This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: qEcg9lJra1CMLrTc+ib94l3dm6rvjK7E9BzY9qUsEf8= Subject key identifier: 36:D4:A6:31:1C:28:83:DE:FF:C2:51:08:1D:38:42:36:BA:D6:82:16 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C74 Signing time: Sat 06 Dec 2025 17:55:44 +0000 Manifest this update: Sat 06 Dec 2025 17:55:43 +0000 Manifest next update: Sat 13 Dec 2025 17:55:43 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: RS8JgxSxQbE5l3nwoVMRA391w/1SHwbs9+V/YZDapWo=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 6 17:55:43 2025 GMT Not After : Dec 13 17:55:43 2025 GMT Subject: CN=69346e1f-91b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:db:a8:a2:e3:e1:bc:7c:48:bb:10:f9:1c:26: 60:01:6a:bc:cc:87:e2:67:6b:69:7c:8b:91:b6:e2: e8:7c:b2:dc:c8:33:7a:bd:49:d5:9d:38:16:bb:26: 3c:2c:2a:f7:7d:86:37:d4:42:10:0d:40:27:ea:a3: f7:96:96:2a:82:51:cf:87:ab:ba:53:68:d5:ba:71: 84:6e:75:3d:f5:e1:41:2c:d3:62:3d:14:c7:7c:4f: 66:8c:63:4e:95:d0:40:c9:bd:11:b1:ee:93:99:48: 74:df:74:ab:ea:88:7d:e0:b5:5a:13:ad:e0:7b:13: 9a:93:87:8b:49:27:ff:d9:03:74:e3:56:14:9b:31: c5:b7:20:32:0d:79:15:b9:54:f7:4e:5e:30:27:7e: aa:6e:b0:d5:cc:ba:f9:af:1c:d6:08:ff:be:27:94: 37:34:fe:b0:7d:01:ae:95:ac:db:6c:a9:94:d2:19: 95:63:7b:14:44:1c:6d:67:61:86:22:f3:d6:65:92: aa:63:c4:45:4d:5d:68:b2:06:b3:c4:f1:27:5d:1a: 79:d5:19:5c:6e:03:d3:d5:92:53:3b:16:97:20:88: c2:30:84:b1:31:e9:42:7c:1b:c9:1f:f0:74:18:db: 09:3c:66:a9:10:1d:16:20:43:f7:e5:d3:0b:8b:b4: dd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D4:A6:31:1C:28:83:DE:FF:C2:51:08:1D:38:42:36:BA:D6:82:16 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:04:2d:14:9a:d0:16:40:1d:d1:27:43:67:a0:7b:59:7e:7a: 19:4f:6a:5d:ad:08:d7:44:f6:df:56:c6:a8:9a:5b:d8:f8:03: af:cb:0f:c5:24:30:c4:b0:e6:d1:0d:f0:da:fc:83:eb:f8:20: 53:09:61:c0:3c:02:6f:8f:2b:2b:4e:00:e9:22:0b:b6:1f:a4: b3:01:f3:ca:1a:38:fc:a1:1c:0a:7b:9f:9a:23:25:2a:82:6f: 6d:6a:e5:89:d1:6f:89:e7:de:09:20:d9:34:09:5c:40:de:a1: ba:65:82:da:bc:ad:0b:fe:5b:1a:0c:b8:87:94:7d:f1:1b:e4: a7:5f:27:bc:25:ef:63:50:62:27:c4:6c:f6:fa:cd:be:ef:b6: 7f:bd:2d:81:1b:63:0e:47:b5:18:db:1d:e2:c0:b2:95:bf:41: fd:3a:fd:1a:75:e7:67:2f:d3:b0:ae:13:98:4e:a7:aa:43:be: dc:6e:ea:cc:7e:f3:17:e2:2c:b5:05:68:a5:9b:2c:9a:ee:7e: a9:a1:34:76:32:0e:7d:10:c4:f4:81:38:ec:8c:59:6e:02:b3: dc:95:84:f2:fd:bb:c4:2b:1b:48:96:a2:35:5c:1c:40:c5:fd: ad:86:df:cb:16:51:94:4f:a2:4e:df:7b:29:b2:ee:74:02:1e: 39:13:7e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjA2MTc1NTQzWhcNMjUxMjEzMTc1NTQzWjAYMRYwFAYD VQQDEw02OTM0NmUxZi05MWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtuoouPhvHxIuxD5HCZgAWq8zIfiZ2tpfIuRtuLofLLcyDN6vUnVnTgWuyY8 LCr3fYY31EIQDUAn6qP3lpYqglHPh6u6U2jVunGEbnU99eFBLNNiPRTHfE9mjGNO ldBAyb0Rse6TmUh033Sr6oh94LVaE63gexOak4eLSSf/2QN041YUmzHFtyAyDXkV uVT3Tl4wJ36qbrDVzLr5rxzWCP++J5Q3NP6wfQGulazbbKmU0hmVY3sURBxtZ2GG IvPWZZKqY8RFTV1osgazxPEnXRp51RlcbgPT1ZJTOxaXIIjCMISxMelCfBvJH/B0 GNsJPGapEB0WIEP35dMLi7Td3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbUpjEc KIPe/8JRCB04Qja61oIWMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3BC0UmtAWQB3RJ0NnoHtZfnoZT2pdrQjXRPbfVsaomlvY+AOvyw/F JDDEsObRDfDa/IPr+CBTCWHAPAJvjysrTgDpIgu2H6SzAfPKGjj8oRwKe5+aIyUq gm9tauWJ0W+J594JINk0CVxA3qG6ZYLavK0L/lsaDLiHlH3xG+SnXye8Je9jUGIn xGz2+s2+77Z/vS2BG2MOR7UY2x3iwLKVv0H9Ov0adednL9OwrhOYTqeqQ77cburM fvMX4iy1BWilmyya7n6poTR2Mg59EMT0gTjsjFluArPclYTy/bvEKxtIlqI1XBxA xf2tht/LFlGUT6JO33spsu50Ah45E37e -----END CERTIFICATE-----Generated at Sat Dec 6 20:54:02 2025 by rpki-client