYxRC8yMUNBQkE1Qzg3NUUxMUVEQkRDNjQ5NDZDNEY5QUUwMi95MXNDMFB4emJp cDZzdEtJb1B3ekZucEx2TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBqdEB9Xpf1dAd9dvSV+giSgrvxpVp0ibpcEydX9jzpKoTIhXxxc4l e0YNBdc2OA1EuBmQiCroAzQQg17wQHIYtW0+Vz9uiTbEPnZwcymE69WiWXClr/+G rbAprEa4EZxR+4750eLnJ1CL00sn5w+XR2bX+BsOos7BmpQBdxoVby9RzYFZulxA 7OWGA8LftufqAp0OuJZq7clluu11n85Wun9GWX71TY+4Lyi42o0d/c9Lzg1tyDdh 5gLH2nqOieub+uFz2j3/sXhuay2ZLJtk8jm+zrTfyyfyd4cZnbRlQNfF2K4fRg+1 9qFfcvHhTMxe2GTDBPjaMoSrr+FP6qNC -----END CERTIFICATE-----Generated at Sat Dec 6 23:42:45 2025 by rpki-client