This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: JpbHhujy2sFxdHnRp7hzj71yuFJk3cd94R+sBZIF7ws= Subject key identifier: 18:9B:00:B2:C1:13:72:BE:45:C7:85:A5:56:83:72:9D:41:44:40:FC Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0B3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0B33 Signing time: Mon 22 Dec 2025 18:44:36 +0000 Manifest this update: Mon 22 Dec 2025 18:44:36 +0000 Manifest next update: Mon 29 Dec 2025 18:44:36 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: Hclkb3DOwNcw+eYV1RoGLFWthL3WJdC378WKRF89Yu4=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: dlSOSQk2MniPlYlY5Ht7zlRaFaui9HZpjfs6c69fqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Dec 22 18:44:36 2025 GMT Not After : Dec 29 18:44:36 2025 GMT Subject: CN=69499194-bace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:37:0f:9e:84:bb:c1:0b:14:57:f6:ea:2f: 83:1f:7a:1a:d2:19:3a:2d:41:db:53:cd:9d:d6:e9: b5:39:4c:48:ff:2e:84:14:ce:47:a3:44:e4:b7:8a: 88:fa:76:63:f2:ec:0e:bb:0f:ee:d8:cd:d7:45:c0: 49:b9:60:5b:93:28:82:28:ab:21:3b:63:ff:86:67: 21:17:37:a2:d9:c1:c2:87:0f:4c:fb:ad:b2:08:80: 67:ce:54:10:8f:f1:55:51:82:11:b7:c8:6b:90:bd: d3:15:43:26:74:64:63:31:04:66:01:26:1d:2e:40: 69:56:8c:93:bb:66:90:fe:95:54:fd:c0:c7:12:40: fd:ae:1f:35:39:3f:b1:f7:c7:1f:d3:f0:74:23:a3: a9:2f:2b:a2:7c:73:d9:45:9a:21:ae:97:46:86:1e: 7b:f4:62:fa:39:62:a0:47:94:eb:6a:16:5f:74:b7: e6:9a:ed:c1:0f:49:bf:97:e2:4f:08:25:3a:54:26: 83:84:51:e2:cb:8c:31:c9:e2:9b:5e:f0:d4:ad:3e: 74:ca:ae:1b:70:bc:94:4e:b0:a9:cc:25:54:e0:db: 1a:92:fe:91:c2:df:0d:4f:23:db:fb:2f:0c:ed:94: 68:1d:58:39:58:61:df:d9:5e:de:97:f9:d8:69:a2: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9B:00:B2:C1:13:72:BE:45:C7:85:A5:56:83:72:9D:41:44:40:FC X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:9f:86:52:95:1d:7f:42:76:7b:6a:75:67:5d:3a:90:f6:79: 69:db:8d:13:17:bd:69:02:5b:07:62:7f:10:d4:be:ce:8d:23: 59:95:b5:8a:76:b1:9f:fd:2d:09:a4:6e:31:5a:06:49:19:e3: cb:8b:c9:90:77:5a:3f:27:10:d0:48:8f:60:b6:4e:f7:c3:64: 6d:05:10:80:76:87:d1:e7:0f:71:76:5e:f0:61:c4:fd:fb:c4: 02:40:8e:c3:2f:8d:09:c5:d9:b6:fa:6b:36:09:a5:05:72:34: e5:04:af:49:26:ab:1c:03:7f:ed:79:48:ae:22:c8:c0:22:fc: 70:41:49:f2:4b:e3:d4:77:79:80:b8:c1:54:62:49:ff:3b:48: 37:7d:65:69:bc:14:84:0e:ec:99:0a:cd:85:36:2e:4f:e0:47: 66:9e:f7:97:d1:48:38:bd:b9:3e:44:8e:2b:a1:f4:b4:bd:d6: ca:8d:a2:11:37:4c:df:0e:ff:94:7f:60:76:14:fe:31:6f:b4: 9d:83:01:22:76:34:72:68:43:b6:1f:f2:68:c6:31:63:a9:48: aa:ad:01:a8:6e:78:c0:bd:bf:88:3a:8c:60:61:76:61:9e:62: 7a:d4:99:3b:47:8b:1f:0c:32:41:d9:d6:bc:0e:a5:06:43:b0: 90:8c:c2:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUxMjIyMTg0NDM2WhcNMjUxMjI5MTg0NDM2WjAYMRYwFAYD VQQDDA02OTQ5OTE5NC1iYWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMs3D56Eu8ELFFf26i+DH3oa0hk6LUHbU82d1um1OUxI/y6EFM5Ho0Tkt4qI +nZj8uwOuw/u2M3XRcBJuWBbkyiCKKshO2P/hmchFzei2cHChw9M+62yCIBnzlQQ j/FVUYIRt8hrkL3TFUMmdGRjMQRmASYdLkBpVoyTu2aQ/pVU/cDHEkD9rh81OT+x 98cf0/B0I6OpLyuifHPZRZohrpdGhh579GL6OWKgR5TrahZfdLfmmu3BD0m/l+JP CCU6VCaDhFHiy4wxyeKbXvDUrT50yq4bcLyUTrCpzCVU4Nsakv6Rwt8NTyPb+y8M 7ZRoHVg5WGHf2V7el/nYaaISzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBibALLB E3K+RceFpVaDcp1BRED8MB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBon4ZSlR1/QnZ7anVnXTqQ9nlp240TF71pAlsHYn8Q1L7OjSNZlbWK drGf/S0JpG4xWgZJGePLi8mQd1o/JxDQSI9gtk73w2RtBRCAdofR5w9xdl7wYcT9 +8QCQI7DL40Jxdm2+ms2CaUFcjTlBK9JJqscA3/teUiuIsjAIvxwQUnyS+PUd3mA uMFUYkn/O0g3fWVpvBSEDuyZCs2FNi5P4EdmnveX0Ug4vbk+RI4rofS0vdbKjaIR N0zfDv+Uf2B2FP4xb7SdgwEidjRyaEO2H/JoxjFjqUiqrQGobnjAvb+IOoxgYXZh nmJ61Jk7R4sfDDJB2da8DqUGQ7CQjMIM -----END CERTIFICATE-----Generated at Tue Dec 23 16:30:50 2025 by rpki-client