This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: i1d1OLWIk3XFbx9/73n1k9vSzwnaScihCcrxhDdTa64= Subject key identifier: ED:41:2E:BD:09:78:64:24:2E:AF:C8:42:24:34:57:2E:C5:D6:DF:8F Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: FB Signing time: Fri 05 Dec 2025 03:13:38 +0000 Manifest this update: Fri 05 Dec 2025 03:13:37 +0000 Manifest next update: Fri 12 Dec 2025 03:13:37 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: 0CE2lOrpn2iSfq7/TVJ7H2UD67eu17JU61qyULaF6mA=) 2: 52AE08D4ABCF11F083B9610FC4F9AE02.roa (hash: NMTDk1bikkd+fwdk2/Llio0zL8hpaBeHBKsi3D4d+4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Dec 5 03:13:37 2025 GMT Not After : Dec 12 03:13:37 2025 GMT Subject: CN=69324de1-53cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:7b:32:ac:85:e6:00:3b:12:1b:35:b5:83: 88:a0:09:82:9c:bb:bd:ab:1d:5e:a5:94:91:6f:94: a7:0c:8f:2f:3c:c3:70:35:44:c8:ae:c0:67:8f:32: 82:8c:87:9b:01:cb:12:57:79:d8:c0:d0:7f:ed:f9: 6e:a0:5e:b1:95:b2:63:98:8c:69:1b:e4:46:11:8b: d4:bb:c8:fb:37:8b:17:a2:93:d6:e0:36:9f:7b:9e: c2:2e:4d:11:40:a9:f1:2d:f3:6f:f7:93:e7:eb:2d: 29:ca:a6:b8:9d:75:b7:02:d0:b3:1a:64:12:d6:e7: d6:75:63:12:58:a3:40:de:ca:74:b4:fc:cf:be:08: 6a:37:59:d5:e6:73:6e:dc:98:08:5a:4e:fd:d6:96: 50:33:f7:f0:06:f5:e8:ca:d2:d4:f5:9f:5c:ff:21: bc:16:c8:b4:39:77:88:b0:f7:8e:00:2d:9c:89:e6: d4:13:a8:cb:57:ca:5a:08:64:93:da:64:03:ab:48: 79:b2:9e:9a:05:10:3b:67:2b:0e:51:12:ac:a4:a7: 1a:3c:4c:df:91:d5:24:49:58:17:cf:b9:bf:30:63: e1:0c:4b:6b:db:d1:1b:de:dc:8f:19:f1:5d:e9:b9: 8f:17:3a:02:c9:c1:bf:97:41:02:36:7a:55:6e:d5: ba:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:41:2E:BD:09:78:64:24:2E:AF:C8:42:24:34:57:2E:C5:D6:DF:8F X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9e:e3:bb:02:f3:ad:30:13:00:27:56:a2:51:c1:9d:6e:dd: 36:88:90:fa:f8:33:7d:8d:47:42:0e:79:55:36:66:fb:7a:9d: 90:90:05:88:28:95:5b:c3:49:cf:a3:f3:2e:b5:60:d1:1c:a0: 95:1f:a0:3d:ee:37:d3:5f:e4:49:76:75:e7:38:77:09:50:5f: 47:90:9a:e0:66:e2:eb:03:29:2b:7c:ea:a5:d8:a2:b3:80:1b: 1c:db:b8:a2:83:7e:4e:37:13:13:89:fc:1b:97:12:1c:ca:6b: 5b:af:1e:9c:73:96:38:a7:d4:44:f7:e9:a8:a2:7e:68:f2:6f: cd:71:21:59:09:21:b8:f9:c5:f0:63:7d:b4:90:71:ea:38:2a: 4b:06:41:c2:94:4e:67:ad:d7:45:f4:66:46:83:74:4a:e7:2c: 7f:07:1b:97:2a:76:cb:4d:ed:96:2c:c8:a2:35:ba:9e:eb:55: 1d:7d:41:d4:00:4f:e3:b8:b7:17:b4:dd:f0:83:74:3e:3e:30: 00:d5:25:fc:44:fe:ae:b4:22:58:e8:9b:3c:92:d8:9f:4a:d9: 7a:3b:c6:39:e2:5e:a7:96:15:7b:4b:99:29:0d:fb:10:63:80: 96:32:00:99:b7:07:e7:6d:b3:d7:54:76:e3:f5:20:83:79:b1: 14:9e:3f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUxMjA1MDMxMzM3WhcNMjUxMjEyMDMxMzM3WjAYMRYwFAYD VQQDEw02OTMyNGRlMS01M2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBp7MqyF5gA7Ehs1tYOIoAmCnLu9qx1epZSRb5SnDI8vPMNwNUTIrsBnjzKC jIebAcsSV3nYwNB/7fluoF6xlbJjmIxpG+RGEYvUu8j7N4sXopPW4Dafe57CLk0R QKnxLfNv95Pn6y0pyqa4nXW3AtCzGmQS1ufWdWMSWKNA3sp0tPzPvghqN1nV5nNu 3JgIWk791pZQM/fwBvXoytLU9Z9c/yG8Fsi0OXeIsPeOAC2ciebUE6jLV8paCGST 2mQDq0h5sp6aBRA7ZysOURKspKcaPEzfkdUkSVgXz7m/MGPhDEtr29Eb3tyPGfFd 6bmPFzoCycG/l0ECNnpVbtW6IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1BLr0J eGQkLq/IQiQ0Vy7F1t+PMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPnuO7AvOtMBMAJ1aiUcGdbt02iJD6+DN9jUdCDnlVNmb7ep2QkAWI KJVbw0nPo/MutWDRHKCVH6A97jfTX+RJdnXnOHcJUF9HkJrgZuLrAykrfOql2KKz gBsc27iig35ONxMTifwblxIcymtbrx6cc5Y4p9RE9+moon5o8m/NcSFZCSG4+cXw Y320kHHqOCpLBkHClE5nrddF9GZGg3RK5yx/BxuXKnbLTe2WLMiiNbqe61UdfUHU AE/juLcXtN3wg3Q+PjAA1SX8RP6utCJY6Js8ktifStl6O8Y54l6nlhV7S5kpDfsQ Y4CWMgCZtwfnbbPXVHbj9SCDebEUnj8C -----END CERTIFICATE-----Generated at Sun Dec 7 04:20:26 2025 by rpki-client