This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: ImCCsWPcfFcTo0a39laCl7VtbjS1XzKgHCW7am2i+HA= Subject key identifier: 43:B1:D5:46:EA:4B:9C:EE:31:A8:9B:E2:81:8C:83:29:E6:9C:DE:B9 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 081B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0810 Signing time: Thu 18 Dec 2025 20:27:06 +0000 Manifest this update: Thu 18 Dec 2025 20:27:05 +0000 Manifest next update: Thu 25 Dec 2025 20:27:05 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: poZMTQsTLqeICGfQ22WKMKLKtiNnN5IGYSSbeSScbCQ=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2075 (0x81b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Dec 18 20:27:05 2025 GMT Not After : Dec 25 20:27:05 2025 GMT Subject: CN=69446399-4d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:76:46:90:bb:8c:d7:c5:f5:b0:ac:10:53:fd: 75:ef:db:9f:8f:3f:03:16:e1:e5:60:d6:09:e5:58: 6c:19:45:c8:cb:0b:a8:cf:18:bf:41:58:99:71:f4: ec:07:7f:50:8d:fe:de:e2:24:8f:1c:9f:57:bd:43: fa:86:7c:4c:fc:4a:81:d7:19:40:0a:5e:65:c6:35: 68:0a:ad:8e:6b:9a:fc:d7:d5:c0:65:7f:00:c6:c4: 96:b9:3c:1d:fc:95:31:d0:cd:7f:23:bb:0a:4c:25: d9:6a:41:57:d4:32:7d:ca:77:56:24:ab:4d:e0:c7: 4b:7e:18:d8:8b:2c:7a:c7:b6:2b:73:7e:b9:23:fa: 30:75:22:cd:1d:61:21:ae:75:3f:f3:98:02:fb:46: 99:24:4f:cf:34:c8:f1:a0:bf:0f:37:09:d5:15:b9: 6a:93:f6:20:fb:56:d3:a9:35:44:a5:50:28:b6:47: bd:52:0f:9b:4d:aa:30:d0:7c:f6:91:82:8d:f6:37: 1b:48:07:e0:6c:59:02:3c:02:34:87:af:3b:5a:e5: ca:89:ee:d8:28:0b:8a:a5:60:62:56:d3:c7:5a:00: 90:c7:32:c4:ba:b8:28:d6:9e:53:38:31:f0:3d:77: 9f:f4:cf:b4:e7:7c:ed:82:f5:53:cc:65:fc:2b:8f: 12:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B1:D5:46:EA:4B:9C:EE:31:A8:9B:E2:81:8C:83:29:E6:9C:DE:B9 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:7c:bd:8a:17:fe:b6:2d:6b:08:04:74:7b:88:ee:58:d8:14: f0:0a:55:46:b6:fd:02:6d:19:5f:af:d0:59:c6:2b:49:d3:75: ee:bd:87:55:21:0a:c3:ae:52:56:4c:a2:de:29:e2:27:f8:86: 91:79:e5:c6:c5:0c:d7:2c:a2:12:3e:63:be:6a:71:e8:4b:bb: 2b:4f:0b:ce:23:7b:d8:08:25:42:8d:9b:35:9f:e3:bb:72:b9: f1:53:f3:b0:d5:dd:61:62:a5:b1:be:c1:3d:8c:19:bd:05:32: 92:bc:41:6e:5e:48:30:c4:0b:d8:53:e7:b8:7a:86:46:83:41: 68:a0:59:0a:86:c3:81:e5:10:a6:cc:0e:03:48:4f:36:aa:53: ad:6f:ff:74:2a:32:e9:ec:35:a5:ff:28:8f:a7:16:68:de:82: d3:16:ac:29:2a:0c:7e:a8:9c:3a:bf:a6:bb:74:8d:23:c8:e7: 29:11:a1:2c:4f:49:08:e7:e9:f6:fa:ab:3b:94:3c:3c:e2:9a: 11:a5:57:29:ca:22:91:6d:16:45:f9:05:7e:26:4b:b0:6e:77: 47:92:52:a7:09:01:e4:8a:2e:d6:c8:73:21:b2:da:6b:59:2e: 56:d3:8d:7a:11:47:7a:76:5f:3a:d1:e0:c8:8c:88:0b:94:0e: 5e:53:c2:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMjE4MjAyNzA1WhcNMjUxMjI1MjAyNzA1WjAYMRYwFAYD VQQDDA02OTQ0NjM5OS00ZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3ZGkLuM18X1sKwQU/1179ufjz8DFuHlYNYJ5VhsGUXIywuozxi/QViZcfTs B39Qjf7e4iSPHJ9XvUP6hnxM/EqB1xlACl5lxjVoCq2Oa5r819XAZX8AxsSWuTwd /JUx0M1/I7sKTCXZakFX1DJ9yndWJKtN4MdLfhjYiyx6x7Yrc365I/owdSLNHWEh rnU/85gC+0aZJE/PNMjxoL8PNwnVFblqk/Yg+1bTqTVEpVAotke9Ug+bTaow0Hz2 kYKN9jcbSAfgbFkCPAI0h687WuXKie7YKAuKpWBiVtPHWgCQxzLEurgo1p5TODHw PXef9M+053ztgvVTzGX8K48SKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOx1Ubq S5zuMaib4oGMgynmnN65MB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxfL2KF/62LWsIBHR7iO5Y2BTwClVGtv0CbRlfr9BZxitJ03XuvYdV IQrDrlJWTKLeKeIn+IaReeXGxQzXLKISPmO+anHoS7srTwvOI3vYCCVCjZs1n+O7 crnxU/Ow1d1hYqWxvsE9jBm9BTKSvEFuXkgwxAvYU+e4eoZGg0FooFkKhsOB5RCm zA4DSE82qlOtb/90KjLp7DWl/yiPpxZo3oLTFqwpKgx+qJw6v6a7dI0jyOcpEaEs T0kI5+n2+qs7lDw84poRpVcpyiKRbRZF+QV+JkuwbndHklKnCQHkii7WyHMhstpr WS5W0416EUd6dl860eDIjIgLlA5eU8IZ -----END CERTIFICATE-----Generated at Sat Dec 20 16:35:19 2025 by rpki-client