This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: d8OgstdIT+8YrRxGAfBa2ZP0NwhlO1IiWLPehujs+bs= Subject key identifier: 94:EA:F3:CE:CD:AE:1E:2A:4E:C6:B5:2D:A3:EF:E0:03:B6:09:EA:AA Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05E9 Signing time: Wed 10 Dec 2025 21:37:23 +0000 Manifest this update: Wed 10 Dec 2025 21:37:22 +0000 Manifest next update: Wed 17 Dec 2025 21:37:22 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: jrQvg4+pqRdn/jOUL4/LXiXotAUAVjhkjaNxYsmaRMk=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 21:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Dec 10 21:37:22 2025 GMT Not After : Dec 17 21:37:22 2025 GMT Subject: CN=6939e812-48ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:a2:18:3b:aa:a3:00:bc:91:52:bd:6a:fd: df:59:0b:85:52:0a:f9:36:9a:ba:23:cc:33:94:bd: 94:d2:f6:79:ff:fd:0b:27:57:ba:ab:0d:c0:40:23: 24:ad:9c:08:b3:3e:de:af:29:56:a4:b0:cc:4c:60: 49:1e:79:ba:5b:4b:62:3a:48:7f:0e:0f:dd:87:da: 15:a9:78:c9:f5:eb:6d:54:64:3e:76:99:83:24:df: dd:8c:46:51:f8:a0:6d:3b:35:12:2b:bc:72:ae:d7: 7e:1f:b9:da:4c:4b:88:df:82:f1:63:5a:e2:cf:76: cb:47:2c:3f:a8:f7:fb:11:36:85:36:b7:3b:de:f4: 6a:98:be:2f:c1:1b:b7:dc:f3:29:a0:8d:b0:71:d2: 7e:70:c7:c1:00:4a:dd:b6:7c:a9:3a:a2:ba:27:90: 73:a8:a4:06:a3:eb:c0:e0:5a:38:ec:16:54:c5:c4: 68:33:3e:0b:8c:c5:d3:26:2a:e7:95:66:bd:a6:39: 63:3c:1f:8f:6f:56:33:86:b5:02:51:8a:aa:9a:c1: 83:26:22:6a:98:9f:a6:25:b8:fd:1a:a1:b5:e0:da: 88:71:eb:e6:dd:29:88:fd:8a:0d:15:ba:40:fb:dd: b8:59:b6:72:7c:2f:2a:50:3e:d3:bd:52:e9:20:11: 5b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:EA:F3:CE:CD:AE:1E:2A:4E:C6:B5:2D:A3:EF:E0:03:B6:09:EA:AA X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:8d:50:ba:22:98:08:22:d3:3d:42:77:37:d2:d7:76:12:cb: ae:8d:5a:34:dc:b4:75:89:8e:35:82:9a:6b:9e:8a:84:f6:0d: 04:55:ce:c1:39:f3:39:9e:9a:0f:63:fc:ef:dc:35:f2:7d:61: de:45:4c:c0:66:5a:32:95:4a:1c:7e:46:02:2e:16:29:f8:5b: b7:bd:2f:16:16:5f:cd:de:fc:05:e0:e2:71:eb:02:68:39:b5: d5:23:65:3c:ea:b7:0b:38:11:36:c2:2c:8c:c1:65:67:c9:9d: 21:25:ce:95:4f:a4:0d:af:62:72:32:c2:b4:e9:24:04:e0:5f: 72:cc:54:6d:87:a1:91:2d:ba:f6:99:7b:c6:b3:e1:25:55:05: a6:e4:9b:76:d7:f6:41:b5:d9:1d:a1:f6:96:96:85:25:9e:31: 8b:f7:fe:82:9c:92:85:fb:db:bc:21:8b:1a:2d:51:e1:53:8d: 5d:73:91:84:be:af:1d:46:c7:0d:1b:14:bd:cd:33:59:52:f8: 61:c3:dd:74:ac:df:18:d4:67:d8:4a:a5:6d:f2:ee:74:b9:7a: 6d:00:27:67:f5:c8:e0:d9:32:34:06:c4:0a:95:46:6b:ae:60: 7d:05:d1:81:61:80:e3:da:35:45:5c:ab:ea:1d:cc:b2:c1:03: bd:af:82:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMjEwMjEzNzIyWhcNMjUxMjE3MjEzNzIyWjAYMRYwFAYD VQQDEw02OTM5ZTgxMi00OGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrqiGDuqowC8kVK9av3fWQuFUgr5Npq6I8wzlL2U0vZ5//0LJ1e6qw3AQCMk rZwIsz7erylWpLDMTGBJHnm6W0tiOkh/Dg/dh9oVqXjJ9ettVGQ+dpmDJN/djEZR +KBtOzUSK7xyrtd+H7naTEuI34LxY1riz3bLRyw/qPf7ETaFNrc73vRqmL4vwRu3 3PMpoI2wcdJ+cMfBAErdtnypOqK6J5BzqKQGo+vA4Fo47BZUxcRoMz4LjMXTJirn lWa9pjljPB+Pb1YzhrUCUYqqmsGDJiJqmJ+mJbj9GqG14NqIcevm3SmI/YoNFbpA +924WbZyfC8qUD7TvVLpIBFbAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTq887N rh4qTsa1LaPv4AO2CeqqMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3jVC6IpgIItM9Qnc30td2EsuujVo03LR1iY41gpprnoqE9g0EVc7B OfM5npoPY/zv3DXyfWHeRUzAZloylUocfkYCLhYp+Fu3vS8WFl/N3vwF4OJx6wJo ObXVI2U86rcLOBE2wiyMwWVnyZ0hJc6VT6QNr2JyMsK06SQE4F9yzFRth6GRLbr2 mXvGs+ElVQWm5Jt21/ZBtdkdofaWloUlnjGL9/6CnJKF+9u8IYsaLVHhU41dc5GE vq8dRscNGxS9zTNZUvhhw910rN8Y1GfYSqVt8u50uXptACdn9cjg2TI0BsQKlUZr rmB9BdGBYYDj2jVFXKvqHcyywQO9r4I9 -----END CERTIFICATE-----Generated at Fri Dec 12 08:26:52 2025 by rpki-client