This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: uYPn2I3TrLaKMuBk3B+NajLx9KenKIYRD8v9lEBP6v0= Subject key identifier: 21:E1:44:31:34:C9:67:80:ED:FE:14:29:4C:72:6D:9F:05:B1:C6:58 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 081A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 080F Signing time: Tue 16 Dec 2025 20:31:45 +0000 Manifest this update: Tue 16 Dec 2025 20:31:44 +0000 Manifest next update: Tue 23 Dec 2025 20:31:44 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: ZAye0jAxbmi7uLxhZBoEbS3xEzUhrdAaiZlPSQ3DV+0=) 2: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) 3: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 20:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2074 (0x81a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Dec 16 20:31:44 2025 GMT Not After : Dec 23 20:31:44 2025 GMT Subject: CN=6941c1b1-7c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:4e:ab:35:34:1d:be:3f:74:93:0e:1c:3b: 0c:78:82:59:1b:a8:fe:14:59:20:52:2e:b9:a7:ab: 32:cd:35:68:db:85:72:67:da:4e:46:0d:09:81:48: 3e:72:fa:00:f7:d8:c8:8d:86:5c:01:ff:d5:b8:2b: 9e:06:91:8d:72:4c:2f:89:ff:4a:20:86:e4:99:55: 6d:00:08:16:24:46:c5:1e:39:87:91:4a:b3:e1:2d: 93:50:4a:b7:99:07:c7:72:36:eb:e8:24:f4:2c:eb: 32:04:fa:7f:cd:3f:07:c2:f7:3e:4a:e9:1f:21:76: 4c:ab:99:90:3e:c6:0c:12:38:df:46:f8:62:a3:f4: 77:eb:25:b4:e5:10:0e:44:d1:cc:f9:d7:4f:d8:3f: b2:cb:20:e6:20:2b:d3:32:dd:d9:c7:f7:23:2f:40: df:0c:53:e7:d1:aa:bc:d3:7e:4f:88:c5:9e:7d:36: bf:7a:6f:7d:27:8b:a2:04:bc:db:0c:c8:7b:02:19: 89:71:4b:34:cc:fe:d2:ff:dc:9b:d1:d8:4b:b6:4c: 2b:fd:d0:c8:48:4c:d5:5a:5d:25:8d:11:dd:09:44: 28:88:1f:86:e2:53:ad:78:ea:17:fb:a7:2d:26:34: 9c:2b:88:89:6f:00:aa:77:1a:8d:a9:1b:55:6f:2b: 6b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E1:44:31:34:C9:67:80:ED:FE:14:29:4C:72:6D:9F:05:B1:C6:58 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:5b:27:df:70:03:f6:6e:7a:92:77:a3:26:33:e4:91:cd:bc: d8:f7:fc:d5:95:80:aa:b2:b3:07:58:cd:4b:55:c6:8c:b6:2e: ab:44:e9:d0:80:51:06:46:3c:09:e8:78:6a:10:cd:01:c7:66: 87:dd:10:97:a0:57:01:21:fe:8e:96:7a:e8:86:46:fc:0d:3e: f9:6e:04:7b:4d:c1:82:0d:bf:a4:22:47:78:3b:24:1c:6e:ef: 8f:6c:5e:3c:5e:1f:70:74:f6:5e:62:a1:05:e3:cd:d7:8b:d4: b1:9e:47:51:1b:21:04:17:d9:62:df:53:61:4a:f7:02:71:5e: 25:50:75:24:98:4f:8e:f8:9f:f3:74:74:29:e6:46:44:ec:4e: 70:0a:08:e2:4c:44:fa:6b:ab:a9:c3:3a:58:ab:4c:a8:df:c5: fa:fa:c9:c3:f2:70:f3:ff:e5:02:82:ed:b9:3c:04:e1:ae:d0: 9c:ae:6f:86:27:f1:7e:39:22:28:05:76:9d:e2:5b:dd:14:ef: 6d:6b:02:84:7a:59:0a:ea:28:f4:1f:69:38:9d:76:8b:ba:ce: fc:b9:7e:5f:a2:7b:0b:78:93:52:d5:18:43:e0:8e:61:d8:91: 08:44:2f:cd:29:ad:e5:d0:1f:61:b8:7d:a0:2b:97:bc:b6:94: 3f:28:a2:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMjE2MjAzMTQ0WhcNMjUxMjIzMjAzMTQ0WjAYMRYwFAYD VQQDDA02OTQxYzFiMS03YzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tBOqzU0Hb4/dJMOHDsMeIJZG6j+FFkgUi65p6syzTVo24VyZ9pORg0JgUg+ cvoA99jIjYZcAf/VuCueBpGNckwvif9KIIbkmVVtAAgWJEbFHjmHkUqz4S2TUEq3 mQfHcjbr6CT0LOsyBPp/zT8Hwvc+SukfIXZMq5mQPsYMEjjfRvhio/R36yW05RAO RNHM+ddP2D+yyyDmICvTMt3Zx/cjL0DfDFPn0aq8035PiMWefTa/em99J4uiBLzb DMh7AhmJcUs0zP7S/9yb0dhLtkwr/dDISEzVWl0ljRHdCUQoiB+G4lOteOoX+6ct JjScK4iJbwCqdxqNqRtVbytrDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHhRDE0 yWeA7f4UKUxybZ8FscZYMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeWyffcAP2bnqSd6MmM+SRzbzY9/zVlYCqsrMHWM1LVcaMti6rROnQ gFEGRjwJ6HhqEM0Bx2aH3RCXoFcBIf6Olnrohkb8DT75bgR7TcGCDb+kIkd4OyQc bu+PbF48Xh9wdPZeYqEF483Xi9SxnkdRGyEEF9li31NhSvcCcV4lUHUkmE+O+J/z dHQp5kZE7E5wCgjiTET6a6upwzpYq0yo38X6+snD8nDz/+UCgu25PAThrtCcrm+G J/F+OSIoBXad4lvdFO9tawKEelkK6ij0H2k4nXaLus78uX5fonsLeJNS1RhD4I5h 2JEIRC/NKa3l0B9huH2gK5e8tpQ/KKL8 -----END CERTIFICATE-----Generated at Thu Dec 18 05:02:03 2025 by rpki-client