This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: 34k+XvsWDaXn2cbM69iprovTexmJ6GZC0LaQwUr6eAs= Subject key identifier: 85:3C:2A:EB:E3:D4:54:17:2F:0C:13:D6:C0:49:1D:A0:EB:68:6A:2F Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0232 Signing time: Fri 05 Dec 2025 00:17:00 +0000 Manifest this update: Fri 05 Dec 2025 00:16:59 +0000 Manifest next update: Fri 12 Dec 2025 00:16:59 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: 9mguGvVDRVcZ8X8nQV4cSxNTw40DpjylWpBXxQUUDgc=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Dec 5 00:16:59 2025 GMT Not After : Dec 12 00:16:59 2025 GMT Subject: CN=6932247c-1c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:2d:3a:d0:47:20:12:91:67:64:42:21:19: 1d:e1:2a:b8:4a:b6:0f:67:5d:c4:c5:09:74:dd:2c: 2c:79:0f:13:30:66:59:fb:7d:02:ee:ef:93:4d:16: 17:7e:d3:95:01:25:a9:3a:d7:08:37:77:00:fe:09: 23:87:84:44:22:45:ec:43:b9:99:9c:a5:61:1d:3f: 7c:14:48:c6:2e:71:26:9f:b6:68:33:d5:93:40:dc: c6:ea:22:27:9d:d9:7d:6f:d9:a6:cd:06:6d:6a:35: 06:dd:9a:62:ea:9b:fa:7a:5b:6f:c5:e8:01:d3:ab: f6:ce:67:b5:4b:6a:05:21:01:06:40:40:ab:bc:e9: 1a:bb:a1:8e:6f:73:84:af:3f:30:72:c6:93:44:39: 27:35:2c:76:82:bd:99:c6:d8:53:62:b1:0e:1c:42: 74:87:dc:e3:30:58:6e:ae:8a:e7:21:14:f6:58:ad: ac:7d:6a:be:db:7c:d3:eb:33:5e:82:d4:c2:53:88: bb:ca:b2:0e:1f:52:c4:dc:de:67:dd:3f:0a:4a:ad: 32:92:f2:e2:5d:40:6c:9a:16:96:02:43:68:b0:b1: b6:92:0e:e4:c6:78:9b:0b:78:b9:5e:8b:65:ae:42: ab:3a:5f:ea:29:d7:94:29:67:45:1c:ed:e9:06:f4: 70:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3C:2A:EB:E3:D4:54:17:2F:0C:13:D6:C0:49:1D:A0:EB:68:6A:2F X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:40:41:ce:da:89:dc:19:24:b7:4a:85:b6:9f:de:9b:48:cb: 37:02:53:7d:75:98:83:1b:1f:8a:55:2b:6f:e8:b1:6d:a0:05: 00:c0:ba:ea:d1:f7:7e:75:2a:52:44:4d:90:cb:a4:d8:7c:a6: 8b:81:76:fe:0c:36:b9:8f:cf:19:b8:29:c7:e6:e5:ac:cd:99: f1:40:76:90:7a:2d:54:d7:66:9e:88:5d:fd:a0:45:b4:bb:ed: eb:ec:f1:ba:ec:7f:61:67:8a:51:af:18:2a:50:c1:8f:ee:4e: c2:6c:29:ce:00:60:c0:27:c8:77:68:33:31:4b:ac:bd:ed:09: 5d:32:77:e9:84:1f:27:5b:da:6c:0e:27:b8:41:58:33:63:4c: 5c:25:6a:f1:fe:65:83:13:84:3a:4f:c7:d6:ff:c9:c9:77:10: 64:e1:5b:3c:09:8c:bd:0f:ef:6d:9f:52:b2:bf:21:08:7b:56: 24:50:ed:91:ac:cb:09:2c:57:48:68:58:e6:b1:6e:c7:95:a2: dd:91:f6:c1:fb:70:94:b6:d6:16:d9:5f:82:0e:c6:c1:e1:0d: 15:a7:50:e7:94:f1:e1:cb:07:5f:c1:10:90:70:aa:4d:24:4f: 87:3e:c1:b7:b8:c4:53:08:52:6c:4f:55:c6:a2:9c:84:40:23: 61:d3:78:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUxMjA1MDAxNjU5WhcNMjUxMjEyMDAxNjU5WjAYMRYwFAYD VQQDEw02OTMyMjQ3Yy0xYzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZgtOtBHIBKRZ2RCIRkd4Sq4SrYPZ13ExQl03SwseQ8TMGZZ+30C7u+TTRYX ftOVASWpOtcIN3cA/gkjh4REIkXsQ7mZnKVhHT98FEjGLnEmn7ZoM9WTQNzG6iIn ndl9b9mmzQZtajUG3Zpi6pv6eltvxegB06v2zme1S2oFIQEGQECrvOkau6GOb3OE rz8wcsaTRDknNSx2gr2ZxthTYrEOHEJ0h9zjMFhurornIRT2WK2sfWq+23zT6zNe gtTCU4i7yrIOH1LE3N5n3T8KSq0ykvLiXUBsmhaWAkNosLG2kg7kxnibC3i5Xotl rkKrOl/qKdeUKWdFHO3pBvRweQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIU8Kuvj 1FQXLwwT1sBJHaDraGovMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKQEHO2oncGSS3SoW2n96bSMs3AlN9dZiDGx+KVStv6LFtoAUAwLrq 0fd+dSpSRE2Qy6TYfKaLgXb+DDa5j88ZuCnH5uWszZnxQHaQei1U12aeiF39oEW0 u+3r7PG67H9hZ4pRrxgqUMGP7k7CbCnOAGDAJ8h3aDMxS6y97QldMnfphB8nW9ps Die4QVgzY0xcJWrx/mWDE4Q6T8fW/8nJdxBk4Vs8CYy9D+9tn1KyvyEIe1YkUO2R rMsJLFdIaFjmsW7HlaLdkfbB+3CUttYW2V+CDsbB4Q0Vp1DnlPHhywdfwRCQcKpN JE+HPsG3uMRTCFJsT1XGopyEQCNh03iQ -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:21 2025 by rpki-client