This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft File: 4-j_B54D_aQzRoidk3ZblZ9uHVk.mft (raw, json) Hash identifier: zNT2VYoEoEDrfLfpqNxE1AEVbzAxaTGEi+WJyYKVCG4= Subject key identifier: AA:21:4F:1C:D0:16:B2:A7:7C:E6:04:2F:49:29:7B:CC:80:8E:8D:D8 Authority key identifier: E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 Certificate issuer: /CN=A91D09B8/serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft Manifest number: 011D Signing time: Tue 23 Dec 2025 03:45:50 +0000 Manifest this update: Tue 23 Dec 2025 03:45:49 +0000 Manifest next update: Tue 30 Dec 2025 03:45:49 +0000 Files and hashes: 1: 4-j_B54D_aQzRoidk3ZblZ9uHVk.crl (hash: ajTi2Y7t0dqbLu3Ui5LzsaWMfSSktsiAZVp2R+ckRbI=) 2: 7594FBFA2C7311EFA27A6526C4F9AE02.roa (hash: 1wzYMLFHk5w163izK/FwbdDLwMdZuNPTMa1yYNCw1jQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09B8, serialNumber=E3E8FF079E03FDA43346889D93765B959F6E1D59 Validity Not Before: Dec 23 03:45:49 2025 GMT Not After : Dec 30 03:45:49 2025 GMT Subject: CN=694a106e-efe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:fb:84:0d:33:a9:23:8c:61:5b:d4:f1:25: ce:6d:28:29:fc:7b:31:b4:50:7d:03:c9:9d:70:95: dc:fe:43:d5:43:b3:ee:3c:40:9d:6b:02:24:ac:83: 63:e3:26:11:9f:77:de:a4:b2:35:35:95:77:b5:41: 6b:58:26:60:44:9d:9a:06:c0:22:d9:8a:e4:ff:15: 4f:e6:12:28:e8:62:54:d0:a5:9d:cd:a6:44:82:ea: c5:9e:ef:b6:9f:cb:8c:fd:27:e9:dd:e8:96:89:23: ce:9c:ec:a2:21:2c:61:33:ce:c0:96:62:96:11:b3: da:6d:64:37:c5:da:a6:5c:f1:72:75:c0:b9:12:16: 70:b1:4b:f9:78:8a:d6:a5:8e:8c:a0:79:eb:47:d3: 9d:fe:39:3a:de:fc:9d:e2:5f:61:88:fc:22:24:26: b4:c6:05:d5:9e:b7:3f:05:f4:da:33:5f:dc:d0:f8: 83:ef:13:aa:34:41:4e:f3:54:2b:1b:0a:e4:bd:5e: 17:39:a5:9b:a8:b6:ea:b3:5d:b6:40:c0:4a:7b:d8: 5e:9b:7d:5e:cf:28:b6:eb:94:14:9c:22:7b:57:5d: d3:fb:e4:34:1e:b8:f4:8c:19:1a:42:8f:3f:0d:41: 00:03:24:8b:fc:45:71:55:ec:ad:a8:f6:a1:a5:20: ef:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:21:4F:1C:D0:16:B2:A7:7C:E6:04:2F:49:29:7B:CC:80:8E:8D:D8 X509v3 Authority Key Identifier: keyid:E3:E8:FF:07:9E:03:FD:A4:33:46:88:9D:93:76:5B:95:9F:6E:1D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-j_B54D_aQzRoidk3ZblZ9uHVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09B8/6AB99E262C7211EFB89B0F84C4F9AE02/4-j_B54D_aQzRoidk3ZblZ9uHVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:3a:d8:ef:5c:e6:92:13:1d:8b:a2:b4:0c:61:54:b6:3a:2e: 