This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: aj0kpFQUnhAqu3A+oMsWvZieNqYC45Oq9BiJRVJ0sLo= Subject key identifier: 0B:70:A8:F1:D2:FB:15:F2:3D:FA:F9:92:43:96:CC:F1:56:F9:19:E7 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0334 Signing time: Mon 29 Dec 2025 00:10:04 +0000 Manifest this update: Mon 29 Dec 2025 00:10:03 +0000 Manifest next update: Mon 05 Jan 2026 00:10:03 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: zulCiFdA9yuYquKqiOqoGXX6hy2oUdp96hBYg13u2R0=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 00:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Dec 29 00:10:03 2025 GMT Not After : Jan 5 00:10:03 2026 GMT Subject: CN=6951c6dc-a804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e0:70:7b:7e:f7:2a:86:b9:10:74:41:b7:bb: 92:58:05:84:1f:b1:47:71:3c:a7:46:14:bb:f0:64: 7d:e1:2e:d5:35:24:2f:fe:3f:2f:f4:82:88:b5:5a: 7e:af:42:c4:4e:95:e0:db:7b:af:1e:4a:15:df:e6: ae:45:cb:c5:b9:34:76:81:9d:85:f2:45:7a:e0:64: 34:25:cb:5d:63:b1:8d:5c:9d:df:a9:74:2a:7a:de: 0e:4b:11:9b:40:a3:0b:69:c8:e5:4a:d3:1d:49:ae: 78:81:81:74:69:e0:5b:39:10:dc:0c:d2:57:31:a0: 06:a8:a8:e8:14:3e:14:07:9d:9d:e8:01:3a:21:08: c6:83:29:b2:e8:88:e3:c4:69:1f:47:2d:22:d8:2d: 89:7f:34:18:72:ea:18:61:65:39:78:1e:b7:f6:b9: 3e:9d:b3:48:f5:93:e0:68:36:18:c4:6e:d8:c7:e8: f3:4f:ee:85:8b:1e:7f:f9:ad:80:6b:b0:83:80:09: 5a:d8:11:fa:57:60:68:be:a6:0d:23:bb:e6:f4:13: 5e:a3:8b:30:33:d2:c8:3f:75:4b:37:2a:93:3c:c3: b9:41:d1:0d:84:8e:e5:1b:a5:9a:31:d8:91:de:37: e3:6f:cb:9c:45:40:e9:61:1e:76:96:f5:f5:9d:af: 7c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:70:A8:F1:D2:FB:15:F2:3D:FA:F9:92:43:96:CC:F1:56:F9:19:E7 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f8:d0:e1:27:10:09:20:80:10:50:e7:6f:7d:c1:73:18:13: 2d:24:dd:8a:67:f5:fd:59:3a:cb:1c:da:ba:32:fb:a6:44:bb: e7:c1:30:ab:22:30:0d:41:e6:80:62:39:71:0f:12:a2:16:7d: 58:63:34:11:f9:8e:49:15:dd:42:f5:af:c2:06:c8:07:33:52: 6a:c9:4d:a8:ba:a4:43:a5:5b:2f:a7:9f:13:da:fb:14:5e:de: 8e:23:8a:ce:2e:0f:86:f9:78:ae:6f:d4:8c:0b:9b:63:6e:35: bd:06:ea:00:b9:8d:13:9c:08:43:46:04:cf:2c:48:77:d5:e7: a3:88:02:2d:2d:c9:0c:55:c2:96:b1:cd:f4:da:56:d9:fa:74: 58:37:77:37:99:02:70:a9:d3:99:79:0d:e1:31:12:4e:27:0c: 51:d5:00:3d:23:29:72:19:9f:a6:6e:00:bd:a9:91:c9:fa:0b: 35:3b:19:89:9a:2a:af:0a:d5:2a:04:78:2f:a7:2b:2b:1c:b1: 1a:c0:5a:b5:72:23:34:1b:c3:5c:07:bf:73:cd:e8:74:e1:76: 0b:31:d0:5b:a6:cd:dc:8a:f0:ab:33:6c:2c:47:95:e6:4c:6d: b5:15:0f:51:e4:e8:bb:70:4c:38:e0:9f:59:15:5c:e1:f6:db: f9:d0:0f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMjI5MDAxMDAzWhcNMjYwMTA1MDAxMDAzWjAYMRYwFAYD VQQDDA02OTUxYzZkYy1hODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOBwe373Koa5EHRBt7uSWAWEH7FHcTynRhS78GR94S7VNSQv/j8v9IKItVp+ r0LETpXg23uvHkoV3+auRcvFuTR2gZ2F8kV64GQ0JctdY7GNXJ3fqXQqet4OSxGb QKMLacjlStMdSa54gYF0aeBbORDcDNJXMaAGqKjoFD4UB52d6AE6IQjGgymy6Ijj xGkfRy0i2C2JfzQYcuoYYWU5eB639rk+nbNI9ZPgaDYYxG7Yx+jzT+6Fix5/+a2A a7CDgAla2BH6V2BovqYNI7vm9BNeo4swM9LIP3VLNyqTPMO5QdENhI7lG6WaMdiR 3jfjb8ucRUDpYR52lvX1na98YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtwqPHS +xXyPfr5kkOWzPFW+RnnMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD+NDhJxAJIIAQUOdvfcFzGBMtJN2KZ/X9WTrLHNq6MvumRLvnwTCr IjANQeaAYjlxDxKiFn1YYzQR+Y5JFd1C9a/CBsgHM1JqyU2ouqRDpVsvp58T2vsU Xt6OI4rOLg+G+Xiub9SMC5tjbjW9BuoAuY0TnAhDRgTPLEh31eejiAItLckMVcKW sc302lbZ+nRYN3c3mQJwqdOZeQ3hMRJOJwxR1QA9IylyGZ+mbgC9qZHJ+gs1OxmJ miqvCtUqBHgvpysrHLEawFq1ciM0G8NcB79zzeh04XYLMdBbps3civCrM2wsR5Xm TG21FQ9R5Oi7cEw44J9ZFVzh9tv50A9G -----END CERTIFICATE-----Generated at Tue Dec 30 04:32:17 2025 by rpki-client