This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft File: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft (raw, json) Hash identifier: 9nmTslE7VNJZPoersUfsQVmGFJvgTVbGk6R5/ldqdCk= Subject key identifier: 83:DF:25:9E:93:68:39:B0:E1:6F:98:84:77:7A:21:20:4A:1C:F7:CD Authority key identifier: 63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D Certificate issuer: /CN=A9147B58/serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Certificate serial: 0614 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft Manifest number: 060D Signing time: Thu 04 Dec 2025 21:36:35 +0000 Manifest this update: Thu 04 Dec 2025 21:36:35 +0000 Manifest next update: Thu 11 Dec 2025 21:36:35 +0000 Files and hashes: 1: Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl (hash: Map/H6TOu31QimhxsRjxEMgjGtpgsDQI3YLFVQBzG6Y=) 2: 657BCA62CABC11EB8D6D063BC4F9AE02.roa (hash: W1fkw/mYSuTpBkq23h73Gt2ZtwtQaM95I1fyF0uTlto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B58, serialNumber=63E48762A89308096773D9E1C9D1A9998035670D Validity Not Before: Dec 4 21:36:35 2025 GMT Not After : Dec 11 21:36:35 2025 GMT Subject: CN=6931fee3-2a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:14:ee:0b:e1:8f:56:5e:90:1d:f6:e4:6a:ab: 0d:bd:9c:af:6f:0b:18:ff:a6:8e:b2:4d:7e:c9:12: 1f:24:30:96:da:d0:2d:0f:c4:6c:1c:93:66:4f:a7: 77:ae:aa:a3:f1:1c:0d:5f:99:f6:fa:87:5f:b3:e1: fe:62:b6:be:f5:c2:02:d5:fc:a4:1f:50:1b:b8:f7: fb:e0:9c:d4:c8:d0:6a:6c:36:a6:2e:93:d7:a1:95: da:b9:de:0c:b5:b3:e0:1e:5f:17:67:a6:25:22:55: d2:1e:27:d7:b8:8a:07:5b:81:7b:90:23:5f:55:29: 2a:41:40:22:89:85:32:45:85:ad:38:bd:2c:bd:59: db:e5:a3:a2:c9:60:7d:21:5d:2b:09:6b:fd:f3:fb: e9:b7:f7:48:4e:de:00:bb:48:a0:11:ec:1f:6b:21: 51:74:34:ae:bd:bc:67:d0:44:48:a5:dd:4c:b7:84: f1:a3:95:20:93:88:c8:d4:94:ae:13:40:26:0e:2a: 3c:0c:f3:3c:e6:2e:24:8e:cf:d9:d9:6b:9a:a5:c3: 9a:b1:7d:95:d2:c5:23:66:57:a5:d9:21:fd:6d:25: 1f:b3:5c:d1:ae:c5:93:20:02:d6:65:9f:d0:3e:4a: ee:73:f5:6a:3f:06:98:70:63:1a:49:c3:c8:42:49: c7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DF:25:9E:93:68:39:B0:E1:6F:98:84:77:7A:21:20:4A:1C:F7:CD X509v3 Authority Key Identifier: keyid:63:E4:87:62:A8:93:08:09:67:73:D9:E1:C9:D1:A9:99:80:35:67:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B58/AAC21C7ECAB811EB84155336C4F9AE02/Y-SHYqiTCAlnc9nhydGpmYA1Zw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e9:1b:7d:be:fa:c7:ab:d8:e4:d9:ca:dd:6a:8e:94:e8:92: 