85:63:f6:e1:95:da:9b:3e:ac:6c:ba:e5:97:fd:39:96:46:b7: 89:b1:87:c4:26:d7:21:e5:84:88:4a:bc:88:ce:05:ef:4e:e4: bf:b1:ea:13:68:84:ed:f7:b1:8c:f4:32:54:46:07:c6:6e:07: 85:e5:81:ad:d3:5d:91:e4:0a:68:d5:4d:c4:01:e9:9b:82:e6: 96:9c:54:77:0b:ca:c3:e4:f3:2d:66:38:89:f2:7b:e9:a2:4c: 2a:84:77:ad:6b:fc:7b:c9:04:27:42:5d:22:6d:37:bc:b8:9b: 66:07:bb:83:ed:3f:e2:2c:90:56:a2:93:15:6e:5c:0d:08:4b: e5:30:a2:d2:29:48:f3:c3:98:28:d7:ef:6f:e1:72:ac:cf:f9: 7e:2c:6a:e0:b0:1a:6e:ce:9d:e8:2c:35:5e:33:ce:1c:53:1c: 6d:2e:d7:09:b6:e0:00:96:c7:77:ac:4d:6f:35:8a:10:48:b2: a6:5d:c3:5c:b4:db:3c:66:80:dc:87:a9:19:53:24:b2:4e:06: 88:02:50:d7:33:cd:2a:03:63:a8:5a:3d:e2:2e:dd:f5:ed:0a: 01:dc:62:f1:63:80:ec:c9:84:85:64:e5:cb:58:f6:a6:96:2e: ff:39:62:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QjgxMTAvBgNVBAUTKEUzRThGRjA3OUUwM0ZEQTQzMzQ2ODg5RDkzNzY1Qjk1 OUY2RTFENTkwHhcNMjUxMjIzMDM0NTQ5WhcNMjUxMjMwMDM0NTQ5WjAYMRYwFAYD VQQDDA02OTRhMTA2ZS1lZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbv7hA0zqSOMYVvU8SXObSgp/HsxtFB9A8mdcJXc/kPVQ7PuPECdawIkrINj 4yYRn3fepLI1NZV3tUFrWCZgRJ2aBsAi2Yrk/xVP5hIo6GJU0KWdzaZEgurFnu+2 n8uM/Sfp3eiWiSPOnOyiISxhM87AlmKWEbPabWQ3xdqmXPFydcC5EhZwsUv5eIrW pY6MoHnrR9Od/jk63vyd4l9hiPwiJCa0xgXVnrc/BfTaM1/c0PiD7xOqNEFO81Qr GwrkvV4XOaWbqLbqs122QMBKe9hem31ezyi265QUnCJ7V13T++Q0Hrj0jBkaQo8/ DUEAAySL/EVxVeytqPahpSDvSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKohTxzQ FrKnfOYEL0kpe8yAjo3YMB8GA1UdIwQYMBaAFOPo/weeA/2kM0aInZN2W5Wfbh1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCOC82QUI5OUUyNjJD NzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9hUXpSb2lkazNaYmxaOXVI VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtal9CNTREX2FRelJvaWRrM1pibFo5dUhWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCOC82QUI5OUUyNjJDNzIxMUVGQjg5QjBGODRDNEY5QUUwMi80LWpfQjU0RF9h UXpSb2lkazNaYmxaOXVIVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEOtjvXOaSEx2LorQMYVS2Oi6FY/bhldqbPqxsuuWX/TmWRreJsYfE Jtch5YSISryIzgXvTuS/seoTaITt97GM9DJURgfGbgeF5YGt012R5Apo1U3EAemb guaWnFR3C8rD5PMtZjiJ8nvpokwqhHeta/x7yQQnQl0ibTe8uJtmB7uD7T/iLJBW opMVblwNCEvlMKLSKUjzw5go1+9v4XKsz/l+LGrgsBpuzp3oLDVeM84cUxxtLtcJ tuAAlsd3rE1vNYoQSLKmXcNctNs8ZoDch6kZUySyTgaIAlDXM80qA2OoWj3iLt31 7QoB3GLxY4DsyYSFZOXLWPamli7/OWIv -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:30 2025 by rpki-client