This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft File: 4YMttqUeSiWekP7IHkfFRpxSpok.mft (raw, json) Hash identifier: XYHTQaJd2gBZ8FtpOUHmBtitTQalcje9BpbfW9VAFGw= Subject key identifier: 23:FC:B8:EC:73:F3:15:D0:DB:2E:7F:BF:52:42:93:87:64:E0:89:4E Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 167B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft Manifest number: 166D Signing time: Sat 06 Dec 2025 16:16:59 +0000 Manifest this update: Sat 06 Dec 2025 16:16:59 +0000 Manifest next update: Sat 13 Dec 2025 16:16:59 +0000 Files and hashes: 1: 4YMttqUeSiWekP7IHkfFRpxSpok.crl (hash: /66uZNeRlLbUJT8Sb6pdMArBg6jnRJyvdauz7qap81g=) 2: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (hash: QuyC/X/r2EhaFovcn8ldr/ti/IluwmKi6IccsFs52uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5755 (0x167b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Dec 6 16:16:59 2025 GMT Not After : Dec 13 16:16:59 2025 GMT Subject: CN=693456fb-52cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2a:fe:81:b6:0c:db:a2:cf:e7:4e:ce:5b:56: f0:03:dc:bd:ba:14:13:ab:7d:9b:23:c8:06:c3:43: 34:c8:34:88:75:2c:18:ff:33:15:ca:25:09:b2:0b: b0:65:a5:9c:87:19:44:4b:36:3b:f6:81:88:a3:22: 29:2b:7f:ad:45:e7:21:5a:26:46:a2:2e:18:54:5c: 21:4b:5e:1a:95:65:39:2e:98:b0:99:ce:ee:b3:54: cc:b5:a0:f1:28:75:17:be:a6:27:0a:57:18:2a:77: d0:39:f4:b7:a8:57:c0:a3:29:10:b7:86:ed:8a:c8: e1:45:0d:b2:72:fe:45:a1:3a:c5:f3:4c:f3:6f:77: 1d:58:c2:26:6c:c4:e6:92:04:b8:f6:a1:5b:b4:e3: 56:a9:8c:7e:ba:5a:2c:47:f1:d8:f4:8f:5b:8d:77: 79:9f:49:44:c2:df:b6:64:ad:36:4f:09:54:df:ea: fb:bc:13:47:89:dc:e6:9a:ba:ec:f9:ad:f0:66:8a: 09:58:10:bc:bd:36:eb:79:b1:68:e0:dd:6c:39:87: b5:34:39:ba:4e:47:3d:4b:a0:d0:1d:25:e1:73:d5: a9:96:2b:33:65:58:18:0a:6e:37:67:f8:67:44:cc: 7e:c4:d0:e1:36:ec:f2:c2:d7:61:15:be:2c:f3:46: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FC:B8:EC:73:F3:15:D0:DB:2E:7F:BF:52:42:93:87:64:E0:89:4E X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:57:1f:4e:9d:60:d0:30:e1:b6:d4:24:e3:88:da:57:8d:25: 94:9b:8c:de:f0:f7:1c:59:07:cc:d3:ce:a9:d7:96:22:93:76: 0c:9f:fc:29:bc:94:b2:99:15:32:22:c9:8d:ea:fb:95:3c:58: bf:4c:f8:89:7d:ec:e6:5d:db:ab:a8:af:51:52:e3:80:e2:ae: d2:ac:d0:3d:69:33:2d:b0:a8:ff:32:60:1d:dd:50:78:12:3d: cf:95:38:18:99:11:e4:c3:8f:db:25:43:05:f7:07:06:a4:8e: bf:e1:e1:b2:fa:ed:c6:f2:b7:d8:97:42:f0:1c:b8:f8:7a:d0: b6:27:da:20:02:b9:b0:96:8c:3a:99:af:2c:2a:5f:f1:39:89: 68:27:83:a3:4e:8d:85:87:52:13:16:c0:da:51:b7:cf:b9:0f: 32:6c:31:f5:a7:fa:f2:d9:c3:f3:29:e2:df:91:5b:24:5f:7c: 5e:5e:4b:29:b8:5d:9c:8e:9e:8a:69:1c:4c:ca:89:fb:01:dd: 5d:91:b5:a8:b3:b6:d9:69:b0:b6:ca:ab:88:66:7b:12:9c:bc: 58:60:0e:27:89:52:ee:93:bc:4b:26:24:74:df:a9:41:cf:73: b1:1d:1d:19:aa:5e:01:23:88:49:91:48:c0:6f:fb:9c:8e:7d: 3e:72:a8:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUxMjA2MTYxNjU5WhcNMjUxMjEzMTYxNjU5WjAYMRYwFAYD VQQDEw02OTM0NTZmYi01MmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Cr+gbYM26LP507OW1bwA9y9uhQTq32bI8gGw0M0yDSIdSwY/zMVyiUJsguw ZaWchxlESzY79oGIoyIpK3+tRechWiZGoi4YVFwhS14alWU5Lpiwmc7us1TMtaDx KHUXvqYnClcYKnfQOfS3qFfAoykQt4btisjhRQ2ycv5FoTrF80zzb3cdWMImbMTm kgS49qFbtONWqYx+ulosR/HY9I9bjXd5n0lEwt+2ZK02TwlU3+r7vBNHidzmmrrs +a3wZooJWBC8vTbrebFo4N1sOYe1NDm6Tkc9S6DQHSXhc9WpliszZVgYCm43Z/hn RMx+xNDhNuzywtdhFb4s80Z0BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCP8uOxz 8xXQ2y5/v1JCk4dk4IlOMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE0Qi8wMkEyRDk3MDE2MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNp V2VrUDdJSGtmRlJweFNwb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyVx9OnWDQMOG21CTjiNpXjSWUm4ze8PccWQfM086p15Yik3YMn/wp vJSymRUyIsmN6vuVPFi/TPiJfezmXdurqK9RUuOA4q7SrNA9aTMtsKj/MmAd3VB4 Ej3PlTgYmRHkw4/bJUMF9wcGpI6/4eGy+u3G8rfYl0LwHLj4etC2J9ogArmwlow6 ma8sKl/xOYloJ4OjTo2Fh1ITFsDaUbfPuQ8ybDH1p/ry2cPzKeLfkVskX3xeXksp uF2cjp6KaRxMyon7Ad1dkbWos7bZabC2yquIZnsSnLxYYA4niVLuk7xLJiR036lB z3OxHR0Zql4BI4hJkUjAb/ucjn0+cqg0 -----END CERTIFICATE-----Generated at Sat Dec 6 22:24:36 2025 by rpki-client