This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: +ftmDOMqAeOjl7ExNAvGovf0o2bIs2Y8WRfL2FJkYUo= Subject key identifier: 9B:97:0C:69:D7:BC:5E:77:69:94:25:AB:07:41:B5:B0:BC:39:92:FB Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C79 Signing time: Tue 16 Dec 2025 18:21:03 +0000 Manifest this update: Tue 16 Dec 2025 18:21:02 +0000 Manifest next update: Tue 23 Dec 2025 18:21:02 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: zrMjj3nf1IjRDMXfYzUxTccdup8cggp58sBRRIos7fU=) 2: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:21:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 16 18:21:02 2025 GMT Not After : Dec 23 18:21:02 2025 GMT Subject: CN=6941a30f-bb2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:73:5d:f6:79:49:f5:c8:a0:e8:27:0f:09:55: 53:f1:7e:89:98:f5:f9:92:d9:52:ae:34:cf:4e:56: 61:f3:b0:fd:89:3e:86:f2:c5:ce:8f:8a:fb:32:65: fc:a1:24:63:6b:fd:8b:22:c7:9f:43:1f:2e:c0:59: eb:bc:ff:a0:9f:b6:f1:d9:34:0a:94:41:8d:c7:bf: 61:51:13:30:53:b6:47:ea:cd:59:6b:c1:04:ab:04: 7e:95:ba:90:bb:2c:3c:7d:c5:2e:d4:7d:c9:fd:97: 34:f8:44:ea:24:4e:3b:28:f6:09:d9:f1:0c:f6:2f: ed:b1:e5:0c:29:24:52:45:b0:ec:64:eb:29:2d:ad: c0:ec:31:92:f3:4a:39:42:7e:57:8c:13:53:7b:25: f2:a5:20:22:bf:3a:dc:e1:b0:fa:85:7d:0a:c9:e4: 82:7f:73:1d:b0:f0:34:26:e8:52:7b:b5:e3:24:8d: 4a:24:9e:fa:a8:25:37:ad:a1:d9:eb:c7:42:db:f7: 7a:e8:ff:a8:a8:b7:68:0c:bb:d8:58:ea:da:5c:c3: db:1d:9d:f7:23:6f:4c:03:d1:06:45:2b:62:c6:9d: 7d:26:e1:1b:e2:62:2a:a1:4f:8a:af:87:86:e9:da: 04:62:cb:47:da:7a:12:d0:de:3a:8d:3f:b4:c7:f8: 81:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:97:0C:69:D7:BC:5E:77:69:94:25:AB:07:41:B5:B0:BC:39:92:FB X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d0:5b:6f:22:a9:86:8b:4a:3b:ae:78:f1:55:6f:cd:06:53: fe:05:87:ff:9d:b7:70:31:02:28:3e:02:e6:ce:9f:46:44:70: 18:a0:c8:bd:ff:bd:79:af:a7:49:01:e8:b4:04:d6:b3:fc:f2: af:74:5b:d9:b9:ce:d5:e1:ea:a7:a0:f8:5e:e2:1e:46:1b:e0: f9:78:5d:3c:1e:42:31:c7:a8:98:7f:d9:7f:16:5b:11:c6:a7: 54:ae:84:81:7d:4e:04:91:1b:86:68:65:c4:10:87:a6:7c:9f: 5c:e6:60:79:8c:9b:62:e5:5b:8b:86:be:ee:eb:95:d8:31:a3: 7f:7f:cb:f5:9e:94:61:e1:0e:ed:d6:ef:3f:ea:58:7a:65:57: 02:05:63:7e:ae:ff:45:79:75:08:b6:bd:ba:13:2b:8f:4b:1d: 0a:6c:b9:e4:45:57:ec:5d:a2:3a:e9:d1:79:7a:b1:c7:3c:5b: 60:eb:33:ae:ae:cd:2b:44:1a:84:19:2e:e9:1b:8a:33:6e:bb: 08:15:5d:68:e0:47:2d:fc:72:0e:84:2b:14:b2:40:19:15:63: 6c:11:95:46:fa:b8:b6:73:f6:5f:36:26:0c:1c:0b:28:a5:c5: 8e:94:f0:99:f0:8b:3d:92:f5:8f:12:4a:65:69:ca:4d:59:68: 14:91:47:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjE2MTgyMTAyWhcNMjUxMjIzMTgyMTAyWjAYMRYwFAYD VQQDDA02OTQxYTMwZi1iYjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXNd9nlJ9cig6CcPCVVT8X6JmPX5ktlSrjTPTlZh87D9iT6G8sXOj4r7MmX8 oSRja/2LIsefQx8uwFnrvP+gn7bx2TQKlEGNx79hURMwU7ZH6s1Za8EEqwR+lbqQ uyw8fcUu1H3J/Zc0+ETqJE47KPYJ2fEM9i/tseUMKSRSRbDsZOspLa3A7DGS80o5 Qn5XjBNTeyXypSAivzrc4bD6hX0KyeSCf3MdsPA0JuhSe7XjJI1KJJ76qCU3raHZ 68dC2/d66P+oqLdoDLvYWOraXMPbHZ33I29MA9EGRStixp19JuEb4mIqoU+Kr4eG 6doEYstH2noS0N46jT+0x/iB4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuXDGnX vF53aZQlqwdBtbC8OZL7MB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF0FtvIqmGi0o7rnjxVW/NBlP+BYf/nbdwMQIoPgLmzp9GRHAYoMi9 /715r6dJAei0BNaz/PKvdFvZuc7V4eqnoPhe4h5GG+D5eF08HkIxx6iYf9l/FlsR xqdUroSBfU4EkRuGaGXEEIemfJ9c5mB5jJti5VuLhr7u65XYMaN/f8v1npRh4Q7t 1u8/6lh6ZVcCBWN+rv9FeXUItr26EyuPSx0KbLnkRVfsXaI66dF5erHHPFtg6zOu rs0rRBqEGS7pG4ozbrsIFV1o4Ect/HIOhCsUskAZFWNsEZVG+ri2c/ZfNiYMHAso pcWOlPCZ8Is9kvWPEkplacpNWWgUkUfx -----END CERTIFICATE-----Generated at Wed Dec 17 18:31:19 2025 by rpki-client