This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: XPVC8llD1OVYD6B6RFTrTOAhZeK/VlYi4dnuAzz3Rg8= Subject key identifier: 09:BA:01:4A:00:E6:CA:1D:7B:74:EA:31:FB:72:FA:9D:8E:E0:80:F9 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B2B Signing time: Thu 04 Dec 2025 18:40:41 +0000 Manifest this update: Thu 04 Dec 2025 18:40:40 +0000 Manifest next update: Thu 11 Dec 2025 18:40:40 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: SqZyhxkyTmYkLx7vqDjo9Gn8LdQ0HAI1J66m7CWkI0A=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: ZVAk2XyRV5qdImGf/j24JivHomDtRtZG3rYxPclzl2Y=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: ABo3IcXyMpH31SOaTDFFqnAvB34b3ThGpsgseByRB6g=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: 0gogJN1tvbfFuP+Y2TiW3yi7TRYFrhhWC/4sbA0VSAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Dec 4 18:40:40 2025 GMT Not After : Dec 11 18:40:40 2025 GMT Subject: CN=6931d5a9-c9a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:48:df:1e:fd:be:21:d2:7e:95:69:15:e6: a8:bd:1c:59:f0:ad:8f:4c:e4:09:60:02:f2:8d:e5: 86:6f:81:05:66:9d:8f:8f:aa:97:8a:a9:12:4e:d4: 92:ab:40:61:df:f8:73:75:cc:0e:fe:10:f0:2b:f9: 90:f8:b7:b9:f8:c1:bf:d9:d0:34:2d:01:a2:e1:4a: ef:ad:aa:25:c3:77:f7:46:36:65:6e:66:82:50:0c: fe:29:93:f5:5c:3b:57:d3:d0:c2:c6:94:9c:0a:e0: 3f:7d:06:a1:b0:25:f6:81:5b:5f:32:8c:25:60:fd: 84:be:22:a9:15:0e:bd:32:e4:6f:8d:ec:b9:bd:14: bf:16:85:7c:ea:cb:6a:4e:6c:3a:7c:2e:29:9e:f4: 0f:f7:e7:ab:a6:cc:8b:f7:c4:bd:73:66:6f:64:d4: 65:5c:76:b8:64:e7:36:58:4d:94:b8:17:70:2c:16: cf:d2:98:53:c2:73:e6:28:09:00:20:f9:f9:65:4c: 91:04:71:e5:f9:4b:dd:d8:75:cb:fd:07:10:7c:8b: d9:f5:8c:1f:77:26:b3:4e:55:70:65:2d:31:be:6f: 5e:c7:88:37:89:8b:ad:87:3f:d8:18:95:ce:94:4c: 2c:4d:46:5f:d0:1a:b7:5e:d9:f4:aa:b9:d2:83:56: d9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BA:01:4A:00:E6:CA:1D:7B:74:EA:31:FB:72:FA:9D:8E:E0:80:F9 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:34:a2:a4:da:30:51:55:6c:71:94:c8:e2:86:d9:e5:5d:5d: bd:c7:e0:17:29:50:20:cd:e7:b5:32:5c:d2:0a:01:06:28:1e: b8:f3:e2:a3:8f:c4:45:b4:ae:12:22:74:27:da:4f:ec:7f:6b: 11:db:87:d9:fc:22:46:e8:c8:c6:57:42:d7:5f:73:ae:3b:0f: 9d:47:a9:cd:99:57:9d:00:74:67:28:b5:ef:36:2f:d7:42:2b: 19:cc:d3:74:1c:e3:c2:0a:5c:64:bd:01:58:4d:6d:91:36:88: 64:7f:24:f6:b5:69:ac:b2:9d:af:e9:d0:d2:11:74:98:b9:ed: fb:7e:90:6d:1b:32:d3:b5:13:1e:58:71:da:77:37:2a:f0:d0: cd:3f:6e:9b:4f:28:b1:da:2d:19:3a:44:e5:dd:26:a7:dd:82: d7:8d:cd:40:5d:ad:1b:50:f6:16:23:cb:4c:ea:2d:7c:f8:8c: 3d:b4:35:37:70:33:99:52:83:30:37:ea:90:dc:6b:4f:b9:b5: ba:50:66:ba:20:41:61:05:f4:99:23:74:d6:c4:4e:24:3e:80: ac:ed:02:a0:b2:02:4a:fc:ad:70:a8:49:56:3b:3b:17:84:9f: 1d:1f:38:2d:07:cc:64:58:a5:f7:d5:a9:7b:20:68:d7:45:a6: 7d:95:fe:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUxMjA0MTg0MDQwWhcNMjUxMjExMTg0MDQwWjAYMRYwFAYD VQQDEw02OTMxZDVhOS1jOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdhI3x79viHSfpVpFeaovRxZ8K2PTOQJYALyjeWGb4EFZp2Pj6qXiqkSTtSS q0Bh3/hzdcwO/hDwK/mQ+Le5+MG/2dA0LQGi4Urvraolw3f3RjZlbmaCUAz+KZP1 XDtX09DCxpScCuA/fQahsCX2gVtfMowlYP2EviKpFQ69MuRvjey5vRS/FoV86stq Tmw6fC4pnvQP9+erpsyL98S9c2ZvZNRlXHa4ZOc2WE2UuBdwLBbP0phTwnPmKAkA IPn5ZUyRBHHl+Uvd2HXL/QcQfIvZ9YwfdyazTlVwZS0xvm9ex4g3iYuthz/YGJXO lEwsTUZf0Bq3Xtn0qrnSg1bZGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm6AUoA 5sode3TqMfty+p2O4ID5MB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByNKKk2jBRVWxxlMjihtnlXV29x+AXKVAgzee1MlzSCgEGKB648+Kj j8RFtK4SInQn2k/sf2sR24fZ/CJG6MjGV0LXX3OuOw+dR6nNmVedAHRnKLXvNi/X QisZzNN0HOPCClxkvQFYTW2RNohkfyT2tWmssp2v6dDSEXSYue37fpBtGzLTtRMe WHHadzcq8NDNP26bTyix2i0ZOkTl3San3YLXjc1AXa0bUPYWI8tM6i18+Iw9tDU3 cDOZUoMwN+qQ3GtPubW6UGa6IEFhBfSZI3TWxE4kPoCs7QKgsgJK/K1wqElWOzsX hJ8dHzgtB8xkWKX31al7IGjXRaZ9lf7B -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:17 2025 by rpki-client