This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft File: YLrcBCw3e4bA3J7riVEnJc4-IzY.mft (raw, json) Hash identifier: TJ9fO+fY66KMYYJY5pG+8s9gj9MCjHk5sJ4KPQWbDQ8= Subject key identifier: BD:15:34:13:DD:C9:43:DC:F6:45:68:32:DC:E9:EF:78:52:3F:A0:30 Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft Manifest number: 023A Signing time: Fri 05 Dec 2025 00:20:42 +0000 Manifest this update: Fri 05 Dec 2025 00:20:42 +0000 Manifest next update: Fri 12 Dec 2025 00:20:42 +0000 Files and hashes: 1: YLrcBCw3e4bA3J7riVEnJc4-IzY.crl (hash: xQj5d6D6hptTTpcY15stiyHh+WR/cq3QOLfGT9JWIZ0=) 2: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (hash: WbvHWJpGhR5F5UQEA2wky32hyI5JtD8Tsxw8FwN0LUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Dec 5 00:20:42 2025 GMT Not After : Dec 12 00:20:42 2025 GMT Subject: CN=6932255a-9d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:4f:a8:b3:16:78:b4:de:96:00:58:c0:26: 01:fd:67:2f:25:29:78:6d:af:da:ca:0a:35:af:e4: 5c:cc:26:cb:ab:27:a0:0a:76:e5:25:aa:48:93:5a: e1:98:1a:58:c0:bc:7f:cb:3a:59:32:37:3d:4c:77: c1:7b:bf:ec:3a:92:fb:ac:d3:b5:15:0e:e4:60:ba: b8:fe:bc:20:09:5d:c7:78:89:37:6d:99:21:39:97: c0:7b:e6:46:59:8b:91:c7:5c:ac:1b:55:dd:4c:fe: 8b:9c:89:f7:bf:d9:93:e2:75:4b:0e:19:36:ac:9c: 99:68:ac:a7:8a:9c:f1:90:b0:3d:54:2a:20:c2:08: 99:a4:46:01:c8:47:ae:01:cd:29:31:e2:76:ed:be: 72:43:d5:04:04:58:5c:a8:44:63:ce:75:37:f1:c7: 06:79:0b:1d:8f:87:c7:c0:a9:5f:c8:49:b2:dd:0d: e2:21:20:b7:80:ac:12:20:68:b0:62:5d:99:e9:39: 27:61:97:b2:f3:ad:68:69:34:2b:e7:b1:2f:36:85: e2:96:a9:9f:75:29:f5:a8:65:73:15:12:5f:26:d2: 7a:ee:d8:eb:4b:93:94:8c:7c:20:58:21:8e:f0:4a: 15:e0:fa:12:4e:60:2b:9c:a4:f2:62:9e:77:02:fc: 2e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:15:34:13:DD:C9:43:DC:F6:45:68:32:DC:E9:EF:78:52:3F:A0:30 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:12:0f:c9:d8:eb:e4:2d:4e:e3:a7:4e:e2:4c:6e:ac:38:47: dc:db:ec:4a:b5:cb:d6:80:95:96:99:ce:a5:75:0c:70:97:a5: 8f:d2:69:ac:c0:0d:97:d4:f6:8f:42:76:0d:70:20:c8:79:f4: be:42:7f:a9:3e:c8:c7:02:05:8f:92:05:54:72:7b:82:40:27: 3e:a6:5b:f1:b6:79:30:de:42:da:16:d0:55:4f:55:5f:da:21: 32:3c:5b:85:5e:31:54:cf:52:40:15:96:44:c4:da:82:3f:9b: e6:c9:66:45:5f:12:70:c2:e1:90:94:74:44:7d:f7:a8:85:bc: 85:ee:61:a3:b9:4c:5e:21:d4:0d:04:cc:1b:c8:3e:39:34:d5: 47:fc:e2:32:b2:f1:fd:77:58:b0:e5:5a:2f:85:42:08:a3:26: 5b:ef:e5:c5:56:f5:5e:da:43:8d:26:ad:60:c2:5f:df:8e:d0: b4:e9:40:22:5b:55:ac:0b:71:11:ed:8e:33:b0:33:1e:2f:c4: 61:26:f1:8b:45:db:6d:2b:7c:50:7f:70:5e:29:2e:4c:7c:13: a1:9c:45:1f:53:90:20:13:89:ed:c2:ae:bb:88:1c:6f:b4:3c: 41:8a:92:58:d5:3b:4c:5e:71:41:ed:28:2b:ad:60:1b:b2:ad: bb:9f:b1:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUxMjA1MDAyMDQyWhcNMjUxMjEyMDAyMDQyWjAYMRYwFAYD VQQDEw02OTMyMjU1YS05ZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgtPqLMWeLTelgBYwCYB/WcvJSl4ba/aygo1r+RczCbLqyegCnblJapIk1rh mBpYwLx/yzpZMjc9THfBe7/sOpL7rNO1FQ7kYLq4/rwgCV3HeIk3bZkhOZfAe+ZG WYuRx1ysG1XdTP6LnIn3v9mT4nVLDhk2rJyZaKynipzxkLA9VCogwgiZpEYByEeu Ac0pMeJ27b5yQ9UEBFhcqERjznU38ccGeQsdj4fHwKlfyEmy3Q3iISC3gKwSIGiw Yl2Z6TknYZey861oaTQr57EvNoXilqmfdSn1qGVzFRJfJtJ67tjrS5OUjHwgWCGO 8EoV4PoSTmArnKTyYp53AvwubQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0VNBPd yUPc9kVoMtzp73hSP6AwMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8yQzc1RkVDODdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0 YkEzSjdyaVZFbkpjNC1JelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzEg/J2OvkLU7jp07iTG6sOEfc2+xKtcvWgJWWmc6ldQxwl6WP0mms wA2X1PaPQnYNcCDIefS+Qn+pPsjHAgWPkgVUcnuCQCc+plvxtnkw3kLaFtBVT1Vf 2iEyPFuFXjFUz1JAFZZExNqCP5vmyWZFXxJwwuGQlHREffeohbyF7mGjuUxeIdQN BMwbyD45NNVH/OIysvH9d1iw5VovhUIIoyZb7+XFVvVe2kONJq1gwl/fjtC06UAi W1WsC3ER7Y4zsDMeL8RhJvGLRdttK3xQf3BeKS5MfBOhnEUfU5AgE4ntwq67iBxv tDxBipJY1TtMXnFB7SgrrWAbsq27n7HH -----END CERTIFICATE-----Generated at Sat Dec 6 14:34:22 2025 by rpki-client