This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft File: Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft (raw, json) Hash identifier: BkrhWonX3GoDEgkevTO3leFEGJDVpl/Ur9lgF2yKa8A= Subject key identifier: 8F:D9:64:76:D6:12:D3:99:0B:64:42:42:BE:5D:7B:AB:02:F8:F7:A8 Authority key identifier: 63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 Certificate issuer: /CN=A913EE46/serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft Manifest number: 02CA Signing time: Thu 04 Dec 2025 23:45:39 +0000 Manifest this update: Thu 04 Dec 2025 23:45:39 +0000 Manifest next update: Thu 11 Dec 2025 23:45:39 +0000 Files and hashes: 1: Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl (hash: aGoqVR6uWAZ56D9YItWfJiRAs0olovYIpHKFStwa54M=) 2: 9DFFBC7C12F011EDA0DB0B12C4F9AE02.roa (hash: JWAO5OM1htkOqA8zsEncfXnArds8hOb3Z7zkeDNiSm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EE46, serialNumber=63515B364113848FA554D2842F5841877CF6AF00 Validity Not Before: Dec 4 23:45:39 2025 GMT Not After : Dec 11 23:45:39 2025 GMT Subject: CN=69321d23-76ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:bc:22:ef:ed:50:cf:31:6d:e5:8b:ed:82: 27:b2:5a:82:81:52:a0:f1:75:4e:d6:77:9c:04:ce: 6c:a2:1d:bd:75:46:a9:18:c7:4b:25:15:54:14:47: f1:fe:b0:aa:dc:77:57:52:60:7f:e4:44:97:50:20: af:13:88:db:b8:20:c5:99:71:2d:85:4f:23:d7:32: c2:81:48:8d:3a:82:f2:1b:6e:ed:60:18:ac:e4:e0: 38:ce:e5:7a:52:71:87:17:7a:82:80:be:67:a7:c4: 56:78:8d:bf:77:d4:08:1a:b8:dc:6d:27:f3:37:a6: c3:7d:54:96:bf:67:2a:2f:c9:6f:23:bd:68:64:4c: 25:f6:3d:06:9d:60:af:bb:35:67:42:15:3b:3f:f1: f9:d2:0a:4d:0a:e0:18:e1:06:4f:dd:4c:05:46:21: 21:c7:1f:be:98:d2:c3:84:3f:e8:c0:c0:84:48:3d: 24:a2:43:2b:cf:cd:44:bf:01:4a:5e:7c:d6:71:0f: 94:4f:86:a3:bf:9e:1e:38:53:25:83:07:ab:e8:08: 94:8e:0f:07:f2:69:f9:69:88:21:45:d6:09:02:53: 2d:a8:df:b5:12:f1:3d:c0:b7:79:59:9c:dd:24:ab: e8:16:86:89:6e:7c:ff:8e:57:63:73:31:48:a7:4b: 7f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D9:64:76:D6:12:D3:99:0B:64:42:42:BE:5D:7B:AB:02:F8:F7:A8 X509v3 Authority Key Identifier: keyid:63:51:5B:36:41:13:84:8F:A5:54:D2:84:2F:58:41:87:7C:F6:AF:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1FbNkEThI-lVNKEL1hBh3z2rwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EE46/AE82E12612ED11ED9E4D760EC4F9AE02/Y1FbNkEThI-lVNKEL1hBh3z2rwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:6b:27:65:e1:e2:3b:69:ab:18:2c:a6:ef:0c:b2:f1:24:a8: 1d:f9:6d:62:6f:34:25:4f:23:f9:e6:20:ac:86:a4:09:f6:38: 01:6b:25:2b:3f:27:f3:17:92:37:e1:67:ec:eb:2e:2f:0d:e8: ae:55:2d:95:83:3a:d0:3f:fa:9d:7b:ac:d8:6a:c8:df:f7:7d: e7:68:4a:5a:7a:f1:53:e0:60:ec:c5:cc:79:16:6b:d3:25:be: 26:7b:c6:64:c6:30:a0:a3:51:96:c3:af:3a:0b:8c:a2:7e:ec: 24:9f:56:91:25:2e:9f:c0:72:72:35:1e:7a:c9:9a:c2:c4:0f: de:15:62:73:8e:a8:70:0e:b9:60:54:c2:f6:ff:5f:5e:7e:2e: e3:68:bb:3c:ea:72:02:e1:64:75:2d:8b:50:d4:cd:56:b2:7a: c7:e0:71:c7:3a:f1:b2:e4:85:56:72:e0:e6:40:b7:2f:c5:b5: 00:18:fd:e1:29:cb:6e:e8:27:f5:bd:48:52:54:68:73:37:eb: d2:02:ec:1e:87:d8:95:03:41:c5:f6:41:e9:bd:96:f4:db:75: 12:8d:1f:8a:25:cd:2c:4e:12:bd:34:9f:7e:35:0c:08:37:a3: 1a:b0:45:eb:ec:4a:46:1a:be:27:0c:5a:34:4a:45:39:91:08: 29:4b:ad:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VFNDYxMTAvBgNVBAUTKDYzNTE1QjM2NDExMzg0OEZBNTU0RDI4NDJGNTg0MTg3 N0NGNkFGMDAwHhcNMjUxMjA0MjM0NTM5WhcNMjUxMjExMjM0NTM5WjAYMRYwFAYD VQQDEw02OTMyMWQyMy03NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+a8Iu/tUM8xbeWL7YInslqCgVKg8XVO1necBM5soh29dUapGMdLJRVUFEfx /rCq3HdXUmB/5ESXUCCvE4jbuCDFmXEthU8j1zLCgUiNOoLyG27tYBis5OA4zuV6 UnGHF3qCgL5np8RWeI2/d9QIGrjcbSfzN6bDfVSWv2cqL8lvI71oZEwl9j0GnWCv uzVnQhU7P/H50gpNCuAY4QZP3UwFRiEhxx++mNLDhD/owMCESD0kokMrz81EvwFK XnzWcQ+UT4ajv54eOFMlgwer6AiUjg8H8mn5aYghRdYJAlMtqN+1EvE9wLd5WZzd JKvoFoaJbnz/jldjczFIp0t/ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/ZZHbW EtOZC2RCQr5de6sC+PeoMB8GA1UdIwQYMBaAFGNRWzZBE4SPpVTShC9YQYd89q8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUU0Ni9BRTgyRTEyNjEy RUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJLWxWTktFTDFoQmgzejJy d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxRmJOa0VUaEktbFZOS0VMMWhCaDN6MnJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUU0Ni9BRTgyRTEyNjEyRUQxMUVEOUU0RDc2MEVDNEY5QUUwMi9ZMUZiTmtFVGhJ LWxWTktFTDFoQmgzejJyd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5aydl4eI7aasYLKbvDLLxJKgd+W1ibzQlTyP55iCshqQJ9jgBayUr PyfzF5I34Wfs6y4vDeiuVS2VgzrQP/qde6zYasjf933naEpaevFT4GDsxcx5FmvT Jb4me8ZkxjCgo1GWw686C4yifuwkn1aRJS6fwHJyNR56yZrCxA/eFWJzjqhwDrlg VML2/19efi7jaLs86nIC4WR1LYtQ1M1WsnrH4HHHOvGy5IVWcuDmQLcvxbUAGP3h Kctu6Cf1vUhSVGhzN+vSAuweh9iVA0HF9kHpvZb023USjR+KJc0sThK9NJ9+NQwI N6MasEXr7EpGGr4nDFo0SkU5kQgpS61E -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:22 2025 by rpki-client