This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: KjSznJdV1UJZ9xvkoTWw0z/iQBT2lh2YMoaPR7J2ztU= Subject key identifier: 49:F1:F7:28:DB:04:E7:34:5A:E8:C2:3A:12:C8:11:BE:F2:BF:27:39 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0B32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0B2B Signing time: Sat 06 Dec 2025 18:32:21 +0000 Manifest this update: Sat 06 Dec 2025 18:32:20 +0000 Manifest next update: Sat 13 Dec 2025 18:32:20 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: r/TYaE9i1B1XNfkLKld2xSH/6KZpwYnIBW7SPY0jxPk=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: dlSOSQk2MniPlYlY5Ht7zlRaFaui9HZpjfs6c69fqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Dec 6 18:32:20 2025 GMT Not After : Dec 13 18:32:20 2025 GMT Subject: CN=693476b5-f670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:72:7c:70:b2:3d:c4:bc:58:a9:54:19:5d:6f: 81:ce:6a:8c:e4:fb:54:46:a4:0e:fb:27:2d:56:fd: 38:f2:6f:de:07:ad:20:35:3b:4d:9d:5c:41:37:bb: c3:02:74:67:c1:aa:19:68:5e:08:27:3d:c6:ce:6f: 56:60:e1:70:8e:ae:52:c2:e7:57:6a:ca:65:fd:8e: 35:52:c4:49:ec:07:5f:16:61:ad:ba:57:fb:a2:78: 02:3f:bf:26:b0:f8:10:45:e6:2f:a4:40:23:da:16: f9:45:68:c6:8d:56:75:75:0d:30:81:d5:bc:26:ed: ed:00:61:72:41:e3:a8:9e:5c:9d:da:cf:cd:d8:93: 07:e0:cf:46:60:49:3d:1c:b2:74:22:a0:ac:1a:0b: bb:f8:9b:e9:b7:ff:d7:1f:01:93:aa:3b:0c:98:0f: 25:c8:45:c5:83:53:68:34:5b:71:d1:8f:93:e6:1a: 8c:25:7a:d3:af:df:5e:4a:50:78:f1:05:5d:2c:76: c6:54:23:8c:6f:ab:0f:78:f7:a7:90:8f:05:0e:42: 91:a5:a5:90:e0:70:2b:b9:9b:37:44:e5:e3:34:72: 76:06:8b:a7:af:c6:91:b0:a8:6a:fa:29:c2:f9:cb: be:cc:66:15:6c:8f:cb:71:d2:54:2a:21:57:c9:55: b3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F1:F7:28:DB:04:E7:34:5A:E8:C2:3A:12:C8:11:BE:F2:BF:27:39 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:29:5f:63:35:66:07:7b:97:d9:70:76:d5:5c:a5:54:ee:b7: 24:14:ed:a1:f1:59:db:f7:4f:1f:08:71:a8:35:c8:be:a9:4b: 83:2f:e2:6e:3a:5e:ab:1c:9e:ae:b8:93:ce:67:1d:59:35:8e: 10:55:0d:16:85:32:58:ba:05:2d:42:dc:03:58:56:29:a6:73: 42:2e:d6:92:81:7e:23:fd:ee:49:2e:1a:12:a6:91:4c:94:9d: b3:21:e5:22:9a:4b:38:f8:e4:ac:54:65:83:e4:1e:00:30:77: ee:52:11:cb:99:fd:a9:96:ec:2c:d1:83:7e:90:1e:64:5b:9d: b9:fa:e4:3e:44:fd:1e:10:6f:15:46:34:d0:af:08:10:b4:f2: 73:38:bf:b3:e8:1c:90:c2:24:1f:32:4a:c1:39:9c:3c:5e:52: bf:90:6c:96:46:1c:07:7d:fd:95:cf:8c:83:17:1f:77:4c:6f: 7f:94:b2:c1:3d:8a:c1:0f:f7:a5:82:5b:8b:e6:16:73:22:59: e7:c4:6b:01:62:7f:63:45:0c:db:09:ff:25:91:80:99:0d:ad: 20:be:c6:b4:6b:5b:2a:94:f4:0d:47:b8:3c:04:0c:7d:d2:32: 26:39:e4:48:1b:f6:0d:95:22:f1:6b:de:27:b5:bf:3d:21:9e: 38:9c:f2:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUxMjA2MTgzMjIwWhcNMjUxMjEzMTgzMjIwWjAYMRYwFAYD VQQDEw02OTM0NzZiNS1mNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73J8cLI9xLxYqVQZXW+BzmqM5PtURqQO+yctVv048m/eB60gNTtNnVxBN7vD AnRnwaoZaF4IJz3Gzm9WYOFwjq5SwudXaspl/Y41UsRJ7AdfFmGtulf7ongCP78m sPgQReYvpEAj2hb5RWjGjVZ1dQ0wgdW8Ju3tAGFyQeOonlyd2s/N2JMH4M9GYEk9 HLJ0IqCsGgu7+Jvpt//XHwGTqjsMmA8lyEXFg1NoNFtx0Y+T5hqMJXrTr99eSlB4 8QVdLHbGVCOMb6sPePenkI8FDkKRpaWQ4HAruZs3ROXjNHJ2Bounr8aRsKhq+inC +cu+zGYVbI/LcdJUKiFXyVWzbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnx9yjb BOc0WujCOhLIEb7yvyc5MB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEKV9jNWYHe5fZcHbVXKVU7rckFO2h8Vnb908fCHGoNci+qUuDL+Ju Ol6rHJ6uuJPOZx1ZNY4QVQ0WhTJYugUtQtwDWFYppnNCLtaSgX4j/e5JLhoSppFM lJ2zIeUimks4+OSsVGWD5B4AMHfuUhHLmf2pluws0YN+kB5kW525+uQ+RP0eEG8V RjTQrwgQtPJzOL+z6ByQwiQfMkrBOZw8XlK/kGyWRhwHff2Vz4yDFx93TG9/lLLB PYrBD/elgluL5hZzIlnnxGsBYn9jRQzbCf8lkYCZDa0gvsa0a1sqlPQNR7g8BAx9 0jImOeRIG/YNlSLxa94ntb89IZ44nPIB -----END CERTIFICATE-----Generated at Sat Dec 6 22:04:18 2025 by rpki-client