This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: PY7zgEyQiekyJSnF0vVzQCIA+oaOXYUmYkkpiFubT2Y= Subject key identifier: FF:7E:1C:05:4A:66:C3:CA:9C:1E:C9:7D:D9:55:3E:A3:F7:DE:A0:9A Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 01A7 Signing time: Tue 23 Dec 2025 02:17:07 +0000 Manifest this update: Tue 23 Dec 2025 02:17:07 +0000 Manifest next update: Tue 30 Dec 2025 02:17:07 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: 2eZOPETky75uQeeEGWWGYctY5V1bSd6pr6rkDGVbaT0=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Dec 23 02:17:07 2025 GMT Not After : Dec 30 02:17:07 2025 GMT Subject: CN=6949fba3-1062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:28:73:04:6a:e7:f4:c7:18:95:1f:5c:63:aa: cb:b5:c2:b8:bd:e5:a2:56:eb:c1:3c:03:35:57:14: 92:29:d0:4b:8c:29:eb:17:90:c2:12:59:fb:63:be: 35:7f:46:b7:c7:a9:f9:0a:63:2a:ea:ec:1c:a8:25: 9c:36:6b:80:d4:83:fc:1a:81:c2:cb:e4:7c:3c:25: 97:c8:d9:4c:51:20:1b:a9:4c:1b:b8:36:8a:74:d5: 2b:4b:33:2b:45:fe:c1:1f:b5:1f:a3:94:06:9b:40: 51:56:46:44:47:a9:0a:74:ab:59:f1:04:2d:1a:15: a0:e8:24:4c:e9:b2:b4:a5:d2:16:ff:b7:95:5d:92: 87:d5:88:29:de:86:a0:2a:a1:46:f9:ed:3b:d5:fc: df:23:4d:e5:71:dd:fc:db:6d:a6:5d:83:93:fe:4b: af:09:92:40:74:97:0e:49:ce:19:ba:c3:d9:4e:da: 12:21:c2:1a:53:be:90:49:4c:dd:b8:e8:df:57:27: b1:55:23:2c:e6:03:1c:4b:8b:28:47:f7:c2:a4:29: 93:1d:bf:fb:73:60:5c:97:ba:d2:72:60:43:a8:98: 83:ac:7c:ce:35:dd:b6:73:44:68:68:2a:12:a7:ef: bd:09:c6:95:9f:c5:88:a9:6c:45:a3:17:aa:f0:92: 35:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7E:1C:05:4A:66:C3:CA:9C:1E:C9:7D:D9:55:3E:A3:F7:DE:A0:9A X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4c:0a:d4:98:d4:29:50:83:02:50:db:95:a7:4e:53:3b:18: 53:4c:de:3e:d3:87:65:1c:b4:f7:9e:ef:3c:d6:d9:02:ad:bd: ad:45:bc:d3:0f:4d:c0:9a:00:7c:4d:01:51:8c:c4:ec:7e:ad: 41:06:72:78:44:85:05:1d:db:c7:d1:1f:30:a9:fb:b1:3d:3e: e8:04:cd:08:c7:a7:dd:16:b3:ff:c9:5a:cf:a4:45:49:6a:14: 30:3a:62:19:27:21:2e:8b:ec:8a:ac:ea:cb:7d:d0:be:a6:8d: c8:dc:79:78:11:3b:a3:de:49:e5:49:49:2c:4a:2b:59:06:84: 6e:a2:a9:0a:e8:bf:fb:ac:88:d6:e8:4d:db:02:ed:77:7a:9b: 0e:1b:d4:7f:d9:70:64:f4:d5:50:24:b3:af:33:7e:db:02:50: ab:5b:c4:02:59:5c:2f:31:71:e2:18:f1:27:e3:b7:9a:48:db: ad:b3:2f:9b:5e:d6:af:e4:7c:e1:e3:5b:a4:99:83:4a:be:16: c2:9d:c4:f1:c0:1d:a9:44:f9:0e:65:3d:8b:cc:0b:a9:b7:c3: d7:58:97:51:cf:91:58:6a:6b:73:d2:ce:43:32:20:e4:58:4f: 24:5b:b3:c0:db:45:b4:b1:86:52:f3:b9:a8:ec:0a:2d:7d:d6: d9:34:9e:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUxMjIzMDIxNzA3WhcNMjUxMjMwMDIxNzA3WjAYMRYwFAYD VQQDDA02OTQ5ZmJhMy0xMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyihzBGrn9McYlR9cY6rLtcK4veWiVuvBPAM1VxSSKdBLjCnrF5DCEln7Y741 f0a3x6n5CmMq6uwcqCWcNmuA1IP8GoHCy+R8PCWXyNlMUSAbqUwbuDaKdNUrSzMr Rf7BH7Ufo5QGm0BRVkZER6kKdKtZ8QQtGhWg6CRM6bK0pdIW/7eVXZKH1Ygp3oag KqFG+e071fzfI03lcd38222mXYOT/kuvCZJAdJcOSc4ZusPZTtoSIcIaU76QSUzd uOjfVyexVSMs5gMcS4soR/fCpCmTHb/7c2Bcl7rScmBDqJiDrHzONd22c0RoaCoS p++9CcaVn8WIqWxFoxeq8JI1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9+HAVK ZsPKnB7JfdlVPqP33qCaMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArTArUmNQpUIMCUNuVp05TOxhTTN4+04dlHLT3nu881tkCrb2tRbzT D03AmgB8TQFRjMTsfq1BBnJ4RIUFHdvH0R8wqfuxPT7oBM0Ix6fdFrP/yVrPpEVJ ahQwOmIZJyEui+yKrOrLfdC+po3I3Hl4ETuj3knlSUksSitZBoRuoqkK6L/7rIjW 6E3bAu13epsOG9R/2XBk9NVQJLOvM37bAlCrW8QCWVwvMXHiGPEn47eaSNutsy+b Xtav5Hzh41ukmYNKvhbCncTxwB2pRPkOZT2LzAupt8PXWJdRz5FYamtz0s5DMiDk WE8kW7PA20W0sYZS87mo7AotfdbZNJ6Y -----END CERTIFICATE-----Generated at Wed Dec 24 14:13:58 2025 by rpki-client