This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: 1PtMB/xErHM5tIDt1YYPJ+jeak+lmYjT8d4TFosTIPc= Subject key identifier: 01:50:1B:3F:38:A2:F6:09:EB:39:5D:0A:2D:0D:E1:83:42:AF:88:E7 Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 0374 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 0369 Signing time: Mon 22 Dec 2025 23:58:09 +0000 Manifest this update: Mon 22 Dec 2025 23:58:09 +0000 Manifest next update: Mon 29 Dec 2025 23:58:09 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: c1pTGcxBOGv/iRKFTC2ayChsMRhK+BgvLBbkzbnrCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249, serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: Dec 22 23:58:09 2025 GMT Not After : Dec 29 23:58:09 2025 GMT Subject: CN=6949db11-9227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:31:24:44:84:16:c3:19:1c:2f:b1:86:2d:55: e8:c1:01:dc:95:4f:68:ee:f8:2e:87:8e:46:b3:41: 1c:8e:fe:db:f3:3c:ea:f8:56:8f:04:b9:3e:5d:08: db:77:79:3f:6a:ed:ef:c0:72:c4:df:e0:c9:d3:ec: 14:b1:2c:db:e8:74:f2:57:92:14:1b:21:fb:14:f0: 92:e3:a2:30:c7:9a:8b:37:d7:dc:10:70:ee:32:a3: 19:08:75:03:04:8d:90:0a:c3:18:7a:48:7a:75:f1: f7:e2:97:e7:35:9d:52:42:ff:8d:5a:7b:b5:b4:73: ed:50:aa:67:f2:82:ae:cd:44:d6:ab:6e:d3:aa:82: bc:52:27:d0:45:14:b3:5b:0f:12:eb:d4:9b:2a:9c: 82:ba:aa:6d:a2:5b:f3:ac:cd:31:ba:44:75:15:e9: fb:94:24:ab:3e:3c:0e:d6:12:16:85:66:0e:45:3d: 6f:d1:81:bc:0e:83:f9:2f:5e:d4:38:fe:7c:35:41: 7c:e7:1d:8b:3c:fb:ae:db:b1:37:4f:85:aa:f6:c7: 96:55:0d:5a:fd:68:89:de:6d:0d:f0:db:bf:cd:e1: 16:8a:bf:2e:09:62:78:80:75:2a:d7:a7:6b:7b:37: b2:97:61:0f:a9:06:93:c8:67:6a:8c:29:72:0f:8f: aa:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:50:1B:3F:38:A2:F6:09:EB:39:5D:0A:2D:0D:E1:83:42:AF:88:E7 X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:4c:f0:2b:36:29:69:41:cd:fd:ae:76:8a:0e:88:31:34:37: 4c:33:04:1f:9c:37:9c:40:0b:f9:c7:62:dc:d8:ef:de:3a:33: 33:81:d5:a9:b3:c4:60:7f:80:4f:79:ab:2f:53:59:90:39:10: aa:e6:bc:0c:cf:75:eb:f1:01:61:41:fe:39:b6:9f:28:7b:d3: c8:b1:4e:4c:d4:b4:a4:b4:07:12:f9:b2:e7:39:43:06:64:d7: f2:c0:37:d4:70:8b:d2:04:ef:e0:71:26:88:d5:85:ea:4b:22: 8c:10:06:0d:eb:db:6b:9b:4d:38:60:79:9b:50:71:92:5b:62: 1e:d9:fd:1b:65:d0:46:6a:03:3e:17:ba:04:0e:bd:82:27:49: ec:1c:ea:ae:7f:d0:0f:97:b4:d4:30:96:70:24:f6:bb:d8:3b: 0a:a4:c6:48:4d:5f:bf:c5:ee:1d:5d:6b:c6:6a:81:5a:eb:15: dc:60:9e:c4:f6:58:61:bc:21:a5:e7:82:db:ef:f6:7f:f5:01: 13:13:bb:55:3d:db:48:82:b3:a4:e5:96:7a:87:fb:36:3f:fe: 57:cb:08:99:bf:15:d8:8f:d6:b2:b7:e8:9c:ba:b1:f6:7e:a0: ad:0e:2c:02:83:41:ee:7f:e9:d8:4f:23:20:3d:41:ce:0f:b4: ef:8b:73:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjUxMjIyMjM1ODA5WhcNMjUxMjI5MjM1ODA5WjAYMRYwFAYD VQQDDA02OTQ5ZGIxMS05MjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjEkRIQWwxkcL7GGLVXowQHclU9o7vguh45Gs0Ecjv7b8zzq+FaPBLk+XQjb d3k/au3vwHLE3+DJ0+wUsSzb6HTyV5IUGyH7FPCS46Iwx5qLN9fcEHDuMqMZCHUD BI2QCsMYekh6dfH34pfnNZ1SQv+NWnu1tHPtUKpn8oKuzUTWq27TqoK8UifQRRSz Ww8S69SbKpyCuqptolvzrM0xukR1Fen7lCSrPjwO1hIWhWYORT1v0YG8DoP5L17U OP58NUF85x2LPPuu27E3T4Wq9seWVQ1a/WiJ3m0N8Nu/zeEWir8uCWJ4gHUq16dr ezeyl2EPqQaTyGdqjClyD4+qgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFQGz84 ovYJ6zldCi0N4YNCr4jnMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyTPArNilpQc39rnaKDogxNDdMMwQfnDecQAv5x2Lc2O/eOjMzgdWp s8Rgf4BPeasvU1mQORCq5rwMz3Xr8QFhQf45tp8oe9PIsU5M1LSktAcS+bLnOUMG ZNfywDfUcIvSBO/gcSaI1YXqSyKMEAYN69trm004YHmbUHGSW2Ie2f0bZdBGagM+ F7oEDr2CJ0nsHOquf9APl7TUMJZwJPa72DsKpMZITV+/xe4dXWvGaoFa6xXcYJ7E 9lhhvCGl54Lb7/Z/9QETE7tVPdtIgrOk5ZZ6h/s2P/5XywiZvxXYj9ayt+icurH2 fqCtDiwCg0Huf+nYTyMgPUHOD7Tvi3OX -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:29 2025 by rpki-client