This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft File: ny5XiO95WFurdhmHfTlierLl1Rk.mft (raw, json) Hash identifier: V/fsOR6El0JG0jX5y9IVWxTmWSjXf55gIqKCD71jWxU= Subject key identifier: 28:E5:97:99:01:9B:F7:A9:43:3D:E2:E9:0E:AB:1D:A9:0B:16:F8:C5 Authority key identifier: 9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 Certificate issuer: /CN=A913A7A6/serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Certificate serial: 0A7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft Manifest number: 0A75 Signing time: Tue 16 Dec 2025 19:16:50 +0000 Manifest this update: Tue 16 Dec 2025 19:16:50 +0000 Manifest next update: Tue 23 Dec 2025 19:16:50 +0000 Files and hashes: 1: ny5XiO95WFurdhmHfTlierLl1Rk.crl (hash: 7HcO2BP4sIz+VAX43/UUp09uLYEpK7z9z4slZ3c0gIo=) 2: 4DAFC184ADC011ED897A4050C4F9AE02.roa (hash: Za3bISDsY9jXSiAUyE8K8a9BeVgovmO/YNcIsWrBq60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=9F2E5788EF79585BAB7619877D39627AB2E5D519 Validity Not Before: Dec 16 19:16:50 2025 GMT Not After : Dec 23 19:16:50 2025 GMT Subject: CN=6941b022-f082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:22:e0:90:df:c2:b5:e9:3d:4b:de:5a:f4:f2: 85:41:14:47:4c:41:b7:7a:b9:2f:22:5a:50:4d:7c: 74:9e:17:08:06:98:c6:d4:30:cf:2b:96:1b:da:5b: fd:a5:c0:4e:42:70:5c:02:0c:2a:d8:c1:28:70:96: e4:9e:aa:1b:5a:e3:6a:7b:62:ca:3f:5a:70:6f:30: cd:89:d0:df:12:0e:75:d2:6a:ba:59:d2:fe:0e:a7: 8d:10:5d:b8:2a:51:01:20:a9:d3:5e:dd:6a:bd:48: 96:94:44:e6:7e:e1:a6:1d:99:b4:e9:da:31:91:3f: 2e:13:1e:66:dd:09:7a:26:bd:f4:b7:18:28:e5:9e: 55:6d:d5:c5:cf:1c:8f:cb:e6:a0:55:2c:e2:76:e2: 9a:57:59:10:85:bb:5d:a7:5c:d9:18:1b:39:d3:8b: 24:9f:0b:28:97:22:f8:7e:18:16:f7:f9:b4:0e:e2: 5f:b5:41:c3:ef:ff:6c:cf:5e:06:9e:6e:e2:5e:ad: ef:86:6b:13:b2:f1:7a:c7:b7:94:5a:e9:22:80:6a: 64:20:8c:85:1d:d8:d6:a9:94:67:00:d9:e4:22:d9: c4:52:49:da:6e:60:7d:80:d3:b1:fe:72:5f:7c:bf: df:05:75:05:56:5c:b5:ba:9e:8c:b2:79:0c:38:f2: 8a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E5:97:99:01:9B:F7:A9:43:3D:E2:E9:0E:AB:1D:A9:0B:16:F8:C5 X509v3 Authority Key Identifier: keyid:9F:2E:57:88:EF:79:58:5B:AB:76:19:87:7D:39:62:7A:B2:E5:D5:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ny5XiO95WFurdhmHfTlierLl1Rk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/457A8E8273B611EA9B8C1F5CC4F9AE02/ny5XiO95WFurdhmHfTlierLl1Rk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:3b:95:55:34:a0:81:29:c7:ef:9e:fd:cb:ca:44:77:47:ab: