This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft File: y3TVYT1zQs-5t_ed7wyfrYhceCI.mft (raw, json) Hash identifier: FZYOXrR4DQwz+2F5LUPQA3yZ/FsbB3X0hRXMwhZ7+8k= Subject key identifier: C7:36:28:B7:BD:EF:28:56:3A:2F:E6:F8:AF:9A:66:06:E3:57:53:B0 Authority key identifier: CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 Certificate issuer: /CN=A917845B/serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft Manifest number: 01C8 Signing time: Sun 21 Dec 2025 02:09:38 +0000 Manifest this update: Sun 21 Dec 2025 02:09:37 +0000 Manifest next update: Sun 28 Dec 2025 02:09:37 +0000 Files and hashes: 1: y3TVYT1zQs-5t_ed7wyfrYhceCI.crl (hash: KTXnl3Wbg4uAB8jNIt0kPq6T4Z+F9aW1cAjk0jiZ5E4=) 2: D5981734217611EE9EBE2F70C4F9AE02.roa (hash: Ae2kzkiPbHsneEUo3gobHEERA3S8mH2dAIJpdvxeRck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917845B, serialNumber=CB74D5613D7342CFB9B7F79DEF0C9FAD885C7822 Validity Not Before: Dec 21 02:09:37 2025 GMT Not After : Dec 28 02:09:37 2025 GMT Subject: CN=694756e1-346a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:30:a6:88:01:dd:af:39:3f:e0:c7:09:f0:54: 42:8b:15:1e:df:c1:eb:c1:1d:ed:2a:70:c3:04:5a: 60:d1:af:c7:09:30:f1:c0:89:5a:ed:ef:95:16:86: 00:c2:31:03:71:8d:64:51:06:a2:b8:a5:8e:74:0d: 64:2d:a4:04:b3:69:f0:2c:17:a2:4f:54:85:4c:28: a1:ee:ac:8c:54:e0:0b:87:89:1b:42:7c:8f:dc:00: 1a:f6:d8:af:fa:ec:f3:13:05:58:c3:9c:85:83:3b: 08:02:52:d7:ab:a9:47:9c:e7:b9:17:e6:0c:c2:3e: b2:3b:6d:de:84:d3:06:89:4f:b1:53:5f:dd:e6:d8: a5:cb:3a:71:66:29:30:1e:31:1a:0c:a9:25:47:3b: 92:aa:29:80:bc:9a:95:43:e8:6f:93:a6:9b:bf:a2: 83:1b:48:e8:69:d3:aa:be:90:fb:a3:ec:50:4e:59: cb:df:ab:c1:93:db:19:bc:d5:8d:f1:ea:76:9e:9b: ac:21:0a:53:48:24:e6:0e:24:82:98:8c:85:7d:a0: 1f:40:20:eb:71:dc:ce:0a:9a:ca:de:f8:8a:b8:8d: cf:e9:dc:a1:04:98:1c:7b:6a:fa:e2:55:22:73:75: fe:3a:13:7f:80:b5:2c:94:e3:90:5b:f3:64:02:c1: 2e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:36:28:B7:BD:EF:28:56:3A:2F:E6:F8:AF:9A:66:06:E3:57:53:B0 X509v3 Authority Key Identifier: keyid:CB:74:D5:61:3D:73:42:CF:B9:B7:F7:9D:EF:0C:9F:AD:88:5C:78:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3TVYT1zQs-5t_ed7wyfrYhceCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917845B/97369B46217611EEB4F3AD6FC4F9AE02/y3TVYT1zQs-5t_ed7wyfrYhceCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:08:0b:08:47:10:54:c9:4b:a1:da:de:c3:03:57:b0:97:aa: da:3c:8a:75:ab:1d:4e:8e:f4:8e:f3:89:f6:69:88:08:a3:cd: 16:9f:92:46:ec:85:23:7f:3d:28:55:87:79:17:67:48:93:c4: f1:e8:6b:ca:4e:cd:9b:c3:8c:44:75:b3:45:45:c6:aa:db:72: 94:de:9d:cc:ac:cd:e6:10:3e:68:6f:e1:e6:e2:b6:6f:7f:92: 1e:b5:a7:ce:ac:c0:1b:d9:ba:2e:87:1a:ad:d8:07:34:d3:17: 8f:0e:08:6a:e8:b1:1e:21:7d:e9:ed:33:0e:5d:ef:75:73:ed: 5f:76:bf:50:8e:73:11:22:1d:4f:75:3c:5f:b7:63:2e:1a:45: 05:e7:eb:f6:a4:8f:7b:fc:26:8c:79:a4:8c:fe:02:01:d8:c4: c8:e0:0e:13:74:4b:cc:0a:ef:76:ab:8e:79:8f:7c:17:f0:ba: 1c:32:13:c8:67:53:29:e1:9f:bf:e4:32:77:88:3f:ec:9b:f2: 1f:dd:3e:8f:92:8d:e8:12:21:fa:b8:79:d4:ec:2a:d8:b5:d0: 64:ca:b3:51:b5:2d:b5:5a:03:d3:7f:0f:bb:d4:32:73:fb:68: 13:0b:b0:83:7a:6a:d1:e1:20:42:49:f4:73:67:b7:86:3b:40: 66:49:ae:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0NUIxMTAvBgNVBAUTKENCNzRENTYxM0Q3MzQyQ0ZCOUI3Rjc5REVGMEM5RkFE ODg1Qzc4MjIwHhcNMjUxMjIxMDIwOTM3WhcNMjUxMjI4MDIwOTM3WjAYMRYwFAYD VQQDDA02OTQ3NTZlMS0zNDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTCmiAHdrzk/4McJ8FRCixUe38HrwR3tKnDDBFpg0a/HCTDxwIla7e+VFoYA wjEDcY1kUQaiuKWOdA1kLaQEs2nwLBeiT1SFTCih7qyMVOALh4kbQnyP3AAa9tiv +uzzEwVYw5yFgzsIAlLXq6lHnOe5F+YMwj6yO23ehNMGiU+xU1/d5tilyzpxZikw HjEaDKklRzuSqimAvJqVQ+hvk6abv6KDG0joadOqvpD7o+xQTlnL36vBk9sZvNWN 8ep2npusIQpTSCTmDiSCmIyFfaAfQCDrcdzOCprK3viKuI3P6dyhBJgce2r64lUi c3X+OhN/gLUslOOQW/NkAsEubQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMc2KLe9 7yhWOi/m+K+aZgbjV1OwMB8GA1UdIwQYMBaAFMt01WE9c0LPubf3ne8Mn62IXHgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQ1Qi85NzM2OUI0NjIx NzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFzLTV0X2VkN3d5ZnJZaGNl Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzVFZZVDF6UXMtNXRfZWQ3d3lmclloY2VDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQ1Qi85NzM2OUI0NjIxNzYxMUVFQjRGM0FENkZDNEY5QUUwMi95M1RWWVQxelFz LTV0X2VkN3d5ZnJZaGNlQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmCAsIRxBUyUuh2t7DA1ewl6raPIp1qx1OjvSO84n2aYgIo80Wn5JG 7IUjfz0oVYd5F2dIk8Tx6GvKTs2bw4xEdbNFRcaq23KU3p3MrM3mED5ob+Hm4rZv f5IetafOrMAb2bouhxqt2Ac00xePDghq6LEeIX3p7TMOXe91c+1fdr9QjnMRIh1P dTxft2MuGkUF5+v2pI97/CaMeaSM/gIB2MTI4A4TdEvMCu92q455j3wX8LocMhPI Z1Mp4Z+/5DJ3iD/sm/If3T6Pko3oEiH6uHnU7CrYtdBkyrNRtS21WgPTfw+71DJz +2gTC7CDemrR4SBCSfRzZ7eGO0BmSa6h -----END CERTIFICATE-----Generated at Sun Dec 21 03:28:51 2025 by rpki-client