47:00:48:81:a2:e2:94:a2:34:8e:6a:19:f4:31:20:36:d4:50: ad:22:e6:da:6f:f3:48:00:80:7a:17:63:90:fc:3f:07:22:55: e6:b4:96:73:49:a2:71:3e:d4:41:14:aa:44:ad:63:13:20:be: b3:a3:8c:2b:8a:57:ac:ab:f5:9c:79:ef:53:d4:b7:5d:99:53: 7a:93:65:5c:90:1d:d9:63:b1:3f:96:32:f2:d2:fb:18:d0:49: b2:cf:ea:f6:99:13:2e:ea:ed:af:e8:3e:46:8e:7f:78:c8:14: 37:ed:5e:e5:bc:48:2e:e5:0e:64:40:b7:3d:35:e6:5b:66:8f: 10:be:5f:b8:f3:ed:d4:81:d7:dc:77:dc:ae:10:f8:e9:55:b0: 74:9c:d0:4e:61:25:6f:1d:59:80:a9:9a:70:8e:7d:dd:d9:0a: df:58:67:cf:f4:fa:0f:5c:69:d3:87:7e:bc:f3:cf:49:11:5f: 08:12:69:2b:d0:f0:bd:8d:ad:7f:7c:67:27:c4:e1:84:b0:1f: 7a:31:73:d9:6b:be:bc:71:29:8e:af:e2:62:03:9b:d2:29:89: dd:40:24:52:95:4d:30:33:2d:1d:de:9d:77:fe:b1:6c:d6:a9: eb:ef:b1:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCNTgxMTAvBgNVBAUTKDYzRTQ4NzYyQTg5MzA4MDk2NzczRDlFMUM5RDFBOTk5 ODAzNTY3MEQwHhcNMjUxMjA0MjEzNjM1WhcNMjUxMjExMjEzNjM1WjAYMRYwFAYD VQQDEw02OTMxZmVlMy0yYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRTuC+GPVl6QHfbkaqsNvZyvbwsY/6aOsk1+yRIfJDCW2tAtD8RsHJNmT6d3 rqqj8RwNX5n2+odfs+H+Yra+9cIC1fykH1AbuPf74JzUyNBqbDamLpPXoZXaud4M tbPgHl8XZ6YlIlXSHifXuIoHW4F7kCNfVSkqQUAiiYUyRYWtOL0svVnb5aOiyWB9 IV0rCWv98/vpt/dITt4Au0igEewfayFRdDSuvbxn0ERIpd1Mt4Txo5Ugk4jI1JSu E0AmDio8DPM85i4kjs/Z2WuapcOasX2V0sUjZlel2SH9bSUfs1zRrsWTIALWZZ/Q Pkruc/VqPwaYcGMaScPIQknHxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPfJZ6T aDmw4W+YhHd6ISBKHPfNMB8GA1UdIwQYMBaAFGPkh2KokwgJZ3PZ4cnRqZmANWcN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0I1OC9BQUMyMUM3RUNB QjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENBbG5jOW5oeWRHcG1ZQTFa dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktU0hZcWlUQ0FsbmM5bmh5ZEdwbVlBMVp3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0I1OC9BQUMyMUM3RUNBQjgxMUVCODQxNTUzMzZDNEY5QUUwMi9ZLVNIWXFpVENB bG5jOW5oeWRHcG1ZQTFadzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6Rt9vvrHq9jk2crdao6U6JJHAEiBouKUojSOahn0MSA21FCtIuba b/NIAIB6F2OQ/D8HIlXmtJZzSaJxPtRBFKpErWMTIL6zo4wrilesq/Wcee9T1Ldd mVN6k2VckB3ZY7E/ljLy0vsY0Emyz+r2mRMu6u2v6D5Gjn94yBQ37V7lvEgu5Q5k QLc9NeZbZo8Qvl+48+3Ugdfcd9yuEPjpVbB0nNBOYSVvHVmAqZpwjn3d2QrfWGfP 9PoPXGnTh368889JEV8IEmkr0PC9ja1/fGcnxOGEsB96MXPZa768cSmOr+JiA5vS KYndQCRSlU0wMy0d3p13/rFs1qnr77Hm -----END CERTIFICATE-----Generated at Sat Dec 6 15:59:35 2025 by rpki-client