This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: jbAwe3zL6MVcEbpzYZ+6mTJ+kz/0d9S7bf+rpi2CXug= Subject key identifier: A3:F0:64:4F:45:2D:D7:D4:37:7A:A7:AB:1D:FC:7C:D4:D1:87:DC:6C Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 034A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0332 Signing time: Thu 25 Dec 2025 00:11:41 +0000 Manifest this update: Thu 25 Dec 2025 00:11:40 +0000 Manifest next update: Thu 01 Jan 2026 00:11:40 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: aCayAUHbUrbVe7/TY22hV8cHuVDtBoxjhHAK8opegsE=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 00:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Dec 25 00:11:40 2025 GMT Not After : Jan 1 00:11:40 2026 GMT Subject: CN=694c813c-72e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:0c:f2:e9:51:c0:f1:e8:66:c8:3b:ce:4b: 0a:99:f7:f7:26:65:65:42:3e:41:e3:98:9c:49:73: b7:00:ee:90:b4:83:2d:9a:e2:de:00:89:bc:16:c0: 5d:90:e7:13:c8:7e:6c:13:d4:af:0c:2a:18:ef:fa: 4d:e4:a6:b4:b4:8f:fa:91:b5:62:a9:d2:86:bb:18: 8d:95:d8:e7:3b:f4:58:78:f1:5c:c5:a5:e1:3f:6a: 60:27:fc:9b:0c:b8:eb:98:27:21:2d:da:59:3c:c5: 30:da:0b:7a:cb:01:e9:9d:21:07:ab:ae:06:9f:8b: da:69:f4:26:f2:90:7e:a8:8f:85:25:c7:ca:f7:54: 6e:7d:1e:37:d5:a0:52:e9:eb:44:5a:b9:fe:db:42: 4e:d4:9c:26:20:84:0e:2f:df:63:c6:91:63:83:ea: 8d:93:92:7a:14:57:fa:77:ff:95:8f:f8:1d:cc:fa: b4:55:c2:c5:6c:34:6c:27:9c:1b:48:ce:7b:e4:85: a6:22:1f:84:4c:13:ba:33:68:54:11:ac:e7:b9:dd: f6:eb:b0:92:e1:23:f9:39:22:8a:23:05:e1:d8:a6: 25:88:7d:e5:77:c1:36:7b:2a:7d:73:36:27:c4:f4: 76:e4:ad:cc:08:0a:f0:a6:32:c6:81:c0:ef:6f:69: ec:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F0:64:4F:45:2D:D7:D4:37:7A:A7:AB:1D:FC:7C:D4:D1:87:DC:6C X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:fb:c3:e3:08:69:a7:d6:bf:80:79:dc:14:57:f5:f2:95:ed: be:0b:97:1e:1b:16:a3:e1:67:2b:43:93:9d:29:ec:25:1b:06: 31:77:e3:e3:09:e0:0a:1b:81:2c:4d:32:9c:f2:95:1c:33:6f: e5:c3:0f:5f:96:74:53:1a:6c:e7:01:a1:fd:b9:99:4e:c2:0b: 73:d8:04:0f:01:56:5a:7c:69:ad:69:43:22:c5:40:24:9f:08: ac:cd:a1:35:51:bc:e6:c0:47:e9:02:c1:d9:3c:01:24:9d:c5: 5d:cd:b2:22:36:ad:01:14:96:2e:07:ec:fa:99:f0:fc:71:56: 0f:85:58:a9:14:a2:86:d1:da:cf:08:ec:52:58:ab:69:be:0b: 4f:e1:62:da:07:91:38:14:82:36:cd:a2:a8:a2:ee:8d:af:a6: 84:29:a1:f9:61:16:92:0b:45:e8:92:12:8a:ae:57:1a:de:dc: 3d:b6:95:b9:74:a2:5a:87:97:48:22:36:bf:8a:a3:17:b1:dd: bc:c5:e3:6c:75:1c:bd:5c:a2:43:48:0f:ff:44:80:59:4e:48: 12:05:3b:cd:ac:ef:0d:28:34:a9:06:c8:09:b5:62:b5:e9:d6: 35:73:1f:cd:85:2f:4f:99:ac:8c:93:f0:ef:ca:28:94:e7:b4: 81:a0:9f:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMjI1MDAxMTQwWhcNMjYwMTAxMDAxMTQwWjAYMRYwFAYD VQQDDA02OTRjODEzYy03MmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ0M8ulRwPHoZsg7zksKmff3JmVlQj5B45icSXO3AO6QtIMtmuLeAIm8FsBd kOcTyH5sE9SvDCoY7/pN5Ka0tI/6kbViqdKGuxiNldjnO/RYePFcxaXhP2pgJ/yb DLjrmCchLdpZPMUw2gt6ywHpnSEHq64Gn4vaafQm8pB+qI+FJcfK91RufR431aBS 6etEWrn+20JO1JwmIIQOL99jxpFjg+qNk5J6FFf6d/+Vj/gdzPq0VcLFbDRsJ5wb SM575IWmIh+ETBO6M2hUEaznud3267CS4SP5OSKKIwXh2KYliH3ld8E2eyp9czYn xPR25K3MCArwpjLGgcDvb2ns7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPwZE9F LdfUN3qnqx38fNTRh9xsMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL+8PjCGmn1r+AedwUV/Xyle2+C5ceGxaj4WcrQ5OdKewlGwYxd+Pj CeAKG4EsTTKc8pUcM2/lww9flnRTGmznAaH9uZlOwgtz2AQPAVZafGmtaUMixUAk nwiszaE1UbzmwEfpAsHZPAEkncVdzbIiNq0BFJYuB+z6mfD8cVYPhVipFKKG0drP COxSWKtpvgtP4WLaB5E4FII2zaKoou6Nr6aEKaH5YRaSC0XokhKKrlca3tw9tpW5 dKJah5dIIja/iqMXsd28xeNsdRy9XKJDSA//RIBZTkgSBTvNrO8NKDSpBsgJtWK1 6dY1cx/NhS9PmayMk/DvyiiU57SBoJ+8 -----END CERTIFICATE-----Generated at Thu Dec 25 05:11:37 2025 by rpki-client