This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft File: YsQYLAA-_Po43a9O-QT7BP5bVko.mft (raw, json) Hash identifier: /jnMr1O50jRUgtbhdcjkkFpARx2+5kZBZMb/3zfSITg= Subject key identifier: 4A:86:4F:BC:88:6A:15:9A:0C:CE:49:A2:FC:01:CA:DF:43:99:04:7A Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 080F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft Manifest number: 07E7 Signing time: Sat 06 Dec 2025 20:17:36 +0000 Manifest this update: Sat 06 Dec 2025 20:17:35 +0000 Manifest next update: Sat 13 Dec 2025 20:17:35 +0000 Files and hashes: 1: YsQYLAA-_Po43a9O-QT7BP5bVko.crl (hash: NQqA2wSCu4g3f2ZC4agJ17R6JGj82+bh+5PddKRdyO0=) 2: CDA6F2D0111611EFAD808A81C4F9AE02.roa (hash: m3HRY//GpdVT+hpG8y49SxDvHAGnCrO93hZGlg6oP6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22, serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Dec 6 20:17:35 2025 GMT Not After : Dec 13 20:17:35 2025 GMT Subject: CN=69348f60-795f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9c:6e:7c:3e:6d:e5:5a:5c:e6:3f:7f:d8:d7: 76:7e:8f:eb:b3:8b:32:4e:b7:2f:1b:b0:a1:3f:c8: 0b:20:23:b7:87:58:e4:c3:6c:de:33:15:28:27:a7: 26:47:42:6d:3f:a2:4a:5d:10:0d:eb:82:a8:2b:5d: 03:fe:f1:de:ec:10:61:6f:6f:ab:f9:8c:d5:8b:27: 5e:3d:d8:53:4a:e2:23:8a:9f:c9:e6:f4:e1:86:c3: 61:dc:37:e8:ec:34:e2:44:7b:be:ec:52:38:c2:e1: a3:46:f5:1f:1c:35:df:36:53:61:f8:b2:1a:a9:b1: ea:e4:7c:41:47:c1:65:5b:34:bb:a9:37:4d:d0:3e: 5e:65:79:4b:47:ae:aa:f9:7a:98:be:ff:d1:76:53: b9:e3:49:94:7a:8e:70:f2:d7:26:80:88:f3:96:93: 22:1f:c8:6d:43:0c:11:f8:29:d7:c5:d6:08:07:1b: 27:53:78:e0:84:fa:b8:96:cc:8f:42:e2:89:2c:db: 18:20:c9:70:7e:fe:24:58:ba:cd:24:66:13:09:6c: dc:65:4a:da:e4:8f:f5:b3:8c:a5:b0:31:1d:f5:68: ee:54:97:5d:59:50:b5:1c:80:63:27:6f:92:e3:47: fe:8e:65:37:46:82:f7:a4:25:24:73:f9:b0:ec:97: 2c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:86:4F:BC:88:6A:15:9A:0C:CE:49:A2:FC:01:CA:DF:43:99:04:7A X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:ad:ae:69:c1:93:4c:c6:6c:83:0a:98:90:ea:0d:df:9b:03: d9:b7:2d:7d:22:f9:20:80:07:6b:21:06:95:d2:07:14:9a:ab: a1:92:64:eb:d2:a3:9c:38:19:73:33:c9:2b:73:38:89:03:b5: 68:06:91:c8:7b:12:af:58:e4:83:ca:3b:fc:c9:b2:34:ba:06: f6:70:26:37:44:d2:5e:06:cd:36:7e:da:61:4d:96:ef:58:52: 40:72:b3:aa:55:cc:bb:62:69:85:2e:95:39:93:72:b3:21:7a: e3:5b:70:52:56:82:bf:76:9e:6d:12:7a:cb:08:40:87:b1:eb: d1:f2:4f:da:08:c7:20:93:28:2f:a5:9a:bd:f4:05:f7:b1:59: 11:93:f9:7f:04:65:02:f7:47:06:17:74:a5:85:02:c8:f1:d9: 41:1b:02:46:04:75:05:9f:01:43:e4:ae:ba:f1:8f:7c:b9:1d: 7f:7b:e7:8c:78:30:e5:ae:60:75:ca:4c:f0:85:ac:13:b0:96: ac:e3:fb:f3:d7:93:16:0a:0f:46:d7:27:3e:90:7e:11:15:e2: ef:d6:e6:70:dc:8b:f5:f6:7d:19:2a:a0:be:37:05:23:12:13: 6b:1b:fc:90:ac:a8:77:ff:4d:be:26:b4:16:ff:13:85:97:9b: 06:9d:73:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjUxMjA2MjAxNzM1WhcNMjUxMjEzMjAxNzM1WjAYMRYwFAYD VQQDEw02OTM0OGY2MC03OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJxufD5t5Vpc5j9/2Nd2fo/rs4syTrcvG7ChP8gLICO3h1jkw2zeMxUoJ6cm R0JtP6JKXRAN64KoK10D/vHe7BBhb2+r+YzViydePdhTSuIjip/J5vThhsNh3Dfo 7DTiRHu+7FI4wuGjRvUfHDXfNlNh+LIaqbHq5HxBR8FlWzS7qTdN0D5eZXlLR66q +XqYvv/RdlO540mUeo5w8tcmgIjzlpMiH8htQwwR+CnXxdYIBxsnU3jghPq4lsyP QuKJLNsYIMlwfv4kWLrNJGYTCWzcZUra5I/1s4ylsDEd9WjuVJddWVC1HIBjJ2+S 40f+jmU3RoL3pCUkc/mw7JcseQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqGT7yI ahWaDM5JovwByt9DmQR6MB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0UyMi8xMkZBODExQTE3N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9Q bzQzYTlPLVFUN0JQNWJWa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMra5pwZNMxmyDCpiQ6g3fmwPZty19IvkggAdrIQaV0gcUmquhkmTr 0qOcOBlzM8krcziJA7VoBpHIexKvWOSDyjv8ybI0ugb2cCY3RNJeBs02ftphTZbv WFJAcrOqVcy7YmmFLpU5k3KzIXrjW3BSVoK/dp5tEnrLCECHsevR8k/aCMcgkygv pZq99AX3sVkRk/l/BGUC90cGF3SlhQLI8dlBGwJGBHUFnwFD5K668Y98uR1/e+eM eDDlrmB1ykzwhawTsJas4/vz15MWCg9G1yc+kH4RFeLv1uZw3Iv19n0ZKqC+NwUj EhNrG/yQrKh3/02+JrQW/xOFl5sGnXOo -----END CERTIFICATE-----Generated at Sat Dec 6 22:30:12 2025 by rpki-client