This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: yh3reiX1gXpCdGdF0r9k8J5YAn/L6sBS/ucLRj3hO/g= Subject key identifier: C3:77:C8:6F:8F:53:CC:A5:09:80:2C:0A:C0:9E:74:DF:87:C8:69:84 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1DBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1DB2 Signing time: Thu 04 Dec 2025 15:52:27 +0000 Manifest this update: Thu 04 Dec 2025 15:52:27 +0000 Manifest next update: Thu 11 Dec 2025 15:52:27 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: h4VaCiAOPsPWvWlJDLY+yLe97WF94IymRA9Xgbry3zc=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: djmV6ni7hy6C8m5F1gtlxw3KFQjLB6LT9Z3a9xMILMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7613 (0x1dbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Dec 4 15:52:27 2025 GMT Not After : Dec 11 15:52:27 2025 GMT Subject: CN=6931ae3b-fdab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:55:88:73:00:63:f2:ea:9f:7a:5d:46:02:c2: f3:d0:00:78:99:4b:4b:b9:68:f6:e7:03:38:47:1e: cc:a9:58:30:e3:70:91:63:1c:d6:7a:47:11:25:a3: b6:e8:22:5c:cc:13:2e:e2:d9:08:5f:b3:ea:6e:9f: 42:56:18:9d:88:b4:eb:60:db:a1:fa:c1:28:5d:6f: eb:8a:08:ca:30:56:1b:3e:08:97:8f:ae:47:ea:80: 9a:f1:be:61:da:de:99:0c:ca:81:1b:b2:01:16:c5: 05:be:72:d1:e3:fb:25:10:0b:1d:8e:95:6a:57:0c: ae:25:84:35:e6:40:5d:79:8e:6a:8a:b2:b4:cf:e9: 6d:78:08:ed:a6:dc:66:7c:a0:b1:fe:60:1b:64:f7: 5b:be:84:f0:b9:34:94:08:cf:4a:72:e7:3c:23:6e: ec:fc:00:6c:f2:f5:dd:bd:7c:7a:54:7b:d6:98:53: f1:68:83:32:ca:9b:43:8d:93:42:f9:c2:8c:ee:e5: 07:d9:f2:c8:79:da:78:fd:f2:0d:a4:75:58:c1:56: 1f:29:fd:89:9e:da:46:30:e2:9c:47:f8:b4:b3:a5: b1:ff:55:94:20:4d:1b:4b:06:4c:dc:45:c6:9c:00: 81:ac:82:d1:13:2e:94:e5:81:37:4c:ee:15:55:44: dd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:77:C8:6F:8F:53:CC:A5:09:80:2C:0A:C0:9E:74:DF:87:C8:69:84 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:88:06:76:cc:7e:4e:5d:9b:e0:08:f9:42:60:57:af:7e:47: 39:68:d1:29:df:41:60:e3:f9:fa:30:5c:4a:b6:1e:81:0e:49: a9:a8:e2:50:5d:0c:00:88:a7:65:d1:80:df:b3:d6:c2:7e:28: 2c:2a:bf:f2:88:6b:81:af:55:5f:b5:1b:b1:5d:25:8e:e3:b2: 60:b3:ad:7f:8e:df:42:e0:cc:90:32:dc:c5:e2:76:44:26:ce: f6:47:15:0e:18:78:c3:f9:78:dd:f3:10:0e:f8:96:ec:68:7b: 42:2f:d6:77:91:3d:80:18:15:c5:75:29:3d:52:cc:ce:3a:b0: 18:3d:3a:5f:98:a9:60:f9:4e:40:d6:e9:a6:12:45:63:c2:b1: 8a:58:1a:b7:59:5c:16:5c:c6:2e:11:e5:f4:f9:1c:da:5a:25: 2e:64:b6:54:24:e5:56:eb:ef:e3:8f:3c:2b:e8:35:ad:18:6d: 64:23:08:0e:85:6e:8d:d2:7e:00:0d:0f:7c:d4:38:b0:3a:0f: bd:82:06:f8:54:6a:bd:98:56:d4:aa:94:c2:cb:17:b8:49:7c: 83:3a:22:76:54:3b:ac:58:5e:11:40:7d:4d:90:b5:7b:c8:24: f6:54:43:29:ec:8f:b1:f4:9d:62:f1:60:b4:b4:fe:cf:18:56: 55:46:d2:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjUxMjA0MTU1MjI3WhcNMjUxMjExMTU1MjI3WjAYMRYwFAYD VQQDEw02OTMxYWUzYi1mZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6VWIcwBj8uqfel1GAsLz0AB4mUtLuWj25wM4Rx7MqVgw43CRYxzWekcRJaO2 6CJczBMu4tkIX7Pqbp9CVhidiLTrYNuh+sEoXW/rigjKMFYbPgiXj65H6oCa8b5h 2t6ZDMqBG7IBFsUFvnLR4/slEAsdjpVqVwyuJYQ15kBdeY5qirK0z+lteAjtptxm fKCx/mAbZPdbvoTwuTSUCM9Kcuc8I27s/ABs8vXdvXx6VHvWmFPxaIMyyptDjZNC +cKM7uUH2fLIedp4/fINpHVYwVYfKf2JntpGMOKcR/i0s6Wx/1WUIE0bSwZM3EXG nACBrILREy6U5YE3TO4VVUTdQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMN3yG+P U8ylCYAsCsCedN+HyGmEMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARiAZ2zH5OXZvgCPlCYFevfkc5aNEp30Fg4/n6MFxKth6BDkmpqOJQ XQwAiKdl0YDfs9bCfigsKr/yiGuBr1VftRuxXSWO47Jgs61/jt9C4MyQMtzF4nZE Js72RxUOGHjD+Xjd8xAO+JbsaHtCL9Z3kT2AGBXFdSk9UszOOrAYPTpfmKlg+U5A 1ummEkVjwrGKWBq3WVwWXMYuEeX0+RzaWiUuZLZUJOVW6+/jjzwr6DWtGG1kIwgO hW6N0n4ADQ981DiwOg+9ggb4VGq9mFbUqpTCyxe4SXyDOiJ2VDusWF4RQH1NkLV7 yCT2VEMp7I+x9J1i8WC0tP7PGFZVRtJt -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:47 2025 by rpki-client