This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json) Hash identifier: V4W44oAeokAsOL+sGX57Jt0bHZ8k48eTYaalT84EaX4= Subject key identifier: 48:6E:AB:CF:29:97:F1:CB:FD:F2:85:65:21:6F:1D:D2:75:BB:EF:48 Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft Manifest number: 0488 Signing time: Mon 22 Dec 2025 23:10:09 +0000 Manifest this update: Mon 22 Dec 2025 23:10:09 +0000 Manifest next update: Mon 29 Dec 2025 23:10:09 +0000 Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: pU4/noX+wSE8mYHXG3hAIYk4XvArMLjC6/hhYqJQQ0Q=) 2: AA9C9BB8C92C11EF86608311C4F9AE02.roa (hash: m0D1A61qLoA//vf/I6KyJ5ofH8LCEJEjAffkeen66nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182047, serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Validity Not Before: Dec 22 23:10:09 2025 GMT Not After : Dec 29 23:10:09 2025 GMT Subject: CN=6949cfd1-7672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a8:b0:3a:3f:80:18:40:09:b6:cc:22:2c:94: 48:01:ae:78:6a:22:b6:8e:46:1d:c4:49:a8:34:79: 1a:f3:53:15:70:09:d4:a7:b0:61:48:65:f9:3f:22: da:5a:1e:d5:d6:80:02:f0:1b:46:f5:dc:71:9a:81: f7:f7:ae:26:4b:30:59:08:93:bf:b6:d3:59:9b:eb: 9b:71:27:76:d0:fe:00:15:58:01:76:e4:84:c8:5b: 5b:58:c9:56:55:80:d4:66:cc:bc:06:4c:50:53:1e: 8e:ee:54:3f:e9:0e:74:c4:77:91:ec:71:cf:1e:12: a8:f5:53:1c:88:d6:26:7b:b8:b1:e9:60:e3:9b:12: 06:17:b1:4e:32:ee:8c:f9:c1:78:17:eb:04:d0:71: 24:61:5e:5a:66:d6:00:76:c2:a1:e8:9a:c8:2e:2d: 4b:ca:df:4a:26:e8:e9:96:cc:a8:8f:29:3e:65:35: 5b:b6:d6:42:bf:b8:61:d4:1c:0d:80:d6:60:97:0d: 55:5c:7d:66:0c:4f:0a:57:7a:2d:23:cd:29:89:88: 56:38:2a:bd:5b:b2:d1:f9:90:48:86:6e:0d:f5:46: 7f:27:da:5e:f6:a1:7d:02:f9:14:21:74:33:e4:62: ac:b9:82:92:23:7c:7f:02:f2:a5:93:cb:d7:47:07: cd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6E:AB:CF:29:97:F1:CB:FD:F2:85:65:21:6F:1D:D2:75:BB:EF:48 X509v3 Authority Key Identifier: keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:3a:5d:7e:cd:45:cd:06:cf:7e:c5:28:57:dd:c0:3f:c2:95: 4c:60:d9:a3:d8:ae:5d:c5:1c:a2:56:f4:93:91:6d:bf:1a:79: b4:3e:e3:f7:3e:ae:81:b1:45:05:80:18:61:1a:77:7f:d8:a7: b2:ae:50:c7:f1:3b:cb:7f:99:50:89:64:ee:5d:f7:c9:4b:cb: 83:b0:de:6c:5e:21:47:64:e5:8d:0b:14:65:b2:15:4c:d0:3a: c7:e3:80:82:81:f4:5b:36:03:2b:76:e4:5e:81:ba:3e:e6:d4: 54:8b:df:77:e1:9c:50:2a:81:17:aa:3b:0a:1b:c4:c2:93:35: bd:f6:50:15:fc:1e:d8:16:10:81:e9:0c:67:b3:56:d5:b5:32: e8:e7:7b:13:f3:17:96:c1:c8:53:7a:00:a4:a7:0b:72:d0:54: d1:d5:d0:3c:58:36:24:a6:41:b7:8c:df:b6:ef:15:de:14:4e: 91:bf:e0:f2:bd:44:e7:7f:3c:b1:ed:1b:54:f3:d2:58:eb:44: 31:71:9c:98:66:f9:c4:10:de:dd:07:ba:fb:71:8f:43:76:6b: 60:76:93:3a:ba:20:f2:47:04:7b:fc:27:c1:19:5a:1c:cf:8e: 79:fd:ac:3f:7f:10:f1:5a:27:3f:85:48:bf:a2:f0:88:d8:09: 04:94:cb:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwNDcxMTAvBgNVBAUTKDY1MDEyQUYwNTcxMDg2QjlFQUIzMDM0NkY2MjRCNjMx MkE1NTFDMzgwHhcNMjUxMjIyMjMxMDA5WhcNMjUxMjI5MjMxMDA5WjAYMRYwFAYD VQQDDA02OTQ5Y2ZkMS03NjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKiwOj+AGEAJtswiLJRIAa54aiK2jkYdxEmoNHka81MVcAnUp7BhSGX5PyLa Wh7V1oAC8BtG9dxxmoH3964mSzBZCJO/ttNZm+ubcSd20P4AFVgBduSEyFtbWMlW VYDUZsy8BkxQUx6O7lQ/6Q50xHeR7HHPHhKo9VMciNYme7ix6WDjmxIGF7FOMu6M +cF4F+sE0HEkYV5aZtYAdsKh6JrILi1Lyt9KJujplsyojyk+ZTVbttZCv7hh1BwN gNZglw1VXH1mDE8KV3otI80piYhWOCq9W7LR+ZBIhm4N9UZ/J9pe9qF9AvkUIXQz 5GKsuYKSI3x/AvKlk8vXRwfNkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhuq88p l/HL/fKFZSFvHdJ1u+9IMB8GA1UdIwQYMBaAFGUBKvBXEIa56rMDRvYktjEqVRw4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjA0Ny8zM0FEQjNFNjZF MDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhybnFzd05HOWlTMk1TcFZI RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRRXE4RmNRaHJucXN3Tkc5aVMyTVNwVkhEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjA0Ny8zM0FEQjNFNjZFMDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhy bnFzd05HOWlTMk1TcFZIRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANOl1+zUXNBs9+xShX3cA/wpVMYNmj2K5dxRyiVvSTkW2/Gnm0PuP3 Pq6BsUUFgBhhGnd/2KeyrlDH8TvLf5lQiWTuXffJS8uDsN5sXiFHZOWNCxRlshVM 0DrH44CCgfRbNgMrduRegbo+5tRUi9934ZxQKoEXqjsKG8TCkzW99lAV/B7YFhCB 6Qxns1bVtTLo53sT8xeWwchTegCkpwty0FTR1dA8WDYkpkG3jN+27xXeFE6Rv+Dy vUTnfzyx7RtU89JY60QxcZyYZvnEEN7dB7r7cY9DdmtgdpM6uiDyRwR7/CfBGVoc z455/aw/fxDxWic/hUi/ovCI2AkElMvt -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:38 2025 by rpki-client