This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft File: v4hgssA3e7Xv7b461A8c8YnyrLI.mft (raw, json) Hash identifier: c9TBq90rhNLw0rasZFqzZUoCD3G7Pjjs7/M3Dcpoid8= Subject key identifier: 89:28:D5:26:27:CB:0D:BE:F1:CE:B9:3B:C1:1A:47:C0:F9:1C:5A:34 Authority key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 Certificate issuer: /CN=A9157B74/serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft Manifest number: 71 Signing time: Tue 23 Dec 2025 05:48:00 +0000 Manifest this update: Tue 23 Dec 2025 05:47:59 +0000 Manifest next update: Tue 30 Dec 2025 05:47:59 +0000 Files and hashes: 1: v4hgssA3e7Xv7b461A8c8YnyrLI.crl (hash: yUEzGMlEEV9/FlJr0tZmWMZIAmt+yAlJuZJeBZn/c8k=) 2: 074A7A1436C511F0A4E5C52BC4F9AE02.roa (hash: fSlcIZdpNT8EGzQOFMuevlDD2po6QEISgofqICdF3UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2 Validity Not Before: Dec 23 05:47:59 2025 GMT Not After : Dec 30 05:47:59 2025 GMT Subject: CN=694a2d10-ca1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8b:bd:22:f8:70:0b:82:bc:c6:25:9b:74:78: 95:dd:a5:19:2b:ba:3c:d2:50:57:f0:fc:65:41:7a: d5:ad:27:61:46:e2:ad:25:0d:e4:3b:20:bd:8c:45: 11:ec:b2:88:dc:fb:8d:09:3a:5b:f0:45:49:18:70: ee:f8:06:92:0d:97:4d:4c:85:75:c2:7d:67:82:7d: 0e:07:ed:28:c8:b3:61:a2:54:34:8f:84:37:1f:af: ab:d7:8a:43:d4:36:20:89:88:44:b8:41:fc:ac:f2: 62:e5:19:de:5d:de:0b:8d:eb:7a:33:3a:93:af:0f: 3b:94:87:c0:20:c1:b8:49:66:51:7f:eb:94:91:5a: d0:2d:cf:b2:df:31:c6:ee:34:de:aa:7b:e1:64:5b: 06:ba:84:55:e3:e2:2e:d1:56:db:29:c2:67:a7:f5: 28:f4:8d:12:f1:42:54:bc:7f:0b:78:33:26:78:82: 27:1f:f8:42:99:b3:a3:7e:90:da:34:84:4b:80:2c: 2f:4d:de:fa:02:f4:ff:18:f8:7f:32:96:84:ce:34: 27:c3:d0:e8:80:58:68:b9:00:33:ac:f2:28:59:7b: cf:6d:0a:33:09:42:c3:63:a6:da:38:3c:fc:66:6c: 11:4d:bf:4c:79:4c:05:22:32:62:72:dc:1f:9e:0c: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:28:D5:26:27:CB:0D:BE:F1:CE:B9:3B:C1:1A:47:C0:F9:1C:5A:34 X509v3 Authority Key Identifier: keyid:BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:2b:9e:d4:3e:b7:f2:22:e1:f5:58:51:93:e1:3b:f3:af:1c: 8c:c9:1c:38:fb:71:97:14:ea:12:f8:70:58:66:c2:43:47:05: b2:4a:3e:0f:a4:93:24:61:3f:9c:66:a8:49:97:a4:8e:39:96: a0:2d:b0:c1:85:11:30:af:dc:ad:b4:33:9e:78:e0:a5:58:1f: 66:94:18:37:03:de:86:aa:cd:44:33:c6:46:9f:38:ff:54:83: 49:39:ef:c5:06:bc:1f:68:7e:16:35:17:c1:fe:11:7c:df:e1: f5:dc:cc:e3:23:5f:4f:45:3d:64:6f:fd:32:a3:cb:e5:01:94: 26:20:bd:d4:84:ad:c3:de:15:24:2d:65:4a:57:2c:47:e6:29: 08:6c:fe:49:65:21:45:b1:2e:8e:ae:cd:10:26:21:4b:c6:cb: 74:aa:19:dc:a9:97:94:2d:81:0c:04:cf:a1:45:4c:67:1d:92: 44:19:a0:f5:33:fd:1a:ff:8c:93:ee:5f:f1:a1:6b:76:77:d6: b1:a9:7e:f2:24:c5:bd:b3:ba:f8:26:8d:21:7d:2c:fa:3a:9e: fd:c9:e8:aa:71:1c:6b:21:41:a6:aa:4d:f8:d7:c4:d9:6b:a9: a0:2a:fd:da:a9:ad:0d:ef:db:ae:f5:05:8d:39:f8:f7:59:b7: 78:b8:47:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoQkY4ODYwQjJDMDM3N0JCNUVGRURCRTNBRDQwRjFDRjE4 OUYyQUNCMjAeFw0yNTEyMjMwNTQ3NTlaFw0yNTEyMzAwNTQ3NTlaMBgxFjAUBgNV BAMMDTY5NGEyZDEwLWNhMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqi70i+HALgrzGJZt0eJXdpRkrujzSUFfw/GVBetWtJ2FG4q0lDeQ7IL2MRRHs sojc+40JOlvwRUkYcO74BpINl01MhXXCfWeCfQ4H7SjIs2GiVDSPhDcfr6vXikPU NiCJiES4Qfys8mLlGd5d3guN63ozOpOvDzuUh8AgwbhJZlF/65SRWtAtz7LfMcbu NN6qe+FkWwa6hFXj4i7RVtspwmen9Sj0jRLxQlS8fwt4MyZ4gicf+EKZs6N+kNo0 hEuALC9N3voC9P8Y+H8yloTONCfD0OiAWGi5ADOs8ihZe89tCjMJQsNjpto4PPxm bBFNv0x5TAUiMmJy3B+eDAfrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiSjVJifL Db7xzrk7wRpHwPkcWjQwHwYDVR0jBBgwFoAUv4hgssA3e7Xv7b461A8c8YnyrLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0NFMDA0MjVBMzZC QzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdYdjdiNDYxQThjOFlueXJM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdjRoZ3NzQTNlN1h2N2I0NjFBOGM4WW55ckxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0NFMDA0MjVBMzZCQzExRjA4MUQ1NUYxN0M0RjlBRTAyL3Y0aGdzc0EzZTdY djdiNDYxQThjOFlueXJMSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHwrntQ+t/Ii4fVYUZPhO/OvHIzJHDj7cZcU6hL4cFhmwkNHBbJKPg+k kyRhP5xmqEmXpI45lqAtsMGFETCv3K20M5544KVYH2aUGDcD3oaqzUQzxkafOP9U g0k578UGvB9ofhY1F8H+EXzf4fXczOMjX09FPWRv/TKjy+UBlCYgvdSErcPeFSQt ZUpXLEfmKQhs/kllIUWxLo6uzRAmIUvGy3SqGdypl5QtgQwEz6FFTGcdkkQZoPUz /Rr/jJPuX/Gha3Z31rGpfvIkxb2zuvgmjSF9LPo6nv3J6KpxHGshQaaqTfjXxNlr qaAq/dqprQ3v2671BY05+PdZt3i4R7A= -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:58 2025 by rpki-client