This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft File: y-PSoWWxlLlY7sO2qURXdyo6CSo.mft (raw, json) Hash identifier: PL32poklQVSdUADrqsK0/wh7Pz+iRovwOZF9ZiPkJ6s= Subject key identifier: 2C:4D:57:CC:B8:52:8F:64:97:F4:11:0E:BB:DD:89:93:9C:D1:15:25 Authority key identifier: CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A Certificate issuer: /CN=A9154FE7/serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Certificate serial: 089E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft Manifest number: 0890 Signing time: Sat 24 Jan 2026 19:57:03 +0000 Manifest this update: Sat 24 Jan 2026 19:57:03 +0000 Manifest next update: Sat 31 Jan 2026 19:57:03 +0000 Files and hashes: 1: y-PSoWWxlLlY7sO2qURXdyo6CSo.crl (hash: +/47jFpl86rmHsh566xBUQv+lD+CxAW1K242dK4DFp0=) 2: 4B3AC7DC5FC811ED869A6956C4F9AE02.roa (hash: h/ONFX5RBxxUCv61ioAJ3Q3fkstH618CVb7fuwaMYno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2206 (0x89e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154FE7, serialNumber=CBE3D2A165B194B958EEC3B6A94457772A3A092A Validity Not Before: Jan 24 19:57:03 2026 GMT Not After : Jan 31 19:57:03 2026 GMT Subject: CN=6975240f-409a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c6:50:73:45:db:07:9b:4f:4b:82:d1:b3:f0: ab:5f:01:28:90:ea:f8:fc:b2:30:b0:0d:0f:2e:65: 65:ce:66:8c:4d:08:c7:3c:07:0e:42:9e:f6:8e:bf: 83:66:16:37:8d:a1:f8:60:21:a2:49:11:b4:36:e2: 4b:7b:cf:7a:15:32:00:3d:30:41:f0:85:45:30:1b: 8f:26:3f:51:d0:45:1b:9a:38:0a:c4:c5:6d:db:5e: 18:56:dc:10:f6:93:2c:51:17:53:b0:a9:a5:bf:ff: 56:62:25:ca:ce:35:fb:7c:97:37:07:95:0b:e5:13: 2c:41:34:b2:ab:8b:c4:66:50:19:de:ee:9e:1f:f5: 19:34:d8:a4:d8:2c:ea:a2:fc:75:2c:f7:ba:9d:d4: 05:f4:8a:9b:8b:bf:c1:62:c6:b3:68:e8:56:c5:4e: 99:bc:82:3f:d5:15:68:3e:45:fa:0a:b8:34:63:52: 89:85:95:cb:7e:40:c6:5a:23:bc:c3:11:67:63:b8: 6c:bc:32:bd:15:5d:1a:3b:fd:37:1b:d1:ed:6e:5b: f0:dd:5e:b8:ac:78:0c:c4:d4:de:d6:c1:7b:39:93: 7b:7b:41:5c:f8:7b:47:38:79:98:1a:a7:de:3d:01: 2f:af:1b:07:6c:16:0e:b0:7c:4d:26:a5:03:54:ce: 5f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4D:57:CC:B8:52:8F:64:97:F4:11:0E:BB:DD:89:93:9C:D1:15:25 X509v3 Authority Key Identifier: keyid:CB:E3:D2:A1:65:B1:94:B9:58:EE:C3:B6:A9:44:57:77:2A:3A:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-PSoWWxlLlY7sO2qURXdyo6CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154FE7/5A2D89EADB7D11EABCF3EC3EC4F9AE02/y-PSoWWxlLlY7sO2qURXdyo6CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b0:3f:a5:b5:ec:10:d2:16:11:d3:a6:02:2c:ef:34:47:a6: