This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: 55gqPyPOB31raXDD9X7FZ1rUAh3luW2PjsG7LUap1ZI= Subject key identifier: 5D:00:2D:31:D3:AB:0A:E8:F1:60:A4:0B:C7:76:37:2F:31:4A:63:42 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0788 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0781 Signing time: Mon 22 Dec 2025 20:50:41 +0000 Manifest this update: Mon 22 Dec 2025 20:50:41 +0000 Manifest next update: Mon 29 Dec 2025 20:50:41 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: YVO6/qsmnGVOUmSuKGbW5JwkKwfxCsRKiZNRTSdMM+Q=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1928 (0x788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Dec 22 20:50:41 2025 GMT Not After : Dec 29 20:50:41 2025 GMT Subject: CN=6949af21-94c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c8:0c:73:ac:f8:60:c6:72:57:5e:68:ec:c2: c8:eb:c0:3f:e0:66:c3:b7:ad:23:c8:46:4c:b8:b2: 56:48:8d:38:5d:d4:ba:b8:64:5d:dd:61:b3:07:6e: 4b:f0:4f:36:51:04:dc:33:e2:1a:f5:10:0e:7a:f0: 71:f5:62:c4:69:39:10:af:03:c5:17:a2:c6:62:ea: fc:3f:3c:06:85:34:32:4a:fe:cb:c5:b6:4f:59:1c: 30:29:a6:92:50:f9:f3:a7:63:ab:6f:d3:be:11:97: 1b:50:35:b3:29:26:95:d3:31:00:3b:a7:24:0d:42: 53:ed:9c:95:98:b4:8c:3e:de:33:61:e5:62:74:30: d9:6e:97:88:30:d8:40:80:8c:78:f7:e8:f8:6d:a7: b2:99:ef:66:2d:ad:37:36:e1:42:c3:64:f0:c5:e9: a3:5d:5c:a8:10:34:f0:50:b4:75:91:a1:0d:70:9e: d4:27:30:50:bc:73:f3:87:49:67:88:8c:89:51:04: 7f:30:86:32:32:9e:bd:66:d9:19:2a:b0:a3:2a:0b: fe:b2:99:96:8c:54:c3:2b:db:34:8f:f7:d3:6e:7a: 24:09:a8:38:82:8a:6c:02:4d:6d:2b:3a:b3:ad:6e: f2:fe:de:4c:9f:3b:ee:ea:90:79:dc:e7:ea:54:0c: 02:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:00:2D:31:D3:AB:0A:E8:F1:60:A4:0B:C7:76:37:2F:31:4A:63:42 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:79:68:be:e7:d3:ca:86:60:f6:36:67:8d:8d:ab:2b:76:42: 58:a9:86:51:0a:ad:4a:76:a3:5b:20:50:7f:0f:d9:f4:70:3f: 92:5e:60:25:29:ab:f1:4d:cd:48:12:ab:9d:69:55:aa:47:0f: a2:be:cf:94:21:90:5f:31:12:3c:cc:dc:cc:ac:5f:8a:b5:2e: 70:3c:ff:02:d2:b5:8a:86:11:8d:fe:05:59:7b:f1:6c:0b:34: 86:ae:81:24:29:12:84:8a:b7:9a:1a:d3:34:4e:26:ce:f6:8d: e0:b0:e9:c6:a8:91:d2:d6:ec:93:6f:bb:11:27:91:c7:4b:56: 97:39:62:92:b5:70:b8:48:2e:e4:6c:02:26:85:9b:61:71:46: 66:fd:d1:9a:22:66:b4:53:7e:e9:6b:a2:d6:23:91:75:52:cd: 64:0d:6f:20:07:8c:f2:fb:0d:65:ed:cf:b7:f0:27:4c:c0:42: 9e:23:6c:b1:10:be:6c:c8:8c:e9:79:d7:db:4b:48:92:56:77: cf:63:a3:75:75:21:c9:aa:2b:4a:e8:7e:85:0a:52:5a:92:9e: 46:ce:a1:d8:95:e8:cf:c6:32:1f:3d:4f:9b:25:cb:87:b7:0a: 6d:61:55:7f:4b:18:50:48:57:67:1d:b7:02:b0:2d:b9:02:31: 6f:4b:3f:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUxMjIyMjA1MDQxWhcNMjUxMjI5MjA1MDQxWjAYMRYwFAYD VQQDDA02OTQ5YWYyMS05NGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8gMc6z4YMZyV15o7MLI68A/4GbDt60jyEZMuLJWSI04XdS6uGRd3WGzB25L 8E82UQTcM+Ia9RAOevBx9WLEaTkQrwPFF6LGYur8PzwGhTQySv7LxbZPWRwwKaaS UPnzp2Orb9O+EZcbUDWzKSaV0zEAO6ckDUJT7ZyVmLSMPt4zYeVidDDZbpeIMNhA gIx49+j4baeyme9mLa03NuFCw2TwxemjXVyoEDTwULR1kaENcJ7UJzBQvHPzh0ln iIyJUQR/MIYyMp69ZtkZKrCjKgv+spmWjFTDK9s0j/fTbnokCag4gopsAk1tKzqz rW7y/t5Mnzvu6pB53OfqVAwC4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0ALTHT qwro8WCkC8d2Ny8xSmNCMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABeWi+59PKhmD2NmeNjasrdkJYqYZRCq1KdqNbIFB/D9n0cD+SXmAl KavxTc1IEqudaVWqRw+ivs+UIZBfMRI8zNzMrF+KtS5wPP8C0rWKhhGN/gVZe/Fs CzSGroEkKRKEireaGtM0TibO9o3gsOnGqJHS1uyTb7sRJ5HHS1aXOWKStXC4SC7k bAImhZthcUZm/dGaIma0U37pa6LWI5F1Us1kDW8gB4zy+w1l7c+38CdMwEKeI2yx EL5syIzpedfbS0iSVnfPY6N1dSHJqitK6H6FClJakp5GzqHYlejPxjIfPU+bJcuH twptYVV/SxhQSFdnHbcCsC25AjFvSz/k -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:12 2025 by rpki-client