This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft File: Z7qlic6898PyfVPZjqxMEEzAkTU.mft (raw, json) Hash identifier: 6VV4UsQrzOsONAsNL0929aQSJqEWeX3naK6+OQ17p78= Subject key identifier: 56:CD:B7:E5:E2:99:35:FA:27:42:F7:F5:7D:02:98:42:4A:ED:FB:93 Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft Manifest number: 0CAB Signing time: Thu 18 Dec 2025 18:02:43 +0000 Manifest this update: Thu 18 Dec 2025 18:02:43 +0000 Manifest next update: Thu 25 Dec 2025 18:02:43 +0000 Files and hashes: 1: Z7qlic6898PyfVPZjqxMEEzAkTU.crl (hash: asLo+YBGteX2kQbIc9qkWPJpk/ZhZdecDdxEP2uEoms=) 2: 94EA7370050111EA9BDD372BC4F9AE02.roa (hash: QfGMdR7Uov5mHwO7nve3pQizSQl2DkOhX5cYoqv4O50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29, serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Dec 18 18:02:43 2025 GMT Not After : Dec 25 18:02:43 2025 GMT Subject: CN=694441c3-4616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:1a:0d:cc:d3:8d:52:a5:a5:3c:b3:fe:f8: 12:3c:50:a8:28:d6:92:e1:a2:6b:dc:fe:83:0d:7b: 25:7d:8f:66:33:95:03:6c:73:81:65:cf:f3:0e:c8: ab:7d:9f:98:12:9d:c3:ee:d7:5a:ab:49:4e:70:cf: d8:dc:72:68:d2:66:4c:18:4e:ac:cc:d9:7c:25:05: d7:2e:7f:f4:16:f7:f2:b4:a0:73:09:d5:ab:77:32: 83:3b:33:9f:79:df:fe:d8:7a:01:f2:dd:f5:fe:ca: d7:65:d0:b4:ba:1c:9b:5e:41:6b:21:70:5a:49:b5: eb:16:cd:03:2d:82:7c:56:a4:57:66:98:64:12:a1: 4d:5a:1e:a3:96:88:47:c3:7b:c6:da:f3:9b:c1:b9: 82:6e:80:76:ca:e0:6d:b6:de:86:5e:b2:b3:38:3b: f4:4c:19:d7:29:69:2a:0a:b1:c7:ff:58:31:a0:de: 93:e9:e7:b4:79:cb:9a:2b:67:cb:3d:22:35:76:43: e3:9f:84:fb:83:c6:c5:04:9e:6b:cd:3a:37:b1:54: ec:bc:fc:35:56:81:3a:f6:2b:ea:6c:dc:50:3c:d4: 9a:99:5d:cf:b7:ab:70:3f:83:03:1a:69:e1:54:c3: f5:fe:0b:b8:0f:67:ff:d9:5a:4d:cc:3e:2e:e1:18: 90:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CD:B7:E5:E2:99:35:FA:27:42:F7:F5:7D:02:98:42:4A:ED:FB:93 X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c0:55:02:8f:81:f5:53:99:e1:0f:84:88:6c:8c:3b:d3:6c: e6:e7:13:4b:29:c0:22:df:07:41:6b:47:9a:6f:84:6c:ff:78: 4c:75:0b:f3:68:a6:91:54:c4:ea:8a:25:ea:0d:55:b5:88:48: 0b:64:a6:89:d9:ed:29:be:64:f6:c0:34:99:88:a9:f0:4b:08: 64:d3:57:5a:ca:1b:c1:d9:c7:22:9d:24:d9:f9:73:fa:cb:4e: 36:84:ab:1e:12:24:6d:d9:c8:dd:8d:4d:89:52:f0:1c:2d:b2: 9b:b6:15:a1:e8:a5:38:26:cf:0e:bf:31:be:82:80:39:4a:b3: fc:5f:41:93:49:1c:db:9c:45:bb:73:0d:43:17:fd:ef:12:28: 1b:b3:15:f7:7f:48:1e:a5:ba:dc:a2:33:b8:e7:63:7c:74:0b: 7b:5f:ca:c3:e9:4e:b0:54:c3:bf:22:61:93:48:97:04:94:de: 6b:3a:ea:3c:5d:6c:05:b0:5e:2d:c0:7f:fb:89:2d:5d:aa:72: 3c:16:18:65:2c:c6:04:dc:90:a1:b4:8f:99:58:25:e9:f9:09: 0a:0e:00:96:62:83:60:e7:8c:49:f8:94:a6:15:89:99:b0:ee: 7b:0b:31:f1:8c:be:47:82:84:cc:c5:58:9a:02:f1:49:80:fa: ce:93:3f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjUxMjE4MTgwMjQzWhcNMjUxMjI1MTgwMjQzWjAYMRYwFAYD VQQDDA02OTQ0NDFjMy00NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMEaDczTjVKlpTyz/vgSPFCoKNaS4aJr3P6DDXslfY9mM5UDbHOBZc/zDsir fZ+YEp3D7tdaq0lOcM/Y3HJo0mZMGE6szNl8JQXXLn/0FvfytKBzCdWrdzKDOzOf ed/+2HoB8t31/srXZdC0uhybXkFrIXBaSbXrFs0DLYJ8VqRXZphkEqFNWh6jlohH w3vG2vObwbmCboB2yuBttt6GXrKzODv0TBnXKWkqCrHH/1gxoN6T6ee0ecuaK2fL PSI1dkPjn4T7g8bFBJ5rzTo3sVTsvPw1VoE69ivqbNxQPNSamV3Pt6twP4MDGmnh VMP1/gu4D2f/2VpNzD4u4RiQawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbNt+Xi mTX6J0L39X0CmEJK7fuTMB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkUyOS9BRDMzNDAxQzA0RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4 UHlmVlBaanF4TUVFekFrVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAwFUCj4H1U5nhD4SIbIw702zm5xNLKcAi3wdBa0eab4Rs/3hMdQvz aKaRVMTqiiXqDVW1iEgLZKaJ2e0pvmT2wDSZiKnwSwhk01dayhvB2ccinSTZ+XP6 y042hKseEiRt2cjdjU2JUvAcLbKbthWh6KU4Js8OvzG+goA5SrP8X0GTSRzbnEW7 cw1DF/3vEigbsxX3f0gepbrcojO452N8dAt7X8rD6U6wVMO/ImGTSJcElN5rOuo8 XWwFsF4twH/7iS1dqnI8FhhlLMYE3JChtI+ZWCXp+QkKDgCWYoNg54xJ+JSmFYmZ sO57CzHxjL5HgoTMxViaAvFJgPrOkz8z -----END CERTIFICATE-----Generated at Sat Dec 20 05:15:19 2025 by rpki-client