This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: hNoPruQhNcYOHlbhtZmKBCKuApiHG3JsLg6bek6ukgM= Subject key identifier: 92:A7:81:D5:24:7D:09:1B:BB:BA:55:2F:4B:A8:09:35:5F:0B:D3:97 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1341 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 132F Signing time: Mon 22 Dec 2025 16:44:08 +0000 Manifest this update: Mon 22 Dec 2025 16:44:07 +0000 Manifest next update: Mon 29 Dec 2025 16:44:07 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: 9UGv/225O3HYA8h6cqkjTCUsw8iIgHdUF8Lj1jEnOTo=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 0/XyD86MMGDFZWji3u5g4rHGi/klL7pxbtniJ4b3GEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4929 (0x1341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Dec 22 16:44:07 2025 GMT Not After : Dec 29 16:44:07 2025 GMT Subject: CN=69497557-8a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:97:2a:dc:c9:21:c2:50:f7:b4:c8:05:4b:cf: c2:c1:66:4f:b8:6b:31:0a:ab:d5:47:8d:81:dd:8b: c9:2f:98:a4:a4:6b:8b:92:df:aa:4b:ea:23:8a:28: 3a:5f:5c:07:db:15:38:1b:2f:66:ac:da:43:4a:96: 9a:d1:60:ca:62:80:59:44:5f:15:01:dd:d1:cb:a2: da:99:da:ee:5a:47:39:12:6e:bf:53:33:04:37:06: be:2c:7a:f5:21:14:79:18:64:c3:4f:3e:28:57:26: de:ae:a2:7e:1d:71:d3:79:8b:6a:5c:c6:fe:26:5a: 27:60:af:0a:73:6b:70:d8:5e:40:d5:8d:08:4e:c7: f4:1f:04:22:1e:41:e6:0c:70:56:5d:72:a1:ea:f7: 8c:b4:09:53:4b:35:e2:4f:71:42:b4:92:d4:b0:52: 1d:e3:25:b7:e6:16:17:36:78:5c:0b:39:5c:26:a2: 7d:da:92:4b:63:af:cb:39:b7:d3:1f:46:e1:3d:3a: b9:6d:48:f4:9b:08:f6:d5:c9:1c:56:ef:83:00:77: ac:6d:cd:b9:94:70:cb:98:a3:c9:c4:b5:b2:a3:a5: 3d:89:ad:b5:9d:ae:9f:56:d4:6d:27:fd:d7:fc:90: a2:53:09:cc:cb:b2:5c:44:1c:84:2f:ce:7e:d2:97: 80:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A7:81:D5:24:7D:09:1B:BB:BA:55:2F:4B:A8:09:35:5F:0B:D3:97 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:35:4a:70:a9:93:3e:f5:b1:0a:87:41:b3:92:0b:aa:13:c7: 00:3d:80:e5:0d:42:5b:0c:ae:9d:6a:86:71:9a:95:df:70:5b: 4e:1b:d5:f6:17:e8:05:72:ec:e2:11:75:15:21:53:3f:ac:1e: 8f:11:72:90:14:37:16:bb:2d:4a:a1:a0:31:22:ff:96:23:37: 16:0b:1b:9c:46:36:d9:23:54:12:51:cd:ce:d4:e5:c1:f3:96: 75:bf:b2:3a:b0:60:ee:ff:c4:80:95:a8:f9:a5:a3:35:3c:26: 5f:76:26:72:b9:9a:2c:df:24:c6:16:d6:ef:56:4a:38:25:05: 54:82:27:a4:94:60:e2:d6:de:d1:d1:58:ee:ea:b0:8d:5c:d2: 1e:86:7b:d9:9d:1f:91:fb:b2:ec:a6:1a:12:f0:6f:67:b6:c5: 49:71:99:e4:4c:e0:64:63:2d:e4:0e:5d:2d:7e:40:c7:5b:e4: 71:0d:0d:df:9e:1d:eb:05:bb:9e:57:4f:72:0b:10:2e:74:8f: d4:93:63:82:75:f9:b7:19:ab:bc:b1:75:ea:8d:fa:c9:d8:3b: 7f:6b:ab:fd:1e:69:b2:6d:e6:a4:4e:67:60:6d:25:6d:d9:c2: ca:0d:d2:73:76:50:da:6f:ad:db:87:71:8b:e9:f4:a8:af:50: a5:ba:43:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjUxMjIyMTY0NDA3WhcNMjUxMjI5MTY0NDA3WjAYMRYwFAYD VQQDDA02OTQ5NzU1Ny04YTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJcq3MkhwlD3tMgFS8/CwWZPuGsxCqvVR42B3YvJL5ikpGuLkt+qS+ojiig6 X1wH2xU4Gy9mrNpDSpaa0WDKYoBZRF8VAd3Ry6LamdruWkc5Em6/UzMENwa+LHr1 IRR5GGTDTz4oVyberqJ+HXHTeYtqXMb+JlonYK8Kc2tw2F5A1Y0ITsf0HwQiHkHm DHBWXXKh6veMtAlTSzXiT3FCtJLUsFId4yW35hYXNnhcCzlcJqJ92pJLY6/LObfT H0bhPTq5bUj0mwj21ckcVu+DAHesbc25lHDLmKPJxLWyo6U9ia21na6fVtRtJ/3X /JCiUwnMy7JcRByEL85+0peAxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKngdUk fQkbu7pVL0uoCTVfC9OXMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfNUpwqZM+9bEKh0GzkguqE8cAPYDlDUJbDK6daoZxmpXfcFtOG9X2 F+gFcuziEXUVIVM/rB6PEXKQFDcWuy1KoaAxIv+WIzcWCxucRjbZI1QSUc3O1OXB 85Z1v7I6sGDu/8SAlaj5paM1PCZfdiZyuZos3yTGFtbvVko4JQVUgieklGDi1t7R 0Vju6rCNXNIehnvZnR+R+7LsphoS8G9ntsVJcZnkTOBkYy3kDl0tfkDHW+RxDQ3f nh3rBbueV09yCxAudI/Uk2OCdfm3Gau8sXXqjfrJ2Dt/a6v9HmmybeakTmdgbSVt 2cLKDdJzdlDab63bh3GL6fSor1ClukPl -----END CERTIFICATE-----Generated at Tue Dec 23 02:00:33 2025 by rpki-client