This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: slooj+AGiad/5dR1HtW/mpNGmC5mQgfPEMYmx1hbCpg= Subject key identifier: EE:06:F9:23:00:CC:C9:89:CD:51:A2:26:C6:9E:5E:A1:4A:03:DF:AF Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 0235 Signing time: Fri 05 Dec 2025 00:17:07 +0000 Manifest this update: Fri 05 Dec 2025 00:17:06 +0000 Manifest next update: Fri 12 Dec 2025 00:17:06 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: F/e1vdO0rvBfGtA4Vr14tt1LAsvCbrnp4GDl1qHG8uA=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: GPH0EzTOvf8jZ7f6MSDgIy6jbOQ54/6c8g2ijkFuu3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:17:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Dec 5 00:17:06 2025 GMT Not After : Dec 12 00:17:06 2025 GMT Subject: CN=69322482-3913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:82:51:73:b9:91:70:ca:1c:b4:4f:c9:32:d6: 5c:ef:b2:42:2e:e0:5c:9d:3a:87:3a:99:a0:1a:00: e6:c8:d3:ae:0b:08:e7:c9:24:74:bd:e9:19:a6:5f: 38:a5:fb:97:19:89:f3:dd:34:22:71:b8:55:9b:df: 63:74:9e:a1:52:51:79:fc:0f:53:47:fa:74:36:5f: 47:a5:55:75:10:3c:8b:e5:aa:d5:e4:0f:db:af:ea: 05:3a:c1:47:95:5a:7a:47:95:29:6a:5f:37:40:c7: f5:ed:ca:7b:ba:67:95:99:8a:04:2a:db:0b:7f:2c: 9a:31:cb:2c:4b:36:e0:8b:e5:51:2a:e3:a1:06:61: 3d:bd:f7:a7:95:b9:bb:79:37:6a:f4:45:11:9d:7c: 48:0a:af:61:27:f3:b0:a7:34:54:74:d4:07:f8:eb: f3:ef:c2:c2:73:74:19:be:2a:b0:0f:a5:1b:a6:7b: 7d:27:41:e8:4f:68:33:c5:72:23:66:9f:48:a6:3b: 45:0f:e8:69:1b:cf:e2:63:6b:55:80:fe:79:c3:9d: 2b:ad:c8:dd:55:8e:20:56:30:b7:51:7f:5f:2f:dc: 6a:89:78:27:d2:e7:2b:38:63:82:a3:04:39:6f:28: 86:f0:5c:8c:28:6f:01:75:67:0d:f4:75:86:da:6d: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:06:F9:23:00:CC:C9:89:CD:51:A2:26:C6:9E:5E:A1:4A:03:DF:AF X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ab:3a:b3:26:bb:2b:84:1f:be:28:07:97:2e:b0:e7:5c:2b: 30:36:3e:4e:49:c5:5b:63:9c:3c:28:85:b9:2f:f2:94:90:be: d0:11:7a:33:59:1f:1e:b5:7e:a7:c3:20:59:87:14:82:2a:da: d1:47:fe:34:cf:d3:12:c1:20:5d:85:fb:04:87:10:15:16:72: e1:2d:c8:f0:fa:03:ce:12:3d:c9:df:eb:68:9c:b5:91:16:33: 70:2c:b8:97:d9:ac:bc:ed:86:7f:17:ae:75:9f:84:95:27:e2: 86:df:ea:b5:bf:3c:16:8c:00:35:8a:20:40:a0:28:5f:00:4b: 54:9d:8a:19:e3:b0:cd:d3:46:17:ea:35:e9:23:d1:fe:3b:b4: 46:1e:7b:66:17:de:95:9b:cd:e1:9d:ff:72:20:4f:7a:b7:a2: 9d:45:e3:9d:fe:71:dc:fa:b5:e2:d4:1f:e3:cc:0c:9f:cf:fe: ac:d1:fa:e2:65:b0:a5:f6:f6:f8:1e:90:40:a3:46:9d:46:df: ae:10:c9:f0:1b:1e:b7:cc:ad:32:4a:2e:7d:85:c2:d0:40:5d: 54:c6:3a:9c:f0:92:83:c0:49:69:28:d9:0f:8b:a0:1d:80:b9: ed:18:e9:41:e6:20:e3:ba:c0:69:61:a5:9e:f3:b0:bd:48:68: 93:f9:de:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUxMjA1MDAxNzA2WhcNMjUxMjEyMDAxNzA2WjAYMRYwFAYD VQQDEw02OTMyMjQ4Mi0zOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooJRc7mRcMoctE/JMtZc77JCLuBcnTqHOpmgGgDmyNOuCwjnySR0vekZpl84 pfuXGYnz3TQicbhVm99jdJ6hUlF5/A9TR/p0Nl9HpVV1EDyL5arV5A/br+oFOsFH lVp6R5Upal83QMf17cp7umeVmYoEKtsLfyyaMcssSzbgi+VRKuOhBmE9vfenlbm7 eTdq9EURnXxICq9hJ/OwpzRUdNQH+Ovz78LCc3QZviqwD6Ubpnt9J0HoT2gzxXIj Zp9IpjtFD+hpG8/iY2tVgP55w50rrcjdVY4gVjC3UX9fL9xqiXgn0ucrOGOCowQ5 byiG8FyMKG8BdWcN9HWG2m2RuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4G+SMA zMmJzVGiJsaeXqFKA9+vMB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKqzqzJrsrhB++KAeXLrDnXCswNj5OScVbY5w8KIW5L/KUkL7QEXoz WR8etX6nwyBZhxSCKtrRR/40z9MSwSBdhfsEhxAVFnLhLcjw+gPOEj3J3+tonLWR FjNwLLiX2ay87YZ/F651n4SVJ+KG3+q1vzwWjAA1iiBAoChfAEtUnYoZ47DN00YX 6jXpI9H+O7RGHntmF96Vm83hnf9yIE96t6KdReOd/nHc+rXi1B/jzAyfz/6s0fri ZbCl9vb4HpBAo0adRt+uEMnwGx63zK0ySi59hcLQQF1Uxjqc8JKDwElpKNkPi6Ad gLntGOlB5iDjusBpYaWe87C9SGiT+d5B -----END CERTIFICATE-----Generated at Sat Dec 6 14:20:51 2025 by rpki-client