bb:3f:d2:7f:53:0a:b4:24:16:8b:f2:2d:90:b9:99:90:1f:4d: 43:d5:be:48:8b:6a:d9:44:f9:f3:8e:0d:4e:64:e9:5e:29:49: 3b:0e:c2:37:88:63:6d:9a:76:53:43:bf:71:be:3c:52:71:fc: 56:d5:12:4c:ca:e6:97:3d:38:37:0c:8a:89:13:b9:4f:be:81: de:c8:7a:0f:1a:4d:38:e9:01:03:cc:e9:6c:67:36:74:e2:76: fc:3b:c7:f8:b8:51:46:86:0c:62:bf:84:a4:e6:1e:1e:55:64: 86:6e:f6:7d:2a:7d:97:76:bd:ee:bc:3f:e6:e9:d3:a4:02:a6: b3:a3:58:89:a6:7f:7c:dc:cb:0f:ef:3a:90:77:91:e9:36:7d: 78:33:f2:c4:fa:25:d9:c7:12:3c:65:d6:98:63:14:d5:39:69: 70:9b:7d:c8:40:05:9d:2d:2b:3c:e9:78:41:6c:e4:b4:a6:f8: fc:44:61:ed:cc:93:66:18:41:7a:bd:da:8c:d2:1e:00:43:33: 0b:52:90:b8:c2:4d:fd:7b:12:99:bd:1d:a7:98:46:15:dc:0f: d0:38:46:7e:57:fe:50:3b:fa:a6:a2:8d:7d:82:73:43:3e:b7: 85:54:d9:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDlGMkU1Nzg4RUY3OTU4NUJBQjc2MTk4NzdEMzk2MjdB QjJFNUQ1MTkwHhcNMjUxMjE2MTkxNjUwWhcNMjUxMjIzMTkxNjUwWjAYMRYwFAYD VQQDDA02OTQxYjAyMi1mMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyLgkN/Ctek9S95a9PKFQRRHTEG3erkvIlpQTXx0nhcIBpjG1DDPK5Yb2lv9 pcBOQnBcAgwq2MEocJbknqobWuNqe2LKP1pwbzDNidDfEg510mq6WdL+DqeNEF24 KlEBIKnTXt1qvUiWlETmfuGmHZm06doxkT8uEx5m3Ql6Jr30txgo5Z5VbdXFzxyP y+agVSziduKaV1kQhbtdp1zZGBs504sknwsolyL4fhgW9/m0DuJftUHD7/9sz14G nm7iXq3vhmsTsvF6x7eUWukigGpkIIyFHdjWqZRnANnkItnEUknabmB9gNOx/nJf fL/fBXUFVly1up6MsnkMOPKKOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjll5kB m/epQz3i6Q6rHakLFvjFMB8GA1UdIwQYMBaAFJ8uV4jveVhbq3YZh305Ynqy5dUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80NTdBOEU4Mjcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdGdXJkaG1IZlRsaWVyTGwx UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL255NVhpTzk1V0Z1cmRobUhmVGxpZXJMbDFSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80NTdBOEU4MjczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9ueTVYaU85NVdG dXJkaG1IZlRsaWVyTGwxUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwO5VVNKCBKcfvnv3LykR3R6u7P9J/Uwq0JBaL8i2QuZmQH01D1b5I i2rZRPnzjg1OZOleKUk7DsI3iGNtmnZTQ79xvjxScfxW1RJMyuaXPTg3DIqJE7lP voHeyHoPGk046QEDzOlsZzZ04nb8O8f4uFFGhgxiv4Sk5h4eVWSGbvZ9Kn2Xdr3u vD/m6dOkAqazo1iJpn983MsP7zqQd5HpNn14M/LE+iXZxxI8ZdaYYxTVOWlwm33I QAWdLSs86XhBbOS0pvj8RGHtzJNmGEF6vdqM0h4AQzMLUpC4wk39exKZvR2nmEYV 3A/QOEZ+V/5QO/qmoo19gnNDPreFVNlg -----END CERTIFICATE-----Generated at Tue Dec 16 22:16:17 2025 by rpki-client