This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: 6rGRUmStwFCZ0IfeD6t49PThuPBzbVBHcjt6IkKrq4I= Subject key identifier: 1B:19:FF:29:14:2E:B3:BC:B1:8F:B4:30:5D:37:48:09:DA:8A:7E:BC Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: 0101 Signing time: Wed 17 Dec 2025 04:38:17 +0000 Manifest this update: Wed 17 Dec 2025 04:38:17 +0000 Manifest next update: Wed 24 Dec 2025 04:38:17 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 44qgIZiO/e9q5X06ek8UJ3pEH/MC5TEFSQNVwKBqX2A=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: NMTDk1bikkd+fwdk2/Llio0zL8hpaBeHBKsi3D4d+4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 04:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Dec 17 04:38:17 2025 GMT Not After : Dec 24 04:38:17 2025 GMT Subject: CN=694233b9-e052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:55:61:d9:7e:42:9b:51:b6:d8:ec:b0:78:91: 6c:0d:e3:f4:2f:f3:7b:ab:1d:97:6a:05:1f:fc:85: 95:ba:05:b9:5a:38:1e:40:96:5f:0a:07:06:12:ab: dc:e2:50:f9:4b:ac:81:7b:14:9d:90:4c:6d:eb:c0: 4f:ec:95:60:9f:81:2a:f8:18:ca:17:82:c8:d9:b7: 64:b7:b2:d0:a0:99:b1:f2:87:18:7a:65:ba:b3:d3: 4a:99:a5:7e:15:d9:9e:a0:a0:a4:7f:d4:9f:82:8f: 10:ce:35:76:10:da:5a:d0:62:a6:96:64:5f:b6:f1: c3:4c:96:fc:f7:84:98:a8:32:d0:d4:70:84:c0:50: 74:3b:93:a2:cd:18:70:48:33:c3:5b:97:99:ca:8a: c6:6d:98:00:4e:8c:e2:7e:bb:c7:54:3a:94:0a:cf: 8a:93:2e:12:79:be:3d:5d:87:9d:d5:84:1c:78:9e: e7:ee:9f:c4:49:e6:e7:e8:98:91:7e:27:a6:68:51: 1e:3d:54:09:9e:97:34:3c:e4:72:c9:00:64:c7:b2: 12:90:15:3d:37:39:be:7f:9a:f6:a2:f5:26:ce:97: db:eb:bc:ba:34:86:5a:80:9b:1e:aa:8e:89:10:05: 04:53:b7:01:7b:6c:37:a0:62:41:3b:9f:f9:7a:5a: 9e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:19:FF:29:14:2E:B3:BC:B1:8F:B4:30:5D:37:48:09:DA:8A:7E:BC X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:86:95:7c:2f:3e:84:34:62:bc:1d:df:eb:b7:58:8f:3c:00: 23:1c:d2:84:0a:ad:aa:c0:91:59:01:c2:0f:de:ce:d8:8f:d7: 0b:90:61:7a:24:61:c5:1f:d3:e5:20:09:27:4d:26:22:0b:b7: e9:bb:3c:ae:75:8c:7e:63:a8:6f:84:55:98:08:a0:58:36:3a: bc:b7:6f:32:62:a9:49:85:c3:26:17:cc:9b:76:f2:ba:8a:8e: 38:14:49:dd:95:89:19:4c:9c:6b:fc:63:d3:5b:02:65:bb:d2: a9:f0:2e:23:10:8f:52:bd:5d:d6:57:bc:36:3c:4f:59:c1:16: c5:ad:8e:e6:8b:eb:6d:ea:59:c3:4f:77:de:6e:6c:b3:85:f9: 87:e5:b4:f0:9e:02:1c:9c:2b:31:ab:20:5c:77:04:63:67:4d: 57:74:bc:5a:97:93:42:d8:d4:51:03:4a:d6:e3:dc:ca:40:c1: c0:2e:4d:ac:ff:34:18:5e:87:d7:98:6b:1b:22:d7:0f:8a:eb: 25:de:62:54:14:3d:2b:23:a7:a5:9a:fe:53:11:ea:56:60:b9: 94:b8:e1:82:f1:07:da:72:2f:d5:16:c1:7a:d4:06:91:2a:f7: 24:ef:61:a3:a1:ac:14:37:f6:e4:33:01:65:49:73:74:25:75: 7e:cd:c6:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUxMjE3MDQzODE3WhcNMjUxMjI0MDQzODE3WjAYMRYwFAYD VQQDDA02OTQyMzNiOS1lMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVVh2X5Cm1G22OyweJFsDeP0L/N7qx2XagUf/IWVugW5WjgeQJZfCgcGEqvc 4lD5S6yBexSdkExt68BP7JVgn4Eq+BjKF4LI2bdkt7LQoJmx8ocYemW6s9NKmaV+ FdmeoKCkf9Sfgo8QzjV2ENpa0GKmlmRftvHDTJb894SYqDLQ1HCEwFB0O5OizRhw SDPDW5eZyorGbZgATozifrvHVDqUCs+Kky4Seb49XYed1YQceJ7n7p/ESebn6JiR fiemaFEePVQJnpc0PORyyQBkx7ISkBU9Nzm+f5r2ovUmzpfb67y6NIZagJseqo6J EAUEU7cBe2w3oGJBO5/5elqedQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsZ/ykU LrO8sY+0MF03SAnain68MB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCghpV8Lz6ENGK8Hd/rt1iPPAAjHNKECq2qwJFZAcIP3s7Yj9cLkGF6 JGHFH9PlIAknTSYiC7fpuzyudYx+Y6hvhFWYCKBYNjq8t28yYqlJhcMmF8ybdvK6 io44FEndlYkZTJxr/GPTWwJlu9Kp8C4jEI9SvV3WV7w2PE9ZwRbFrY7mi+tt6lnD T3febmyzhfmH5bTwngIcnCsxqyBcdwRjZ01XdLxal5NC2NRRA0rW49zKQMHALk2s /zQYXofXmGsbItcPiusl3mJUFD0rI6elmv5TEepWYLmUuOGC8Qfaci/VFsF61AaR Kvck72GjoawUN/bkMwFlSXN0JXV+zcYA -----END CERTIFICATE-----Generated at Thu Dec 18 06:07:04 2025 by rpki-client