This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: GpTQNytav30InT/6vCBY4fcvI3C7U8TV2U36SDNOhV8= Subject key identifier: 1D:E8:D4:5F:10:58:33:9E:A9:57:EF:16:9B:0C:DF:22:BF:AE:8D:D9 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 65 Signing time: Fri 05 Dec 2025 04:54:02 +0000 Manifest this update: Fri 05 Dec 2025 04:54:02 +0000 Manifest next update: Fri 12 Dec 2025 04:54:02 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: qM8laRmRO/INPvjCspY9//G1Ey8rZcY7QRaF6wUXtkM=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: wGVIBPNEBcFCJnJRSDz4VWxuIzLpiNR2BJzQPhs1Kok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Dec 5 04:54:02 2025 GMT Not After : Dec 12 04:54:02 2025 GMT Subject: CN=6932656a-1cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e6:44:3c:9e:1b:74:53:52:df:f1:22:f1:22: 1a:04:73:35:25:bf:1a:40:df:46:80:f8:a4:e9:8e: e4:62:5b:36:20:83:47:45:9c:d4:5a:12:9b:de:7b: 0d:32:fb:02:d4:89:51:56:12:da:0a:c6:54:8a:9a: e3:cf:a8:da:90:3b:41:88:4e:08:eb:54:01:1b:eb: 9f:64:8e:60:93:2a:df:75:2a:39:64:1f:1a:7c:31: 33:c1:0a:7c:ed:5a:ed:b1:72:bd:f0:5c:79:57:02: 13:80:40:f3:df:53:da:0c:3b:c1:79:d9:eb:d5:ee: 6c:fa:fa:49:b0:39:b4:49:67:90:6b:93:69:64:cd: 5d:05:04:29:c0:2a:ea:67:7f:4b:21:47:8a:e0:4c: 3b:8e:52:fd:f9:08:a7:fe:94:01:91:5e:51:b6:a7: 3c:ad:e5:6d:6b:d2:df:2b:be:bd:c6:9f:9a:4f:67: 64:0b:8c:84:00:e3:df:d4:06:a9:5c:f8:76:ff:b3: d3:a1:97:02:fd:aa:cb:72:47:ef:78:2b:84:45:1b: 00:e9:be:26:5b:cd:84:3c:59:87:ff:2b:92:53:a5: d2:f8:73:8a:3b:65:8f:59:e9:59:3b:28:f5:08:db: 8d:cc:36:0e:fe:58:b6:9d:63:b2:df:74:e8:05:9c: 0e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E8:D4:5F:10:58:33:9E:A9:57:EF:16:9B:0C:DF:22:BF:AE:8D:D9 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:9a:c4:7b:1d:69:61:24:cd:44:67:f5:2e:e7:69:26:b1:67: 51:b4:79:14:06:18:68:0f:d3:df:ef:83:81:9c:51:b2:4f:8a: 26:ba:79:d2:70:77:f4:7c:3e:1f:c8:8e:f6:16:21:f1:55:5c: 6a:1d:57:f7:af:d3:fd:43:ac:2c:cd:3f:6f:0d:19:dd:ac:c7: 32:ea:07:52:d2:d5:35:d2:eb:b2:eb:ed:99:07:7f:dc:b5:1a: bb:ec:7d:af:5f:fe:54:e3:fc:04:15:54:9c:f2:ab:6a:73:eb: 8d:bd:f1:b8:36:09:4e:57:c1:43:b9:6a:91:ff:27:63:d1:c9: 68:85:9f:34:b9:e4:c8:6a:9d:ab:5d:66:45:23:b6:5e:c5:d7: 4b:dd:ae:0d:0e:e4:bd:40:42:08:01:80:9f:e4:4e:0c:1e:0e: f9:b6:f9:32:97:40:70:00:42:32:7a:b4:50:28:f6:c0:6f:da: e3:8a:11:b2:80:47:76:b0:b9:08:23:ea:83:b4:d0:bf:e0:f4: d7:8f:d8:7c:14:30:80:d7:2c:bb:a1:85:7d:4b:1f:6a:ae:50: 3a:0b:05:e7:b4:f0:76:98:6b:8e:1d:bf:88:41:e1:61:13:a0: c9:46:21:9d:cb:51:8e:5b:66:b7:d2:ce:99:4e:c5:81:c4:a3: 51:2b:6c:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTEyMDUwNDU0MDJaFw0yNTEyMTIwNDU0MDJaMBgxFjAUBgNV BAMTDTY5MzI2NTZhLTFjYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh5kQ8nht0U1Lf8SLxIhoEczUlvxpA30aA+KTpjuRiWzYgg0dFnNRaEpveew0y +wLUiVFWEtoKxlSKmuPPqNqQO0GITgjrVAEb659kjmCTKt91KjlkHxp8MTPBCnzt Wu2xcr3wXHlXAhOAQPPfU9oMO8F52evV7mz6+kmwObRJZ5Brk2lkzV0FBCnAKupn f0shR4rgTDuOUv35CKf+lAGRXlG2pzyt5W1r0t8rvr3Gn5pPZ2QLjIQA49/UBqlc +Hb/s9OhlwL9qstyR+94K4RFGwDpviZbzYQ8WYf/K5JTpdL4c4o7ZY9Z6Vk7KPUI 243MNg7+WLadY7LfdOgFnA7hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHejUXxBY M56pV+8WmwzfIr+ujdkwHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANSaxHsdaWEkzURn9S7naSaxZ1G0eRQGGGgP09/vg4GcUbJPiia6edJw d/R8Ph/IjvYWIfFVXGodV/ev0/1DrCzNP28NGd2sxzLqB1LS1TXS67Lr7ZkHf9y1 Grvsfa9f/lTj/AQVVJzyq2pz64298bg2CU5XwUO5apH/J2PRyWiFnzS55Mhqnatd ZkUjtl7F10vdrg0O5L1AQggBgJ/kTgweDvm2+TKXQHAAQjJ6tFAo9sBv2uOKEbKA R3awuQgj6oO00L/g9NeP2HwUMIDXLLuhhX1LH2quUDoLBee08HaYa44dv4hB4WET oMlGIZ3LUY5bZrfSzplOxYHEo1ErbFg= -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:58 2025 by rpki-client