This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft File: _fz0IvXEZi3h5GQ6JxwEax4hxK0.mft (raw, json) Hash identifier: MGqB0sxpeg2sicw7Y36bXWbTM98PJLTirsqQDHX1nyQ= Subject key identifier: DB:72:32:D1:83:90:C9:FC:54:EB:0A:E9:1E:9C:A0:82:09:0C:92:78 Authority key identifier: FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD Certificate issuer: /CN=A9125A95/serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft Manifest number: 0494 Signing time: Thu 18 Dec 2025 23:24:25 +0000 Manifest this update: Thu 18 Dec 2025 23:24:25 +0000 Manifest next update: Thu 25 Dec 2025 23:24:25 +0000 Files and hashes: 1: _fz0IvXEZi3h5GQ6JxwEax4hxK0.crl (hash: b2uyrLrY+KzRGA/4h1ABvybXYxcSj+MOlXRHZded89o=) 2: AF506F14630811EC97879243C4F9AE02.roa (hash: 2rxDZmn8FcPG24Wlb4Jg090ASKMT6CB+r3+3kvhWtoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125A95, serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Validity Not Before: Dec 18 23:24:25 2025 GMT Not After : Dec 25 23:24:25 2025 GMT Subject: CN=69448d29-3911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b4:79:d9:57:df:63:6b:5e:47:4a:2b:28:ee: 5e:cd:17:f4:75:ed:d4:60:7a:d9:cb:9a:4d:b1:7d: f0:7f:ae:07:b1:c7:1b:73:23:b9:5a:92:3a:0d:b8: e3:86:ac:4d:c0:27:02:1f:99:5e:0e:d2:9a:3f:6b: 07:5d:5d:f2:5d:f7:27:8a:18:5a:28:1f:d0:a3:e0: b0:0b:7c:a2:b0:1b:02:48:96:f5:ed:cb:b6:05:17: 32:6f:e9:7b:90:a4:dc:37:e7:47:37:70:92:8d:59: db:44:6e:66:f6:90:0b:85:8c:68:0e:14:0d:c1:a9: 0a:3b:7f:08:22:31:80:d3:42:30:7b:81:24:28:50: 21:87:a0:1c:9a:36:48:90:20:b4:47:84:56:9f:9d: 31:5a:60:45:bf:01:82:8c:9e:cd:12:6f:56:1c:d0: 71:b0:59:f3:3e:c3:9c:f3:26:a3:24:be:b5:66:61: db:db:27:92:62:e7:e4:a1:b7:d8:29:a1:ba:4f:21: 81:78:99:e2:7b:c8:d8:77:68:31:01:e7:28:28:5b: 86:df:e3:a4:e6:15:18:89:4f:17:e4:78:cb:c6:d3: a6:f3:09:d2:44:6a:4f:f0:ef:49:09:e3:25:27:2a: bb:99:67:4a:d9:8e:d7:18:ca:3e:6e:26:67:27:c8: f2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:72:32:D1:83:90:C9:FC:54:EB:0A:E9:1E:9C:A0:82:09:0C:92:78 X509v3 Authority Key Identifier: keyid:FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:1b:20:e1:24:1f:47:87:eb:a7:ca:e2:30:7d:46:36:e9:ec: e9:8a:8e:7c:59:f2:c1:f4:92:8a:b5:52:c1:79:de:e5:cf:f6: 98:1e:66:86:b2:22:7a:86:2c:01:f4:06:28:cb:a1:88:c2:fd: 64:b6:62:56:9b:40:df:17:3c:f7:33:c3:d9:14:14:24:9d:38: 10:84:46:c9:4e:ff:9a:ef:45:49:40:a5:bf:99:41:cd:a6:12: c0:8f:ca:90:08:64:b7:2e:21:9b:b0:56:08:45:0b:34:22:88: 39:ac:bf:b6:2e:90:cb:a1:18:00:eb:d7:58:b7:17:be:7e:74: 75:d4:a3:70:4d:0b:bd:fb:e7:6f:7e:3a:f1:30:b9:e2:7d:0a: 7f:7d:56:d6:3c:73:df:c2:a2:6e:2a:6e:3e:26:df:e3:e0:72: 39:85:a2:2c:1d:4c:70:86:cc:03:7d:9d:58:71:c4:ba:26:27: ee:f8:43:52:78:25:fa:0f:a1:7f:13:0c:de:4b:fa:d4:a1:ea: c0:1f:b5:f9:97:f9:11:a0:58:ca:01:fd:9a:b0:81:a2:c8:23: ab:32:cb:08:19:9e:63:20:55:c3:30:3b:c5:9f:32:1f:59:1a: 43:06:3a:20:e4:ed:fc:23:b2:27:c9:32:be:b4:22:6e:de:81: 17:6a:13:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBOTUxMTAvBgNVBAUTKEZERkNGNDIyRjVDNDY2MkRFMUU0NjQzQTI3MUMwNDZC MUUyMUM0QUQwHhcNMjUxMjE4MjMyNDI1WhcNMjUxMjI1MjMyNDI1WjAYMRYwFAYD VQQDDA02OTQ0OGQyOS0zOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bR52VffY2teR0orKO5ezRf0de3UYHrZy5pNsX3wf64HsccbcyO5WpI6Dbjj hqxNwCcCH5leDtKaP2sHXV3yXfcnihhaKB/Qo+CwC3yisBsCSJb17cu2BRcyb+l7 kKTcN+dHN3CSjVnbRG5m9pALhYxoDhQNwakKO38IIjGA00Iwe4EkKFAhh6AcmjZI kCC0R4RWn50xWmBFvwGCjJ7NEm9WHNBxsFnzPsOc8yajJL61ZmHb2yeSYufkobfY KaG6TyGBeJnie8jYd2gxAecoKFuG3+Ok5hUYiU8X5HjLxtOm8wnSRGpP8O9JCeMl Jyq7mWdK2Y7XGMo+biZnJ8jygQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtyMtGD kMn8VOsK6R6coIIJDJJ4MB8GA1UdIwQYMBaAFP389CL1xGYt4eRkOiccBGseIcSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUE5NS9BQTYwQzhFQzYx NzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVppM2g1R1E2Snh3RWF4NGh4 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19mejBJdlhFWmkzaDVHUTZKeHdFYXg0aHhLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUE5NS9BQTYwQzhFQzYxNzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVpp M2g1R1E2Snh3RWF4NGh4SzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+GyDhJB9Hh+unyuIwfUY26ezpio58WfLB9JKKtVLBed7lz/aYHmaG siJ6hiwB9AYoy6GIwv1ktmJWm0DfFzz3M8PZFBQknTgQhEbJTv+a70VJQKW/mUHN phLAj8qQCGS3LiGbsFYIRQs0Iog5rL+2LpDLoRgA69dYtxe+fnR11KNwTQu9++dv fjrxMLnifQp/fVbWPHPfwqJuKm4+Jt/j4HI5haIsHUxwhswDfZ1YccS6Jifu+ENS eCX6D6F/EwzeS/rUoerAH7X5l/kRoFjKAf2asIGiyCOrMssIGZ5jIFXDMDvFnzIf WRpDBjog5O38I7InyTK+tCJu3oEXahNU -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:46 2025 by rpki-client