f3:04:ae:27:83:83:0e:c7:2c:33:68:ca:82:94:b1:97:53:48: 7c:8b:e7:09:ae:9c:1d:6c:c4:3b:28:d0:be:a1:c5:72:af:a8: 74:49:b4:fc:81:68:b2:95:b2:fe:3a:66:e3:4c:e8:72:bf:ad: 5c:8c:fa:0f:37:15:d2:0d:b1:12:66:ac:77:fb:68:d1:3f:d7: 78:cc:f4:41:79:ac:6f:66:2d:59:89:48:45:12:5b:bd:84:7c: 47:76:ee:0c:6d:14:16:b8:7a:77:4f:27:22:6a:d9:e8:ec:11: 1d:7a:9a:5a:86:ad:e6:70:00:d8:38:0a:e7:cc:eb:29:19:cd: e0:fb:b8:b4:92:dd:c9:0a:33:cd:8f:ae:3f:03:7a:6e:16:99: 40:f5:74:0f:d3:be:7c:63:86:a8:15:b6:96:1c:f9:3f:ef:7e: 0e:e9:96:ba:10:20:ce:e9:85:99:4e:b3:97:ac:dd:15:b1:d7: ef:15:18:da:b7:ca:70:5a:4d:6f:c4:66:b9:e4:aa:cf:5e:d0: 87:05:dc:f0:12:11:48:fa:ec:2e:f2:28:a9:15:3e:7b:3c:02: 68:4a:9a:5a:72:47:74:fc:c2:27:e3:97:84:ad:4c:fd:7f:31: 9a:bd:a3:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRGRTcxMTAvBgNVBAUTKENCRTNEMkExNjVCMTk0Qjk1OEVFQzNCNkE5NDQ1Nzc3 MkEzQTA5MkEwHhcNMjYwMTI0MTk1NzAzWhcNMjYwMTMxMTk1NzAzWjAYMRYwFAYD VQQDDA02OTc1MjQwZi00MDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMZQc0XbB5tPS4LRs/CrXwEokOr4/LIwsA0PLmVlzmaMTQjHPAcOQp72jr+D ZhY3jaH4YCGiSRG0NuJLe896FTIAPTBB8IVFMBuPJj9R0EUbmjgKxMVt214YVtwQ 9pMsURdTsKmlv/9WYiXKzjX7fJc3B5UL5RMsQTSyq4vEZlAZ3u6eH/UZNNik2Czq ovx1LPe6ndQF9Iqbi7/BYsazaOhWxU6ZvII/1RVoPkX6Crg0Y1KJhZXLfkDGWiO8 wxFnY7hsvDK9FV0aO/03G9Htblvw3V64rHgMxNTe1sF7OZN7e0Fc+HtHOHmYGqfe PQEvrxsHbBYOsHxNJqUDVM5f1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxNV8y4 Uo9kl/QRDrvdiZOc0RUlMB8GA1UdIwQYMBaAFMvj0qFlsZS5WO7DtqlEV3cqOgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEZFNy81QTJEODlFQURC N0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxMbFk3c08ycVVSWGR5bzZD U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktUFNvV1d4bExsWTdzTzJxVVJYZHlvNkNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEZFNy81QTJEODlFQURCN0QxMUVBQkNGM0VDM0VDNEY5QUUwMi95LVBTb1dXeGxM bFk3c08ycVVSWGR5bzZDU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgsD+ltewQ0hYR06YCLO80R6bzBK4ng4MOxywzaMqClLGXU0h8i+cJ rpwdbMQ7KNC+ocVyr6h0SbT8gWiylbL+OmbjTOhyv61cjPoPNxXSDbESZqx3+2jR P9d4zPRBeaxvZi1ZiUhFElu9hHxHdu4MbRQWuHp3Tyciatno7BEdeppahq3mcADY OArnzOspGc3g+7i0kt3JCjPNj64/A3puFplA9XQP0758Y4aoFbaWHPk/734O6Za6 ECDO6YWZTrOXrN0VsdfvFRjat8pwWk1vxGa55KrPXtCHBdzwEhFI+uwu8iipFT57 PAJoSppackd0/MIn45eErUz9fzGavaMx -----END CERTIFICATE-----Generated at Sun Jan 25 10:33:45 2026 by rpki-client