This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: 8bQHJlqo3Knd4q+N9JtHcg2Ul2vYWQ3nyRT3lu67OAA= Subject key identifier: C6:F7:87:F6:AB:34:67:BE:78:11:BD:04:06:A6:92:5C:D6:EB:A6:3D Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 64 Signing time: Wed 03 Dec 2025 05:15:18 +0000 Manifest this update: Wed 03 Dec 2025 05:15:18 +0000 Manifest next update: Wed 10 Dec 2025 05:15:18 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: oKx4c65cgdNrjlGaiiIJl5APGCsvwiT7g/8F2X1jTtI=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: wGVIBPNEBcFCJnJRSDz4VWxuIzLpiNR2BJzQPhs1Kok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Dec 3 05:15:18 2025 GMT Not After : Dec 10 05:15:18 2025 GMT Subject: CN=692fc766-e36c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:41:ed:92:99:aa:8f:cd:c8:a0:64:58:c0:ec: 54:fa:55:e9:ea:ab:7a:48:bc:fa:1b:21:40:68:7d: 2e:c2:b8:2f:47:69:9c:16:3c:e1:4a:51:43:23:d1: 4c:76:eb:de:85:74:ca:29:3d:dd:5a:7b:6e:4a:95: 43:c8:2a:7f:6b:b0:9f:66:2a:0a:70:51:a2:91:34: 08:ec:3a:48:51:21:c9:bc:bd:db:80:f7:85:d9:cf: 21:1e:38:f0:23:4b:eb:1f:fe:79:88:51:27:07:2c: 56:98:9b:6b:76:b4:7e:2f:f4:48:89:89:d3:e3:0c: 7b:71:bc:f9:69:15:bf:ef:21:4a:9a:f2:bc:de:f9: 42:6b:60:96:b4:e7:f1:84:be:0d:bb:2b:39:d6:cb: 0c:7e:0f:67:df:d2:52:14:52:2f:9f:e9:ba:c3:ae: 96:10:b7:80:c3:28:8f:37:e4:0d:57:6e:75:2d:ea: 9a:b7:49:18:50:3a:5d:0b:f8:a8:d9:12:09:4e:ea: 6a:d5:1c:66:0b:e7:5b:f1:d7:e5:cc:a4:6e:c8:ce: 89:96:7c:03:81:be:9b:93:29:0d:c0:b3:81:ae:d0: 03:44:60:fc:94:f7:a7:37:9d:d5:b4:08:e6:02:06: 3c:37:58:1f:81:cd:48:38:44:6a:87:17:41:1e:c0: e1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F7:87:F6:AB:34:67:BE:78:11:BD:04:06:A6:92:5C:D6:EB:A6:3D X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:09:a7:59:09:a4:35:81:55:81:c5:d1:b2:1d:27:91:5d:14: 51:18:01:63:44:83:0a:2f:7d:ca:8d:01:99:58:12:cc:8c:0a: 1d:58:88:c5:34:e7:e6:5a:39:58:aa:ac:9b:b5:d1:49:25:74: 49:67:47:56:6d:38:ea:67:95:0d:5a:f0:51:c2:db:ab:4d:59: 28:f8:7a:f9:5a:27:3c:92:c7:e3:92:5b:cc:e5:47:89:aa:db: 93:91:b9:0f:bb:87:81:53:44:d1:45:d6:0e:b2:6a:14:e1:81: 28:ac:07:90:7f:f2:ec:40:f0:f7:dd:48:77:92:74:65:97:ba: ac:31:af:4c:ef:83:06:db:b5:3c:d9:0e:a1:7d:17:e5:55:5e: 38:a3:96:0b:2e:41:c4:bf:60:b9:3f:69:d6:71:cb:33:5b:60: df:c4:79:71:66:10:12:e1:58:61:6d:37:d8:10:ad:24:9b:5f: 01:90:88:b6:37:d2:17:ea:5c:54:f7:aa:31:9b:3c:45:2e:d4: 8c:32:f6:58:86:12:f3:63:ec:77:29:d4:16:73:39:fb:d3:7b: 90:c1:00:2f:67:40:a6:c3:64:9f:97:fc:4d:06:a8:33:53:8c: 91:26:3b:b0:0c:1d:17:99:ae:cc:a9:2e:97:12:bd:bd:4b:3b: 81:f6:4d:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTEyMDMwNTE1MThaFw0yNTEyMTAwNTE1MThaMBgxFjAUBgNV BAMTDTY5MmZjNzY2LWUzNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYQe2SmaqPzcigZFjA7FT6Venqq3pIvPobIUBofS7CuC9HaZwWPOFKUUMj0Ux2 696FdMopPd1ae25KlUPIKn9rsJ9mKgpwUaKRNAjsOkhRIcm8vduA94XZzyEeOPAj S+sf/nmIUScHLFaYm2t2tH4v9EiJidPjDHtxvPlpFb/vIUqa8rze+UJrYJa05/GE vg27KznWywx+D2ff0lIUUi+f6brDrpYQt4DDKI835A1XbnUt6pq3SRhQOl0L+KjZ EglO6mrVHGYL51vx1+XMpG7IzomWfAOBvpuTKQ3As4Gu0ANEYPyU96c3ndW0COYC Bjw3WB+BzUg4RGqHF0EewOEdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxveH9qs0 Z754Eb0EBqaSXNbrpj0wHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJkJp1kJpDWBVYHF0bIdJ5FdFFEYAWNEgwovfcqNAZlYEsyMCh1YiMU0 5+ZaOViqrJu10UkldElnR1ZtOOpnlQ1a8FHC26tNWSj4evlaJzySx+OSW8zlR4mq 25ORuQ+7h4FTRNFF1g6yahThgSisB5B/8uxA8PfdSHeSdGWXuqwxr0zvgwbbtTzZ DqF9F+VVXjijlgsuQcS/YLk/adZxyzNbYN/EeXFmEBLhWGFtN9gQrSSbXwGQiLY3 0hfqXFT3qjGbPEUu1Iwy9liGEvNj7Hcp1BZzOfvTe5DBAC9nQKbDZJ+X/E0GqDNT jJEmO7AMHReZrsypLpcSvb1LO4H2TZQ= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:25 2025 by rpki-client