This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: cSS6831yh17QOm3Hpb/uANB4gkj4slGzXnU1YvLZnQw= Subject key identifier: AD:13:FD:23:33:7B:4D:45:78:A1:AF:D0:08:52:65:C9:E2:DD:BC:F4 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 0521 Signing time: Sat 20 Dec 2025 22:49:52 +0000 Manifest this update: Sat 20 Dec 2025 22:49:51 +0000 Manifest next update: Sat 27 Dec 2025 22:49:51 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: wdAcR3X/+egKXuW1CfVZAWasBEj9B9timyhVI8SopgQ=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: LIC3UjwuX1L1kGuepSck3yzfK3nMMe4EkNAzNmI2D14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA, serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: Dec 20 22:49:51 2025 GMT Not After : Dec 27 22:49:51 2025 GMT Subject: CN=6947280f-725c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:0e:55:e3:b5:c2:8a:60:7c:a4:48:47:bb: e6:1e:69:5b:1c:a1:3e:3d:75:e1:56:6d:c9:4f:fd: 9d:06:3e:e2:f1:06:5d:31:96:e1:9a:a7:d3:9f:95: 25:3a:0e:24:51:fb:e4:d8:5c:a8:13:4b:9b:88:ee: fe:04:6c:ac:1c:8c:8b:59:61:c5:c8:15:e5:6b:3a: 94:5a:c6:60:5e:7c:d2:01:68:59:be:2a:58:8a:16: f4:02:83:1d:89:82:8c:29:1d:87:80:2f:ba:c7:ec: 44:2d:4f:5c:96:de:03:ae:28:0e:1e:5f:85:24:c3: 04:65:84:8a:1e:eb:56:5c:e1:f1:cb:72:89:c6:da: 06:c8:1e:4e:f3:29:61:59:70:8b:09:73:2a:e5:38: 1b:8d:a7:77:3c:94:44:5b:e7:fd:f4:8c:16:88:5c: 82:e7:b6:96:8c:42:ca:60:bd:3d:bd:87:72:07:22: ca:51:75:7d:77:d1:3d:27:01:05:72:6a:2b:9b:56: 48:ad:57:d8:67:f3:f2:fd:2b:09:39:43:d8:23:60: cf:6d:c7:ec:01:70:71:5e:d7:8e:39:de:bb:db:09: c5:7d:5d:ca:17:0a:76:d9:1b:48:bf:3d:17:5d:2f: b5:e0:80:61:f6:70:e6:c3:6a:fc:2d:ee:eb:d1:17: 55:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:13:FD:23:33:7B:4D:45:78:A1:AF:D0:08:52:65:C9:E2:DD:BC:F4 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:57:a8:97:0c:6a:5d:de:15:5b:dc:f6:d4:18:c3:d3:d8:b1: b4:fd:43:cc:a1:68:13:28:30:4c:e8:01:4d:41:b7:49:48:47: d9:3b:99:1e:c5:30:83:f8:97:f2:6a:0c:01:26:6f:07:58:fa: 17:50:d6:3e:ae:a8:f0:27:0a:27:43:24:4a:3c:10:ee:30:3d: c2:65:3b:fd:93:c7:7d:64:b8:69:6b:1d:ad:3c:bf:a9:d0:16: 91:52:11:38:bf:21:ac:7a:1a:66:27:ce:0b:0a:46:53:13:9d: 0b:2f:31:70:10:78:d7:a2:e0:bb:5a:9c:4a:ad:0e:a2:e2:9d: 3a:7d:03:34:30:ae:fa:99:a2:78:58:17:ff:7b:23:91:af:c1: a7:d8:90:03:39:11:b0:50:d4:48:3a:09:67:5d:67:d4:e8:33: ea:6a:7b:c0:0d:19:cf:be:dd:9b:9a:d3:2f:73:6d:cd:a5:12: f1:6b:a4:0b:9c:80:60:c5:5e:33:4f:f0:1c:6f:ce:81:28:0a: af:b3:41:f3:f8:ef:b7:7d:c0:de:2e:3a:ea:e5:31:ad:2f:fe: 4a:92:cb:17:c5:7a:2b:ba:cd:ec:12:9f:03:ff:07:3e:db:ca: 78:85:ba:fc:f4:cd:91:3d:7a:78:3a:08:08:da:55:aa:52:1b: 23:9a:fb:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjUxMjIwMjI0OTUxWhcNMjUxMjI3MjI0OTUxWjAYMRYwFAYD VQQDDA02OTQ3MjgwZi03MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOkOVeO1wopgfKRIR7vmHmlbHKE+PXXhVm3JT/2dBj7i8QZdMZbhmqfTn5Ul Og4kUfvk2FyoE0ubiO7+BGysHIyLWWHFyBXlazqUWsZgXnzSAWhZvipYihb0AoMd iYKMKR2HgC+6x+xELU9clt4DrigOHl+FJMMEZYSKHutWXOHxy3KJxtoGyB5O8ylh WXCLCXMq5Tgbjad3PJREW+f99IwWiFyC57aWjELKYL09vYdyByLKUXV9d9E9JwEF cmorm1ZIrVfYZ/Py/SsJOUPYI2DPbcfsAXBxXteOOd672wnFfV3KFwp22RtIvz0X XS+14IBh9nDmw2r8Le7r0RdVHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0T/SMz e01FeKGv0AhSZcni3bz0MB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtV6iXDGpd3hVb3PbUGMPT2LG0/UPMoWgTKDBM6AFNQbdJSEfZO5ke xTCD+JfyagwBJm8HWPoXUNY+rqjwJwonQyRKPBDuMD3CZTv9k8d9ZLhpax2tPL+p 0BaRUhE4vyGsehpmJ84LCkZTE50LLzFwEHjXouC7WpxKrQ6i4p06fQM0MK76maJ4 WBf/eyORr8Gn2JADORGwUNRIOglnXWfU6DPqanvADRnPvt2bmtMvc23NpRLxa6QL nIBgxV4zT/Acb86BKAqvs0Hz+O+3fcDeLjrq5TGtL/5KkssXxXorus3sEp8D/wc+ 28p4hbr89M2RPXp4OggI2lWqUhsjmvs8 -----END CERTIFICATE-----Generated at Mon Dec 22 08:31:49 2025 by rpki-client