This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: PvJoF1QTRaOmKRmg7dPFukgefrV1rKRx7p+32g1NKHg= Subject key identifier: 1F:34:4E:00:D3:39:5A:C2:5B:E0:B2:66:BD:C5:96:15:01:4B:2A:F8 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01F2 Signing time: Sun 07 Dec 2025 01:04:18 +0000 Manifest this update: Sun 07 Dec 2025 01:04:18 +0000 Manifest next update: Sun 14 Dec 2025 01:04:18 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: XtrAmkBSqiTQj0jFYv4PifkRYUoUdjKhdaPfwa/p5hY=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Dec 7 01:04:18 2025 GMT Not After : Dec 14 01:04:18 2025 GMT Subject: CN=6934d292-ad26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:49:f1:8e:b5:cc:e1:bd:89:e1:38:f3:c3:53: 58:d3:4e:ba:1f:a9:4f:76:b4:61:f6:c2:7a:e1:5e: 04:db:34:d7:7d:55:65:5d:5a:76:67:25:2f:18:07: 9c:13:23:40:aa:4f:0a:58:51:16:6f:b6:44:25:87: 00:1a:9f:0b:ed:b3:c8:2a:12:ef:36:c7:ec:05:88: 14:1f:b7:e8:27:7e:30:e9:b5:f9:2c:45:05:3b:b0: 16:fd:70:6e:d1:77:65:c9:2c:d2:3b:5f:47:ee:7d: ac:fb:1f:a1:08:65:56:f6:c7:48:c2:32:a1:38:ac: 35:71:c5:76:a3:9e:c4:1f:21:d3:16:82:90:65:be: 5c:9b:11:1d:1b:86:ae:50:94:33:23:4a:03:d8:67: 3d:6d:76:8f:61:c8:3f:1e:6b:c5:43:6d:90:1f:70: f1:f8:f9:41:6b:af:b8:4e:14:d1:16:eb:86:0f:c4: a9:73:2e:be:02:10:dc:ac:51:58:d7:f1:76:26:9e: c9:a7:d4:4f:5e:18:e8:16:5b:f7:f3:01:0b:8e:c8: 84:8a:d0:01:d1:f7:ee:3e:62:34:12:05:85:34:ab: dd:d0:a4:83:86:90:ad:89:5b:27:e9:7b:16:74:cc: bd:dc:07:01:fb:90:89:91:80:23:ba:0f:5d:1a:43: fa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:34:4E:00:D3:39:5A:C2:5B:E0:B2:66:BD:C5:96:15:01:4B:2A:F8 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ee:84:16:d5:9f:3a:9d:d0:91:ae:0e:5c:aa:2d:c1:75:ff: e1:1a:89:93:84:22:fc:51:dd:dc:e3:ba:8e:b5:26:18:86:be: e8:4c:73:ab:2f:c8:c3:f5:0e:89:24:ab:7f:9b:bb:3f:cf:b6: 40:ce:a1:9e:b2:f0:50:09:97:e6:62:56:03:93:f9:33:ab:5a: fe:7d:50:cc:26:7e:63:bd:95:ca:10:c0:6c:a6:60:45:cb:9f: 13:e3:63:19:e0:46:36:ae:e0:49:bb:20:81:21:ec:b9:84:ea: 15:5b:71:a6:c8:90:7d:e4:a2:7d:b0:de:31:75:ab:ae:91:aa: 13:cf:ea:29:55:c5:53:94:15:97:56:d9:a1:f7:d5:99:67:56: 8d:04:4e:df:ac:d2:7a:48:e6:3f:1f:35:5e:a1:dc:ab:42:ff: 0b:bd:fe:b6:e7:09:e9:01:da:a6:07:a2:9d:59:58:36:fa:c4: 76:93:fe:87:4f:d1:43:b1:91:4e:07:97:d6:17:8c:d2:81:ce: d8:c2:1b:d4:89:fe:16:49:8d:b4:1e:de:ac:6c:33:88:ee:92: 49:12:90:e0:7c:f6:a2:c6:0e:0a:f8:2a:bd:cc:02:a9:2e:0a: d7:cd:cd:86:56:be:3f:36:40:54:ee:ec:1e:da:23:2d:ad:5e: b3:83:51:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUxMjA3MDEwNDE4WhcNMjUxMjE0MDEwNDE4WjAYMRYwFAYD VQQDEw02OTM0ZDI5Mi1hZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUnxjrXM4b2J4Tjzw1NY0066H6lPdrRh9sJ64V4E2zTXfVVlXVp2ZyUvGAec EyNAqk8KWFEWb7ZEJYcAGp8L7bPIKhLvNsfsBYgUH7foJ34w6bX5LEUFO7AW/XBu 0XdlySzSO19H7n2s+x+hCGVW9sdIwjKhOKw1ccV2o57EHyHTFoKQZb5cmxEdG4au UJQzI0oD2Gc9bXaPYcg/HmvFQ22QH3Dx+PlBa6+4ThTRFuuGD8Spcy6+AhDcrFFY 1/F2Jp7Jp9RPXhjoFlv38wELjsiEitAB0ffuPmI0EgWFNKvd0KSDhpCtiVsn6XsW dMy93AcB+5CJkYAjug9dGkP6KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB80TgDT OVrCW+CyZr3FlhUBSyr4MB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA7oQW1Z86ndCRrg5cqi3Bdf/hGomThCL8Ud3c47qOtSYYhr7oTHOr L8jD9Q6JJKt/m7s/z7ZAzqGesvBQCZfmYlYDk/kzq1r+fVDMJn5jvZXKEMBspmBF y58T42MZ4EY2ruBJuyCBIey5hOoVW3GmyJB95KJ9sN4xdauukaoTz+opVcVTlBWX Vtmh99WZZ1aNBE7frNJ6SOY/HzVeodyrQv8Lvf625wnpAdqmB6KdWVg2+sR2k/6H T9FDsZFOB5fWF4zSgc7YwhvUif4WSY20Ht6sbDOI7pJJEpDgfPaixg4K+Cq9zAKp LgrXzc2GVr4/NkBU7uwe2iMtrV6zg1H5 -----END CERTIFICATE-----Generated at Mon Dec 8 06:19:05 2025 by rpki-client