This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft File: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft (raw, json) Hash identifier: 7616OBxQlLcVSdnKKI21ZuHqClFSBZCxir2XH2Djm0o= Subject key identifier: 8D:DD:10:E4:4D:5D:60:5E:8A:2C:CD:24:25:65:E5:3D:2B:79:B4:EE Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 2136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft Manifest number: 212A Signing time: Thu 04 Dec 2025 15:43:15 +0000 Manifest this update: Thu 04 Dec 2025 15:43:14 +0000 Manifest next update: Thu 11 Dec 2025 15:43:14 +0000 Files and hashes: 1: ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl (hash: XcmkuMnkTIeEXLn/nM/IRHXETosVbdpHtdpU8ZdlH3U=) 2: C49E2E22FF0111E591C15659C4F9AE02.roa (hash: oBzh3F7vXr0+lbZGHQqiGoRJzyM9Q1R1dON0koDXQXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8502 (0x2136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Dec 4 15:43:14 2025 GMT Not After : Dec 11 15:43:14 2025 GMT Subject: CN=6931ac13-b0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ba:86:8b:8c:10:ab:a0:90:23:05:99:10:15: 5b:ce:7c:51:ef:e1:08:c7:3a:fb:82:b8:98:9d:78: ba:e1:87:6b:19:cc:a8:4c:cc:9b:ea:1e:7b:53:de: 20:2a:b9:bc:43:83:0f:5b:40:66:25:2a:1a:14:6e: df:78:c8:bc:c6:c9:c1:5d:77:d8:56:17:55:f6:87: 9b:a7:75:b8:5f:ac:81:9f:72:e5:6e:80:86:bf:3b: 74:a8:d8:f4:67:b3:f8:66:59:5d:ce:85:02:b6:d3: 06:98:0b:2b:76:6c:25:bf:c0:82:ba:9e:31:d1:f6: dc:0c:a7:76:03:6b:f2:50:07:e6:3a:4d:e6:3d:45: f1:63:79:23:84:1d:d7:55:96:fa:47:5c:32:4d:8e: ea:a4:64:2c:ca:fa:82:23:df:1d:55:70:13:3f:22: ec:57:b2:44:b3:69:90:e1:a2:a4:ab:97:aa:0c:4d: bf:60:4a:62:10:90:12:79:da:24:b7:f4:25:a1:1e: c4:a6:af:36:83:de:46:02:31:2c:da:7c:48:76:b5: 31:31:f0:58:75:08:73:fd:f1:36:74:c5:69:25:6f: 5c:33:6d:94:8d:35:75:39:93:1b:dd:5d:eb:e1:7b: 60:73:3f:cd:29:a3:53:7f:ec:e6:6d:bb:91:97:e7: 1e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DD:10:E4:4D:5D:60:5E:8A:2C:CD:24:25:65:E5:3D:2B:79:B4:EE X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:02:16:d3:a2:9b:24:79:d6:2a:56:aa:10:30:97:3c:13:55: 0b:97:75:0a:94:77:65:b7:72:a8:26:3d:00:1e:8f:1e:2c:23: 54:26:ac:e5:40:58:38:66:47:98:b4:88:ff:1c:44:dd:fb:57: 30:61:d3:07:09:72:da:25:42:df:12:c0:a2:99:c1:a7:5b:d4: 2c:5a:5e:b6:97:94:8d:3d:2b:f1:05:8c:fb:5c:37:0b:a2:08: 76:a7:cc:57:29:47:fc:b7:f2:aa:8c:49:10:58:e8:f4:fa:48: 47:11:cd:a3:5d:45:c5:7f:b2:cc:bd:84:b4:48:93:dc:ea:35: 99:b6:38:4c:e9:b7:73:29:7e:b4:88:60:7b:98:e2:20:2c:a0: ff:a4:ac:6c:bc:73:30:7f:55:ce:f4:b4:88:20:a8:c4:c6:a6: 73:89:df:21:f4:11:77:32:77:73:c2:81:20:23:16:ef:26:8d: 81:61:c3:75:85:04:26:ad:6a:77:70:f0:46:4e:fe:3e:83:da: 8b:2f:27:f0:0e:8a:0b:7f:02:bc:80:48:2d:c0:33:76:5e:0a: 7d:25:52:bc:08:31:91:93:aa:ff:ed:8f:03:36:03:d3:22:36: 44:22:5f:64:51:17:36:40:41:e6:18:d7:4a:86:2d:76:24:e3: cc:02:28:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUxMjA0MTU0MzE0WhcNMjUxMjExMTU0MzE0WjAYMRYwFAYD VQQDEw02OTMxYWMxMy1iMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrqGi4wQq6CQIwWZEBVbznxR7+EIxzr7griYnXi64YdrGcyoTMyb6h57U94g Krm8Q4MPW0BmJSoaFG7feMi8xsnBXXfYVhdV9oebp3W4X6yBn3LlboCGvzt0qNj0 Z7P4ZlldzoUCttMGmAsrdmwlv8CCup4x0fbcDKd2A2vyUAfmOk3mPUXxY3kjhB3X VZb6R1wyTY7qpGQsyvqCI98dVXATPyLsV7JEs2mQ4aKkq5eqDE2/YEpiEJASedok t/QloR7Epq82g95GAjEs2nxIdrUxMfBYdQhz/fE2dMVpJW9cM22UjTV1OZMb3V3r 4Xtgcz/NKaNTf+zmbbuRl+ce8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3dEORN XWBeiizNJCVl5T0rebTuMB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjVCQi80NEJCQzE0Q0ZGMDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11 UWVKT244Wl9oUl8wUERNd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaAhbTopskedYqVqoQMJc8E1ULl3UKlHdlt3KoJj0AHo8eLCNUJqzl QFg4ZkeYtIj/HETd+1cwYdMHCXLaJULfEsCimcGnW9QsWl62l5SNPSvxBYz7XDcL ogh2p8xXKUf8t/KqjEkQWOj0+khHEc2jXUXFf7LMvYS0SJPc6jWZtjhM6bdzKX60 iGB7mOIgLKD/pKxsvHMwf1XO9LSIIKjExqZzid8h9BF3MndzwoEgIxbvJo2BYcN1 hQQmrWp3cPBGTv4+g9qLLyfwDooLfwK8gEgtwDN2Xgp9JVK8CDGRk6r/7Y8DNgPT IjZEIl9kURc2QEHmGNdKhi12JOPMAij7 -----END CERTIFICATE-----Generated at Sat Dec 6 12:57:48 2025 by rpki-client