This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: pJxxno/1c4OlfObbfsTtFo/UwnuC/SygfExZcX3rfQs= Subject key identifier: 14:73:00:DC:6B:93:2C:51:D1:52:22:7B:35:BC:9F:28:4E:3C:E0:00 Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 0489 Signing time: Thu 04 Dec 2025 22:49:31 +0000 Manifest this update: Thu 04 Dec 2025 22:49:30 +0000 Manifest next update: Thu 11 Dec 2025 22:49:30 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: +/Iqe+GeBhamsF9evx24BPom29xk3125rEmEhjx+8C0=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Dec 4 22:49:30 2025 GMT Not After : Dec 11 22:49:30 2025 GMT Subject: CN=69320ffa-af90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8f:53:48:7f:9c:03:c5:cd:aa:6d:2d:a8:ab: 03:d8:3b:7c:25:51:c1:f0:41:91:ee:55:56:58:dd: 48:4e:1a:9a:76:dd:b4:1b:28:bf:3b:dd:66:a0:e6: 68:cf:b5:82:6b:7f:0c:92:0c:06:31:8c:3e:fd:2c: e3:c7:5f:d9:66:96:aa:5e:40:23:41:b8:4a:b8:b0: ac:4a:a1:18:6a:4f:25:22:f9:36:3a:e3:9c:f6:54: 8e:00:4c:d7:b8:06:66:b5:ba:31:a9:66:47:4e:27: 34:e5:cb:ae:44:d5:74:a9:22:3c:c5:f7:5f:40:18: 0b:b3:6f:b5:8e:23:4a:16:e9:c9:aa:f9:bf:59:a2: b6:b0:66:b2:69:b6:c6:96:f5:6b:65:a6:59:99:99: 64:7e:78:99:d4:bf:c0:e0:9c:95:bd:a8:b6:46:be: 64:d8:48:82:4d:00:91:c1:82:40:45:be:01:30:8a: 0b:c7:b8:b9:b2:b4:3d:1e:34:88:11:97:ec:b1:30: 28:e1:d4:30:89:c6:bc:99:eb:18:20:9d:ca:2a:e1: cc:7a:a0:e3:d9:05:a2:ee:4e:3d:d7:ed:74:c5:de: f5:b2:aa:7e:e0:f5:7b:63:f9:d7:85:d9:2e:a1:08: 40:91:ff:ae:24:70:b9:84:cd:ed:82:9f:9e:aa:59: eb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:73:00:DC:6B:93:2C:51:D1:52:22:7B:35:BC:9F:28:4E:3C:E0:00 X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:63:6e:26:aa:dc:35:f2:ac:4b:98:ec:99:61:00:6a:6f:a5: 84:74:53:e8:76:6d:65:f4:cb:28:b6:15:21:7e:b2:65:96:51: 15:f2:79:f8:a9:92:84:c6:01:f1:55:fb:88:53:53:cf:20:de: ff:3c:47:0d:99:c8:d3:70:a6:a6:1b:06:9f:42:a3:53:f6:d5: b3:c3:29:0b:2d:48:e4:f7:40:87:6e:9f:67:3d:e5:1a:a8:58: 77:f6:a8:66:62:46:9c:54:46:46:cc:32:36:b7:03:c2:24:a3: ca:06:57:92:62:f0:a6:f5:17:06:f3:61:fa:50:6a:26:a9:23: fb:ca:5d:96:a2:4f:35:4a:92:58:e8:e6:cb:62:9c:bc:99:bb: e8:08:ec:b5:c0:d0:84:21:ec:b9:09:e0:59:2f:85:78:3c:f3: 5f:3a:bc:ad:c6:ce:c5:5b:34:7c:7e:16:e7:85:39:fd:8e:02: 05:6f:8c:f9:e2:33:38:2b:bf:f1:75:24:52:5c:5f:e1:3c:d8: a1:c9:d8:98:93:b0:69:a8:78:c2:1f:eb:7b:91:41:7e:c5:d2: 71:09:d2:ee:b3:84:8e:4a:a5:33:da:67:40:33:55:c2:c0:95: 22:1a:74:98:d4:01:5b:93:25:8e:24:80:36:59:01:91:47:35: 00:59:7c:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUE5RjExMC8GA1UEBRMoQ0ZCMDdBRTVERDAwQTkyNzE0REIzNUE3MjEwNDVEOUQy RUI4RTMxNzAeFw0yNTEyMDQyMjQ5MzBaFw0yNTEyMTEyMjQ5MzBaMBgxFjAUBgNV BAMTDTY5MzIwZmZhLWFmOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWj1NIf5wDxc2qbS2oqwPYO3wlUcHwQZHuVVZY3UhOGpp23bQbKL873Wag5mjP tYJrfwySDAYxjD79LOPHX9lmlqpeQCNBuEq4sKxKoRhqTyUi+TY645z2VI4ATNe4 Bma1ujGpZkdOJzTly65E1XSpIjzF919AGAuzb7WOI0oW6cmq+b9ZorawZrJptsaW 9WtlplmZmWR+eJnUv8DgnJW9qLZGvmTYSIJNAJHBgkBFvgEwigvHuLmytD0eNIgR l+yxMCjh1DCJxryZ6xggncoq4cx6oOPZBaLuTj3X7XTF3vWyqn7g9Xtj+deF2S6h CECR/64kcLmEze2Cn56qWespAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFHMA3GuT LFHRUiJ7NbyfKE484AAwHwYDVR0jBBgwFoAUz7B65d0AqScU2zWnIQRdnS644xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QTlGLzgwNTZCQTU2OEE5 MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejdCNjVkMEFxU2NVMnpXbklRUmRuUzY0NHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QTlGLzgwNTZCQTU2OEE5MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNj VTJ6V25JUVJkblM2NDR4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGNjbiaq3DXyrEuY7JlhAGpvpYR0U+h2bWX0yyi2FSF+smWWURXyefip koTGAfFV+4hTU88g3v88Rw2ZyNNwpqYbBp9Co1P21bPDKQstSOT3QIdun2c95Rqo WHf2qGZiRpxURkbMMja3A8Iko8oGV5Ji8Kb1FwbzYfpQaiapI/vKXZaiTzVKkljo 5stinLyZu+gI7LXA0IQh7LkJ4FkvhXg88186vK3GzsVbNHx+FueFOf2OAgVvjPni Mzgrv/F1JFJcX+E82KHJ2JiTsGmoeMIf63uRQX7F0nEJ0u6zhI5KpTPaZ0AzVcLA lSIadJjUAVuTJY4kgDZZAZFHNQBZfOw= -----END CERTIFICATE-----Generated at Sun Dec 7 00:03:40 2025 by rpki-client