This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: TMNhwpTq7GGusnURPEOnEfnQW3SY6LkA6g16dovqlEA= Subject key identifier: 76:F9:8C:BA:C2:C6:54:10:FD:F8:96:40:68:84:34:ED:6F:F0:3F:BF Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0233 Signing time: Sun 07 Dec 2025 00:29:10 +0000 Manifest this update: Sun 07 Dec 2025 00:29:09 +0000 Manifest next update: Sun 14 Dec 2025 00:29:09 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: mw2f5yR4u43Y5B/4LHIHNuThwGUy1fQSSqNsokWM1fk=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Dec 7 00:29:09 2025 GMT Not After : Dec 14 00:29:09 2025 GMT Subject: CN=6934ca55-8cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:45:84:18:1c:0e:3f:6b:45:e7:1a:b2:4f:90: 06:3a:f9:0b:db:1e:1b:06:55:c8:73:e3:92:03:22: 2e:8c:a7:7b:ad:9e:7f:58:1c:2d:92:bf:d7:da:b4: 78:7c:a5:70:53:d3:de:5f:ed:02:af:9c:f3:c6:3b: 14:42:c6:de:e0:3a:e3:7a:84:f5:89:43:41:29:48: fc:08:f4:2b:02:59:9f:37:21:06:eb:40:f5:f9:7c: 03:fd:8b:d8:d2:8f:d2:c8:2e:07:69:3a:78:0a:5f: 69:9a:4f:8b:a8:21:13:d7:5c:7f:2e:89:bd:5f:a6: 9c:db:cc:46:a7:7a:df:7c:a4:b9:9e:2f:e4:05:99: 25:c6:49:ab:a9:dc:59:5d:dc:47:c9:1a:e8:89:f7: ae:94:4d:e2:24:52:2c:99:61:a8:be:2f:26:11:f3: b3:3f:95:ea:6e:b5:e6:93:ac:c1:38:e4:d8:97:67: a3:c7:86:09:e5:a1:12:6e:5e:63:fc:fe:60:d1:16: 60:fa:3c:37:cd:a3:bd:ef:45:63:23:25:dc:0b:f3: 2c:59:67:80:9e:3a:53:3d:dd:f6:71:62:d2:c4:46: 4d:39:31:d8:e8:8e:ad:42:47:84:1f:fc:cd:c6:2d: 07:0c:04:30:df:eb:a2:d3:c3:cf:a8:f0:6f:de:e6: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F9:8C:BA:C2:C6:54:10:FD:F8:96:40:68:84:34:ED:6F:F0:3F:BF X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:fd:a6:4f:47:fc:25:71:b0:18:99:83:07:c9:af:3e:fd:bc: 11:70:f8:f2:fd:36:d6:6c:5f:37:9f:76:e9:82:00:d1:fc:8f: 70:11:70:02:78:2f:d4:44:cb:1f:4b:f3:68:6b:8d:cf:d2:8b: d2:c3:19:ff:b8:b3:b7:5c:64:7e:17:d2:be:0b:44:1c:f3:29: 66:d1:fc:a2:de:41:ac:dc:4b:ba:0c:ed:f6:d8:8f:5c:89:0f: b0:5c:3e:e8:9e:66:61:e5:43:b2:88:d0:93:ad:88:59:9e:3a: b5:36:30:d0:b8:87:44:58:6b:07:cb:26:fa:9d:fc:db:80:03: 49:41:35:b1:65:3e:61:b7:30:a5:0b:1b:7b:65:da:89:98:94: ba:57:f8:98:c8:18:64:84:0b:50:b2:d9:55:4c:34:5e:ec:7c: de:0c:db:27:e5:98:d5:50:1c:00:a1:37:9e:77:d1:37:99:72: ef:2d:2a:2d:a4:b5:72:c2:c2:4f:61:18:6a:13:d9:4e:eb:fe: 22:d7:be:69:68:b9:4e:35:fc:4e:5a:11:35:84:03:98:e7:e5: 7b:7c:16:c9:4d:6a:2d:c0:b9:f3:56:64:d5:5a:bf:9c:fc:b3: d9:30:0b:87:22:f5:2b:1f:66:eb:c0:1d:31:21:d0:c3:13:8d: 29:81:14:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUxMjA3MDAyOTA5WhcNMjUxMjE0MDAyOTA5WjAYMRYwFAYD VQQDEw02OTM0Y2E1NS04Y2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10WEGBwOP2tF5xqyT5AGOvkL2x4bBlXIc+OSAyIujKd7rZ5/WBwtkr/X2rR4 fKVwU9PeX+0Cr5zzxjsUQsbe4DrjeoT1iUNBKUj8CPQrAlmfNyEG60D1+XwD/YvY 0o/SyC4HaTp4Cl9pmk+LqCET11x/Lom9X6ac28xGp3rffKS5ni/kBZklxkmrqdxZ XdxHyRroifeulE3iJFIsmWGovi8mEfOzP5XqbrXmk6zBOOTYl2ejx4YJ5aESbl5j /P5g0RZg+jw3zaO970VjIyXcC/MsWWeAnjpTPd32cWLSxEZNOTHY6I6tQkeEH/zN xi0HDAQw3+ui08PPqPBv3uYICQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHb5jLrC xlQQ/fiWQGiENO1v8D+/MB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt/aZPR/wlcbAYmYMHya8+/bwRcPjy/TbWbF83n3bpggDR/I9wEXAC eC/URMsfS/Noa43P0ovSwxn/uLO3XGR+F9K+C0Qc8ylm0fyi3kGs3Eu6DO322I9c iQ+wXD7onmZh5UOyiNCTrYhZnjq1NjDQuIdEWGsHyyb6nfzbgANJQTWxZT5htzCl Cxt7ZdqJmJS6V/iYyBhkhAtQstlVTDRe7HzeDNsn5ZjVUBwAoTeed9E3mXLvLSot pLVywsJPYRhqE9lO6/4i175paLlONfxOWhE1hAOY5+V7fBbJTWotwLnzVmTVWr+c /LPZMAuHIvUrH2brwB0xIdDDE40pgRTX -----END CERTIFICATE-----Generated at Mon Dec 8 18:33:42 2025 by rpki-client