This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: NGKoJV4oN4+wUjsTD8NLaUHZFA2NM0g5AIpejqPg4cU= Subject key identifier: EA:03:6F:DC:82:7D:A5:2C:DC:9C:E8:A7:A1:3D:5D:D9:00:94:51:F9 Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 07BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 07B2 Signing time: Mon 22 Dec 2025 20:41:04 +0000 Manifest this update: Mon 22 Dec 2025 20:41:03 +0000 Manifest next update: Mon 29 Dec 2025 20:41:03 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: jr37EweDw76hDjG3n039UJ78pnDpYxxV2DbKZ2Qd2Uo=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: fXQXf8N5tytPfV8xyqN1Zu7dGcPNJVrKRy7cMq29VZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Dec 22 20:41:03 2025 GMT Not After : Dec 29 20:41:03 2025 GMT Subject: CN=6949ace0-8aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:35:d0:68:a4:c2:7c:2e:75:27:dc:b4:31: 7d:62:3b:d0:ca:2b:68:d8:e0:c4:9b:83:bb:7d:c5: 56:e8:50:67:8c:13:f7:73:fd:64:45:a8:7e:1c:e7: 74:99:f4:a8:7a:9f:77:ce:30:99:4b:bb:0b:d8:7d: ea:49:a4:57:8a:44:2e:70:65:a1:ea:43:ef:7a:d1: 10:49:b9:5a:34:55:24:93:74:08:8e:c2:e4:f0:ba: 76:a0:2e:60:1d:d5:19:64:b5:73:3f:a9:8a:4b:f2: 28:b7:49:ec:0f:54:c3:89:28:82:eb:6d:b2:31:75: e1:3a:b9:36:1e:ec:92:41:ac:d9:d2:2a:9e:db:72: 6b:80:d9:b0:80:7b:55:d0:70:c9:8d:40:58:72:4f: fa:0e:9b:94:af:43:0e:e9:2c:a5:26:7b:80:c8:56: d0:80:78:7e:54:ca:3e:25:77:8f:0d:b4:c5:d6:45: a5:93:bd:11:ef:51:3d:b0:aa:69:87:ed:b8:7c:85: 90:c8:ce:1b:a5:4e:b9:8a:79:eb:5d:ef:bd:1f:8a: 82:db:0d:d3:c2:30:b4:f4:fe:8c:84:be:59:c2:0b: 2c:ac:01:af:43:34:6c:6d:a1:6a:b3:93:8c:97:f8: ed:39:5a:be:05:7a:81:55:e6:ea:4f:17:41:8d:58: 11:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:03:6F:DC:82:7D:A5:2C:DC:9C:E8:A7:A1:3D:5D:D9:00:94:51:F9 X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:d8:9d:c5:77:a5:cf:0f:3c:78:03:1b:1e:e1:01:26:05:56: 01:3d:1d:0d:86:4a:a3:a9:ca:b6:24:b3:9f:cd:bc:f0:6d:bd: 97:73:58:ed:bb:e2:76:a9:17:14:d0:c0:c0:cb:59:b7:b6:5b: 43:60:96:36:9d:f3:5c:b0:3a:43:89:de:4d:76:57:35:c5:1c: 30:d0:54:4e:5e:f9:75:d2:ab:18:4f:df:3d:07:56:84:82:fa: 00:c8:2f:40:62:8c:d8:ec:0b:b6:73:46:72:5e:d0:6c:e6:ed: 7a:43:81:f6:b1:14:5e:ae:c9:31:42:08:73:4b:c7:ca:44:95: e0:d0:93:9a:d8:b8:04:d1:a5:a1:8c:91:8d:e9:19:f0:cd:d6: 42:ef:53:69:3c:c3:bd:76:2c:6c:e5:a9:bb:0b:3f:28:be:79: 2e:7a:68:92:4e:e1:20:65:33:f2:37:f0:c2:e7:90:53:3c:5d: 0f:47:0f:84:f8:77:4b:a4:78:72:06:68:95:e7:b2:6f:9f:d5: 7b:83:ee:40:47:43:26:5b:63:0b:d0:e9:67:c5:3f:ba:ab:7d: 32:62:3e:4d:de:27:87:3f:80:2a:20:e7:5c:bb:1a:a1:2c:ad: 62:87:3a:10:1d:cd:3b:36:d0:0c:d9:e7:eb:21:37:f7:27:f7: a8:e0:bf:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjUxMjIyMjA0MTAzWhcNMjUxMjI5MjA0MTAzWjAYMRYwFAYD VQQDDA02OTQ5YWNlMC04YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTI10GikwnwudSfctDF9YjvQyito2ODEm4O7fcVW6FBnjBP3c/1kRah+HOd0 mfSoep93zjCZS7sL2H3qSaRXikQucGWh6kPvetEQSblaNFUkk3QIjsLk8Lp2oC5g HdUZZLVzP6mKS/Iot0nsD1TDiSiC622yMXXhOrk2HuySQazZ0iqe23JrgNmwgHtV 0HDJjUBYck/6DpuUr0MO6SylJnuAyFbQgHh+VMo+JXePDbTF1kWlk70R71E9sKpp h+24fIWQyM4bpU65innrXe+9H4qC2w3TwjC09P6MhL5ZwgssrAGvQzRsbaFqs5OM l/jtOVq+BXqBVebqTxdBjVgR2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoDb9yC faUs3Jzop6E9XdkAlFH5MB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf2J3Fd6XPDzx4Axse4QEmBVYBPR0Nhkqjqcq2JLOfzbzwbb2Xc1jt u+J2qRcU0MDAy1m3tltDYJY2nfNcsDpDid5Ndlc1xRww0FROXvl10qsYT989B1aE gvoAyC9AYozY7Au2c0ZyXtBs5u16Q4H2sRRerskxQghzS8fKRJXg0JOa2LgE0aWh jJGN6RnwzdZC71NpPMO9dixs5am7Cz8ovnkuemiSTuEgZTPyN/DC55BTPF0PRw+E +HdLpHhyBmiV57Jvn9V7g+5AR0MmW2ML0OlnxT+6q30yYj5N3ieHP4AqIOdcuxqh LK1ihzoQHc07NtAM2efrITf3J/eo4L/b -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:36 2025 by rpki-client