This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: H14HEHt/c0ZUjd1ui6IcqCAQcBu0CgjuWB8ahcwk4CE= Subject key identifier: 35:13:E0:F7:05:90:C9:8E:EB:EE:89:07:02:98:BB:5D:47:60:63:63 Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0C28 Signing time: Mon 22 Dec 2025 18:16:52 +0000 Manifest this update: Mon 22 Dec 2025 18:16:52 +0000 Manifest next update: Mon 29 Dec 2025 18:16:52 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: Wd5XaacEQ6owNqZdw5DZSEDjVKHz9XMT2j9e3hFLtFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Dec 22 18:16:52 2025 GMT Not After : Dec 29 18:16:52 2025 GMT Subject: CN=69498b14-5ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8e:94:08:5f:87:b3:4a:50:ba:df:5c:cc:73: a5:67:f1:e7:17:99:a3:a6:0c:f7:9e:6b:53:0b:3b: ea:dc:b0:90:f9:09:2d:c8:6d:0e:be:93:9c:46:9f: 4a:76:f9:07:d5:48:61:1e:31:48:b5:fd:9e:33:92: 0f:4a:bb:47:2e:ac:62:fd:d0:72:e3:df:77:e5:2b: 57:ac:b5:de:68:35:6a:42:13:e9:1e:52:02:6d:cb: 29:64:b0:d2:f8:0e:47:0c:6a:86:cd:99:4c:6e:af: 2b:96:2e:1b:ef:18:1a:71:b1:e8:d0:2c:a4:e6:2c: 3d:cc:fb:1d:26:8f:a2:95:d8:69:3d:79:78:f5:a3: 8e:67:4a:a2:d1:c4:4d:9e:1f:0c:91:54:04:13:1e: 8e:7b:8e:53:0b:ae:3a:80:1d:68:c4:cb:c1:2b:d6: 62:7a:f9:7e:44:cf:9f:7a:f0:d4:37:cc:81:0e:8f: a6:8c:fe:1f:4b:6f:07:0b:36:b0:cd:d7:08:52:60: f5:b8:83:4f:35:f1:84:93:01:1a:81:e9:6a:a5:da: 4a:8b:0d:7f:14:98:2b:ad:a2:9d:61:e8:66:c0:9d: 8b:6c:1d:7e:8f:87:04:42:0d:e9:8f:69:ef:a3:1b: 04:59:b2:99:a1:ee:29:41:d0:7b:e6:84:9b:03:a9: b5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:13:E0:F7:05:90:C9:8E:EB:EE:89:07:02:98:BB:5D:47:60:63:63 X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:56:85:69:aa:81:46:4a:54:bd:ee:00:3b:1a:e4:b4:f8:48: 36:55:b7:4c:76:e7:1d:b7:63:54:f8:22:7a:98:e4:8d:af:8c: a0:57:4c:e6:27:97:50:fd:48:1b:d1:bf:a0:82:e8:d5:a0:02: e7:da:41:d1:9d:d7:47:69:96:08:04:84:f5:e0:63:82:c6:52: 02:a1:26:1d:f7:ed:bf:c6:0a:60:4d:a5:8b:01:05:5e:81:5f: 17:64:7b:ff:fc:9c:40:89:b5:93:34:06:c2:f1:5b:c8:c9:24: 12:dd:4d:d7:e9:5c:22:89:c8:ed:cd:b7:ca:cf:a7:89:09:84: c0:ae:7a:76:6f:be:5a:11:6b:cb:79:b6:bf:05:79:d6:93:cc: 55:4a:1a:42:39:19:73:07:62:77:b4:64:ec:ba:0c:03:0c:f4: 7c:89:b8:e6:88:28:d2:3f:9f:3d:6a:0f:a5:4d:46:06:3e:db: 24:63:e6:d4:13:29:bf:77:7b:6a:5f:0d:8e:c8:a0:84:2b:f9: 89:0f:f9:b2:b4:ef:e7:46:70:7e:16:dd:dc:53:39:97:25:2f: c8:ac:2c:07:f3:4d:20:c0:ee:4a:c8:e2:15:9d:e4:a2:38:0c: bf:4a:70:7a:d6:07:ff:84:bf:b5:6c:40:9c:4e:af:f1:c1:f1: 08:ef:cc:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUxMjIyMTgxNjUyWhcNMjUxMjI5MTgxNjUyWjAYMRYwFAYD VQQDDA02OTQ5OGIxNC01YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1o6UCF+Hs0pQut9czHOlZ/HnF5mjpgz3nmtTCzvq3LCQ+QktyG0OvpOcRp9K dvkH1UhhHjFItf2eM5IPSrtHLqxi/dBy49935StXrLXeaDVqQhPpHlICbcspZLDS +A5HDGqGzZlMbq8rli4b7xgacbHo0Cyk5iw9zPsdJo+ildhpPXl49aOOZ0qi0cRN nh8MkVQEEx6Oe45TC646gB1oxMvBK9Zievl+RM+fevDUN8yBDo+mjP4fS28HCzaw zdcIUmD1uINPNfGEkwEagelqpdpKiw1/FJgrraKdYehmwJ2LbB1+j4cEQg3pj2nv oxsEWbKZoe4pQdB75oSbA6m1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUT4PcF kMmO6+6JBwKYu11HYGNjMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvVoVpqoFGSlS97gA7GuS0+Eg2VbdMducdt2NU+CJ6mOSNr4ygV0zm J5dQ/Ugb0b+ggujVoALn2kHRnddHaZYIBIT14GOCxlICoSYd9+2/xgpgTaWLAQVe gV8XZHv//JxAibWTNAbC8VvIySQS3U3X6VwiicjtzbfKz6eJCYTArnp2b75aEWvL eba/BXnWk8xVShpCORlzB2J3tGTsugwDDPR8ibjmiCjSP589ag+lTUYGPtskY+bU Eym/d3tqXw2OyKCEK/mJD/mytO/nRnB+Ft3cUzmXJS/IrCwH800gwO5KyOIVneSi OAy/SnB61gf/hL+1bECcTq/xwfEI78yd -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:47 2025 by rpki-client