This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: jbxe2QQj4pX8BDQATBw4LjPDd3WYw7nOld2X/ZL5+WU= Subject key identifier: CB:15:64:B8:94:45:3B:E8:D7:D6:BD:56:56:07:34:1A:16:69:B8:85 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1694 Signing time: Sat 22 Nov 2025 16:15:00 +0000 Manifest this update: Sat 22 Nov 2025 16:14:59 +0000 Manifest next update: Sat 29 Nov 2025 16:14:59 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: haMDMy7fbx6bAYGNCD5gHs9/o3lheSUKFJjMqSCdHhY=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 16:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5846 (0x16d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Nov 22 16:14:59 2025 GMT Not After : Nov 29 16:14:59 2025 GMT Subject: CN=6921e184-2eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:26:69:92:91:56:c4:05:52:6e:1e:67:cc: 9a:60:2a:e0:d5:20:e0:4f:a8:d8:f1:eb:c6:6a:31: 19:1e:19:b4:92:dc:c6:17:3b:f8:aa:17:03:2d:a2: 97:92:cc:b4:05:f2:6e:d9:42:a3:ea:b9:23:cd:4c: e1:96:88:8f:ab:fb:e4:68:f4:1f:c5:c3:8e:55:67: 73:e5:df:99:02:7b:e8:22:40:b8:06:96:f9:39:e9: f1:cc:f1:68:fb:a1:49:f7:53:a7:dd:f5:c3:2a:b7: 88:27:8d:67:5d:20:22:9b:6a:41:50:5d:e1:81:1c: ab:7a:da:34:85:c9:a0:2a:ca:8f:bc:32:6c:e6:71: 62:2d:37:22:49:f0:07:fb:33:35:37:53:81:c6:ea: 9e:9b:6e:ef:c5:cb:57:f7:ae:38:aa:46:c1:e2:26: 3b:9b:06:5c:c1:eb:3d:0e:d9:14:f4:f3:37:1f:72: 78:ba:d6:f0:11:99:f4:11:dd:3b:52:05:92:8c:f9: 51:b3:8b:3e:31:4a:d4:f1:23:36:f5:7c:2c:0c:be: 58:0e:52:84:aa:48:ec:c7:6c:91:a4:f7:f3:0d:d9: 29:8e:07:bf:92:06:9a:6e:e0:4d:d9:7c:28:94:41: 1c:df:28:dd:c2:7d:56:9a:a1:e5:ba:cf:4c:d5:08: b3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:15:64:B8:94:45:3B:E8:D7:D6:BD:56:56:07:34:1A:16:69:B8:85 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:43:00:b9:8e:62:83:0c:16:18:fe:e8:3c:12:c8:1b:2c:52: 86:03:2e:69:27:d8:b8:8e:57:5f:cd:a5:45:5e:be:9a:4d:81: 44:0e:2e:47:28:07:30:23:88:ff:40:3c:a1:ac:32:18:05:39: f6:5a:04:9e:c1:93:ed:e0:78:4d:41:e7:73:c8:76:be:06:b6: 2b:26:3c:ff:50:48:f1:c0:50:c5:95:4e:8d:8e:a3:aa:9d:9f: 37:83:14:82:27:39:17:5a:01:52:a3:f2:65:cf:0f:a0:5e:12: ba:09:65:7b:51:6d:6a:c5:29:22:e9:11:5f:15:45:ae:d2:bd: d3:ff:32:4b:bb:9a:a2:f3:a6:61:7b:0e:59:fe:42:50:7b:43: 68:30:14:41:6c:9a:39:78:6d:25:01:ee:2d:6d:49:09:8f:4f: fb:62:0a:1d:1f:39:d4:99:e4:89:f4:00:9b:92:43:80:9a:4a: 20:4d:b6:93:96:98:15:fe:d8:d8:c8:b9:a3:0c:30:7e:f6:64: de:dc:02:66:8e:8c:f5:28:66:a6:18:20:4a:8e:19:1a:de:7d: 56:f8:d4:0f:87:c0:97:f7:24:c9:5a:0d:b2:76:a8:19:59:72: 79:f6:8b:0a:cb:1c:11:9a:26:39:54:87:64:d6:45:e5:77:65: 36:73:07:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUxMTIyMTYxNDU5WhcNMjUxMTI5MTYxNDU5WjAYMRYwFAYD VQQDEw02OTIxZTE4NC0yZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IImaZKRVsQFUm4eZ8yaYCrg1SDgT6jY8evGajEZHhm0ktzGFzv4qhcDLaKX ksy0BfJu2UKj6rkjzUzhloiPq/vkaPQfxcOOVWdz5d+ZAnvoIkC4Bpb5OenxzPFo +6FJ91On3fXDKreIJ41nXSAim2pBUF3hgRyreto0hcmgKsqPvDJs5nFiLTciSfAH +zM1N1OBxuqem27vxctX9644qkbB4iY7mwZcwes9DtkU9PM3H3J4utbwEZn0Ed07 UgWSjPlRs4s+MUrU8SM29XwsDL5YDlKEqkjsx2yRpPfzDdkpjge/kgaabuBN2Xwo lEEc3yjdwn1WmqHlus9M1Qiz5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsVZLiU RTvo19a9VlYHNBoWabiFMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUQwC5jmKDDBYY/ug8EsgbLFKGAy5pJ9i4jldfzaVFXr6aTYFEDi5H KAcwI4j/QDyhrDIYBTn2WgSewZPt4HhNQedzyHa+BrYrJjz/UEjxwFDFlU6NjqOq nZ83gxSCJzkXWgFSo/Jlzw+gXhK6CWV7UW1qxSki6RFfFUWu0r3T/zJLu5qi86Zh ew5Z/kJQe0NoMBRBbJo5eG0lAe4tbUkJj0/7YgodHznUmeSJ9ACbkkOAmkogTbaT lpgV/tjYyLmjDDB+9mTe3AJmjoz1KGamGCBKjhka3n1W+NQPh8CX9yTJWg2ydqgZ WXJ59osKyxwRmiY5VIdk1kXld2U2cwcJ -----END CERTIFICATE-----Generated at Sat Nov 22 21:50:18 2025 by rpki-client