This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: p2FfhnwYbtxwLSAt3QiF4h8fpMgefymZLz5budv89N8= Subject key identifier: 08:ED:17:82:17:48:15:B0:84:7F:3A:C2:1C:CC:70:1F:33:87:E6:B7 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0D6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0D63 Signing time: Sat 06 Dec 2025 17:23:48 +0000 Manifest this update: Sat 06 Dec 2025 17:23:47 +0000 Manifest next update: Sat 13 Dec 2025 17:23:47 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: DWpvlUUY7P/MT+5n0cjooFs6mbUOnrdqvSh33sZ9NYc=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: zkAhSZ57x5i2z1ecY4hViVs+riusX3XK2gSVsFUEBsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3435 (0xd6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: Dec 6 17:23:47 2025 GMT Not After : Dec 13 17:23:47 2025 GMT Subject: CN=693466a3-3686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f7:bb:ea:94:2b:aa:95:d9:5a:a9:65:be:bb: 71:b9:3d:77:b5:d6:b9:37:71:cc:af:3f:db:67:91: 14:70:58:42:f9:fd:03:d0:9d:51:6f:b4:21:6d:dc: 7b:83:d9:55:6f:fc:77:ba:01:c9:b7:5c:27:2d:d6: 82:5b:33:ec:31:c4:f2:d5:18:01:bd:d9:b4:dd:33: 37:c9:9a:9e:63:ec:d4:42:f8:9b:df:8c:ff:69:1a: 9b:61:60:c6:b0:91:aa:50:2e:7a:70:06:8c:1e:a0: 2c:8b:2c:5f:2d:08:90:c5:e4:45:eb:47:00:2f:cb: 02:10:c6:7b:55:a8:4d:ae:cb:8e:02:89:70:c3:a0: b7:eb:7a:71:72:81:dc:02:62:7c:36:5d:68:a2:10: 0e:c2:79:61:a1:76:5e:a1:1b:8e:78:70:bd:2d:34: 15:d2:0e:64:27:96:93:2e:1a:88:d4:0b:84:07:6a: 59:9e:53:2a:80:aa:94:46:73:f4:56:cf:a3:d7:a7: c1:a9:1a:78:6b:47:9e:a9:2d:1c:1b:52:f9:82:e6: 33:75:22:bb:7f:96:6c:7f:57:f8:21:be:bd:45:86: b1:ea:a4:f5:dd:5d:21:54:60:e0:e9:7d:6f:b7:13: f4:7d:2e:91:02:21:0a:54:fe:20:48:46:33:c6:8e: 77:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:ED:17:82:17:48:15:B0:84:7F:3A:C2:1C:CC:70:1F:33:87:E6:B7 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:55:f8:ec:26:2e:22:2a:5e:06:2b:0a:b0:0c:f1:cf:08:8d: 38:b0:83:47:b5:b3:ed:06:1e:e6:85:8f:26:e8:e4:64:de:1c: 92:b8:c6:c1:9b:ff:26:25:ec:c1:6b:1f:46:37:a3:12:61:ce: d8:8a:47:ab:d6:2b:0e:92:36:f2:15:32:2b:03:ec:b8:ae:47: b4:07:98:f1:11:61:c1:f0:72:7a:8f:00:f4:be:7a:75:88:8d: 30:67:9e:92:e1:45:d9:a0:d1:e3:d3:de:0a:2c:b0:be:5e:93: 5b:fd:8f:da:6a:44:0f:63:bc:57:9d:24:de:7b:6b:f8:c4:2d: 45:1b:6e:bf:20:28:33:fd:5a:a7:b7:20:36:f0:b1:71:3d:31: af:35:08:a9:2f:50:af:68:fd:6a:eb:f6:0f:ee:8d:8c:90:70: 6f:16:8a:9c:75:72:2d:96:b1:60:84:dc:e2:ff:74:dc:23:2d: 69:c1:ff:3e:09:49:5b:fa:31:b2:43:01:53:b2:dd:cb:64:82: 51:6f:c4:1c:b7:27:cf:c7:4d:4c:e0:da:e4:7e:b5:77:94:d3: 18:1c:a7:95:0f:77:1e:b2:0d:00:bd:59:c2:f3:82:52:2c:d9: f8:f9:0c:93:4e:7e:99:1b:74:d6:33:5a:8e:af:7a:17:0c:3f: 36:ce:7c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjUxMjA2MTcyMzQ3WhcNMjUxMjEzMTcyMzQ3WjAYMRYwFAYD VQQDEw02OTM0NjZhMy0zNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Pe76pQrqpXZWqllvrtxuT13tda5N3HMrz/bZ5EUcFhC+f0D0J1Rb7Qhbdx7 g9lVb/x3ugHJt1wnLdaCWzPsMcTy1RgBvdm03TM3yZqeY+zUQvib34z/aRqbYWDG sJGqUC56cAaMHqAsiyxfLQiQxeRF60cAL8sCEMZ7VahNrsuOAolww6C363pxcoHc AmJ8Nl1oohAOwnlhoXZeoRuOeHC9LTQV0g5kJ5aTLhqI1AuEB2pZnlMqgKqURnP0 Vs+j16fBqRp4a0eeqS0cG1L5guYzdSK7f5Zsf1f4Ib69RYax6qT13V0hVGDg6X1v txP0fS6RAiEKVP4gSEYzxo53uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjtF4IX SBWwhH86whzMcB8zh+a3MB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQVfjsJi4iKl4GKwqwDPHPCI04sINHtbPtBh7mhY8m6ORk3hySuMbB m/8mJezBax9GN6MSYc7Yiker1isOkjbyFTIrA+y4rke0B5jxEWHB8HJ6jwD0vnp1 iI0wZ56S4UXZoNHj094KLLC+XpNb/Y/aakQPY7xXnSTee2v4xC1FG26/ICgz/Vqn tyA28LFxPTGvNQipL1CvaP1q6/YP7o2MkHBvFoqcdXItlrFghNzi/3TcIy1pwf8+ CUlb+jGyQwFTst3LZIJRb8QctyfPx01M4NrkfrV3lNMYHKeVD3cesg0AvVnC84JS LNn4+QyTTn6ZG3TWM1qOr3oXDD82znx1 -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:31 2025 by rpki-client