This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: FsYNNqTFPhSpQM3Gqs9zMiqdI8mZkJ35RP9/hfYU6NU= Subject key identifier: DF:D2:B2:02:CA:BE:E6:93:F2:16:7D:DD:3D:EA:01:5E:CB:DC:70:49 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 032F Signing time: Fri 19 Dec 2025 00:20:44 +0000 Manifest this update: Fri 19 Dec 2025 00:20:44 +0000 Manifest next update: Fri 26 Dec 2025 00:20:44 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: HI06dV8PUg8pxopyMVpS9gKPKgrO66a9ax0zsmRyQgc=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Dec 19 00:20:44 2025 GMT Not After : Dec 26 00:20:44 2025 GMT Subject: CN=69449a5c-7b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:18:f7:69:8c:39:1f:b0:d2:35:fe:34:f4: 2c:ce:91:61:c9:57:24:d0:f3:87:01:b7:6a:51:ea: b2:59:a7:51:b3:3d:5e:0c:f3:62:25:b5:6f:f0:39: f6:1c:a1:df:2d:6d:14:62:15:7e:b5:ba:52:61:55: a4:87:20:ff:ca:c6:74:3c:24:2b:d5:3d:37:5a:e5: de:69:11:80:58:fd:1a:b1:b0:5c:9d:60:33:f9:0e: 53:8a:f8:ad:7d:a6:18:09:a5:e5:bb:33:77:72:4e: e7:02:cb:2c:4c:42:02:e4:34:b1:ca:21:11:c3:82: 1d:57:88:08:9e:0b:40:bc:b5:52:87:7a:77:c3:04: 99:90:bc:bf:46:c5:fd:e9:16:63:fa:cd:97:ff:56: f2:04:4c:29:8e:4e:4c:43:d2:5d:7a:43:cc:21:0b: bb:1f:04:38:c9:36:34:7b:be:b2:db:76:ce:ea:be: 8a:55:6e:6d:d3:8e:ed:7e:53:82:d0:1f:41:a2:9c: 59:c4:a7:27:13:e4:e5:94:0c:b9:bc:94:ce:f9:e3: c7:94:b2:e2:3b:47:78:ef:64:7c:ff:c5:71:9b:e1: fd:31:a4:05:f9:53:33:24:69:1a:5c:10:65:e3:45: 42:99:a0:8d:2f:c1:da:f8:86:10:97:75:6e:76:b0: bc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D2:B2:02:CA:BE:E6:93:F2:16:7D:DD:3D:EA:01:5E:CB:DC:70:49 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:a6:ba:7d:9f:3b:0c:1b:31:8c:83:70:aa:5a:b2:5f:c1:97: 1d:53:61:85:54:cf:94:db:42:24:a8:b4:da:e9:21:6a:e3:c3: 77:b0:43:6d:26:f1:43:a0:11:5d:9a:35:d6:ec:a1:f8:e6:47: eb:29:35:94:4a:5d:41:79:49:46:dc:e9:25:43:b4:68:b2:21: 10:9a:02:2c:7d:41:65:b6:05:a2:b6:d4:7b:d4:4c:21:12:6f: 90:ed:5b:a7:b3:12:57:87:62:bd:29:04:ad:39:a1:b6:3a:d9: 7c:bd:9b:c4:68:78:97:a9:7d:50:0b:d5:e7:07:88:ab:2d:39: 49:99:ff:78:36:d1:3d:bb:2f:34:db:4f:7d:17:c0:31:ec:7e: 30:5f:86:26:20:f6:41:92:26:f5:d7:d6:60:92:0d:e3:a0:eb: dc:ce:d3:6d:2e:e9:61:c1:c2:cc:e2:a7:44:7a:c8:d7:d1:3d: 85:0d:50:9a:55:12:91:e2:d5:c1:a4:36:04:23:43:73:8d:ed: 66:46:c3:8d:4a:4e:f0:20:88:85:72:78:6f:d0:81:79:38:06: a6:55:71:70:ec:ff:45:be:c8:87:a2:b8:d9:2f:97:80:50:ce: e6:f0:32:7b:46:cf:2a:43:88:51:d4:e2:62:db:d5:2d:d7:af: 2d:bf:22:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMjE5MDAyMDQ0WhcNMjUxMjI2MDAyMDQ0WjAYMRYwFAYD VQQDDA02OTQ0OWE1Yy03YjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/YY92mMOR+w0jX+NPQszpFhyVck0POHAbdqUeqyWadRsz1eDPNiJbVv8Dn2 HKHfLW0UYhV+tbpSYVWkhyD/ysZ0PCQr1T03WuXeaRGAWP0asbBcnWAz+Q5Tivit faYYCaXluzN3ck7nAsssTEIC5DSxyiERw4IdV4gIngtAvLVSh3p3wwSZkLy/RsX9 6RZj+s2X/1byBEwpjk5MQ9JdekPMIQu7HwQ4yTY0e76y23bO6r6KVW5t047tflOC 0B9BopxZxKcnE+TllAy5vJTO+ePHlLLiO0d472R8/8Vxm+H9MaQF+VMzJGkaXBBl 40VCmaCNL8Ha+IYQl3VudrC8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/SsgLK vuaT8hZ93T3qAV7L3HBJMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5prp9nzsMGzGMg3CqWrJfwZcdU2GFVM+U20IkqLTa6SFq48N3sENt JvFDoBFdmjXW7KH45kfrKTWUSl1BeUlG3OklQ7RosiEQmgIsfUFltgWittR71Ewh Em+Q7VunsxJXh2K9KQStOaG2Otl8vZvEaHiXqX1QC9XnB4irLTlJmf94NtE9uy80 2099F8Ax7H4wX4YmIPZBkib119Zgkg3joOvcztNtLulhwcLM4qdEesjX0T2FDVCa VRKR4tXBpDYEI0Nzje1mRsONSk7wIIiFcnhv0IF5OAamVXFw7P9FvsiHorjZL5eA UM7m8DJ7Rs8qQ4hR1OJi29Ut168tvyJe -----END CERTIFICATE-----Generated at Fri Dec 19 19:10:02 2025 by rpki-client