This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: tRDlXWsScgNOoSFmuVE+GL+vZ2neprb+S+1gP2+5Ouc= Subject key identifier: 22:BC:27:FE:19:65:44:E1:08:81:84:03:00:BF:72:F8:92:30:43:6A Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 07CE Signing time: Thu 04 Dec 2025 20:22:06 +0000 Manifest this update: Thu 04 Dec 2025 20:22:06 +0000 Manifest next update: Thu 11 Dec 2025 20:22:06 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: KH44im2YhKEGGzAaBNA8nTpkOmcLn/1n19YrWZETIRM=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: hFRxkLpFxynkLA+bgk7ZWKTxrIef2z810IITJ3Z3KSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: Dec 4 20:22:06 2025 GMT Not After : Dec 11 20:22:06 2025 GMT Subject: CN=6931ed6e-0b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bd:d0:8c:6e:b8:81:a8:e1:9a:a9:52:a5:f8: 27:b5:fe:ed:dd:3d:01:99:e8:e7:43:cb:95:dd:0b: ec:b1:7b:27:ba:7a:a8:e5:c9:37:87:ff:da:79:d0: 6b:b8:21:be:f8:bd:7b:48:9a:ba:37:f1:6b:50:f6: 44:df:a0:c6:89:08:2f:10:0d:80:d4:9c:17:11:90: ab:69:a7:3c:50:c5:9e:fd:11:84:32:4a:8f:dd:e4: 84:df:cc:83:09:bf:b5:a8:78:b1:6b:53:77:c7:3e: 1a:04:a4:c4:21:b1:3f:59:a8:b0:d9:61:9d:95:e4: 2e:f6:db:20:82:77:7d:d1:0f:27:4e:a6:0d:8b:1d: 4f:1c:98:34:9c:12:24:ce:f4:13:7d:59:9e:f3:f4: 99:90:03:55:9b:3d:0c:cf:ec:d4:82:b7:c7:b4:e2: d0:37:20:d8:94:55:c9:ac:17:4e:4b:0f:6a:7e:e3: 2e:04:26:2a:64:2c:a0:0c:7b:03:a6:0d:5c:54:22: 25:10:6e:8f:e2:55:a1:20:a8:13:7a:71:df:58:d2: 58:be:1f:3e:f0:d3:e3:b1:a6:c4:66:5f:62:4a:a5: b5:b6:42:7c:03:70:18:89:56:35:49:3f:a0:95:21: ce:c0:c3:da:dd:9e:88:76:22:b0:91:7b:63:b0:2a: 8b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BC:27:FE:19:65:44:E1:08:81:84:03:00:BF:72:F8:92:30:43:6A X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b2:4b:3e:5a:b6:c2:26:61:ec:3c:b2:37:34:fb:20:c6:db: f2:e4:20:f4:a2:1b:79:77:16:1d:13:31:69:61:93:78:c1:b2: 0e:25:af:4c:ca:83:ba:ae:a4:d9:e7:fe:c9:ef:93:2a:d2:bb: 28:73:0c:d1:0d:ca:90:8f:01:7c:6c:3a:8b:0b:db:19:25:43: 8c:c3:b0:bc:bf:ce:fa:67:2c:93:50:f3:d1:72:ab:66:9f:a0: ca:25:58:da:ca:3a:ba:aa:97:1e:12:df:a3:ac:2f:d8:eb:34: 82:87:c2:33:ac:2b:cd:11:ab:33:df:59:19:9f:cc:b4:c5:37: ff:76:41:6b:20:99:ca:01:c5:89:75:47:0e:be:06:5d:da:2b: 76:61:8b:5d:70:e5:bc:b5:ce:71:dd:43:86:3c:1b:d8:1c:52: 78:25:3c:f2:31:74:65:32:f6:51:d0:c8:62:b6:a9:00:d8:01: 32:fc:d2:35:e7:33:c2:00:f4:8d:86:49:06:32:a6:69:53:4d: d4:14:94:03:ce:72:b3:8b:18:92:25:1f:56:fc:ea:a0:8f:d9: 39:4d:fd:8c:5f:50:8a:13:f2:15:63:88:45:bd:0a:5f:dd:7d: c9:16:72:4b:9b:f8:0b:26:5f:45:e3:94:14:84:48:f3:d9:0e: b7:70:a4:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjUxMjA0MjAyMjA2WhcNMjUxMjExMjAyMjA2WjAYMRYwFAYD VQQDEw02OTMxZWQ2ZS0wYjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzb3QjG64gajhmqlSpfgntf7t3T0BmejnQ8uV3QvssXsnunqo5ck3h//aedBr uCG++L17SJq6N/FrUPZE36DGiQgvEA2A1JwXEZCraac8UMWe/RGEMkqP3eSE38yD Cb+1qHixa1N3xz4aBKTEIbE/Waiw2WGdleQu9tsggnd90Q8nTqYNix1PHJg0nBIk zvQTfVme8/SZkANVmz0Mz+zUgrfHtOLQNyDYlFXJrBdOSw9qfuMuBCYqZCygDHsD pg1cVCIlEG6P4lWhIKgTenHfWNJYvh8+8NPjsabEZl9iSqW1tkJ8A3AYiVY1ST+g lSHOwMPa3Z6IdiKwkXtjsCqL/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK8J/4Z ZUThCIGEAwC/cviSMENqMB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3sks+WrbCJmHsPLI3NPsgxtvy5CD0oht5dxYdEzFpYZN4wbIOJa9M yoO6rqTZ5/7J75Mq0rsocwzRDcqQjwF8bDqLC9sZJUOMw7C8v876ZyyTUPPRcqtm n6DKJVjayjq6qpceEt+jrC/Y6zSCh8IzrCvNEasz31kZn8y0xTf/dkFrIJnKAcWJ dUcOvgZd2it2YYtdcOW8tc5x3UOGPBvYHFJ4JTzyMXRlMvZR0MhitqkA2AEy/NI1 5zPCAPSNhkkGMqZpU03UFJQDznKzixiSJR9W/Oqgj9k5Tf2MX1CKE/IVY4hFvQpf 3X3JFnJLm/gLJl9F45QUhEjz2Q63cKQL -----END CERTIFICATE-----Generated at Sat Dec 6 20:40:07 2025 by rpki-client