This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: INurq8DYPmrcFFH1DoI4cAPpoFg+sfrvV6s+E00wW9E= Subject key identifier: 03:4C:88:5F:43:9E:76:0B:D7:04:F7:D7:63:43:45:3D:20:CD:89:C3 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 06E2 Signing time: Sat 06 Dec 2025 16:25:19 +0000 Manifest this update: Sat 06 Dec 2025 16:25:18 +0000 Manifest next update: Sat 13 Dec 2025 16:25:18 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: AwKlF9GOcMrdh5CtulWvRbmCT4cxnGbjF832uHfUH+Y=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Dec 6 16:25:18 2025 GMT Not After : Dec 13 16:25:18 2025 GMT Subject: CN=693458ee-65b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:53:3c:f0:47:5f:ea:82:7d:92:75:eb:24:a3: 7b:9b:c9:49:8b:8f:9a:06:58:c1:9d:c7:e2:02:49: 4e:95:21:f6:e5:2f:59:0c:6a:22:95:63:46:33:a5: 7c:21:95:d6:9d:2f:9d:fc:ca:7c:1a:f1:43:64:25: 56:df:f3:21:43:f3:7c:57:8e:f5:99:4a:fa:5f:72: 3a:d2:6f:d0:5a:77:cb:62:57:78:67:0f:73:ec:8d: 28:78:63:9a:c2:de:79:01:c0:31:72:f5:8e:77:b4: c6:5e:0a:8b:ca:46:97:0c:19:27:c1:83:64:60:a5: 44:91:ae:53:c0:1b:3a:4b:1d:4d:e0:99:fe:4a:80: fa:30:5d:6f:90:7f:fd:1f:a1:0a:81:74:83:9c:06: ae:3f:23:4f:f0:52:60:cf:2f:31:39:07:47:9f:9e: 51:23:e1:44:2a:cb:fd:53:ce:c2:97:b0:44:cc:27: b4:3c:47:fa:1f:e8:5b:a0:c4:31:c6:dd:c9:ac:86: 81:6f:2c:e9:dd:dd:fa:b4:a7:66:9d:38:21:73:31: 01:38:dd:df:3f:45:3e:95:7b:f4:89:df:f3:e6:18: 85:72:ad:10:86:fe:ab:c3:9b:f6:58:ce:94:4d:e8: a1:45:f9:f2:29:a3:05:c5:36:d4:2a:12:43:b6:c5: b0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4C:88:5F:43:9E:76:0B:D7:04:F7:D7:63:43:45:3D:20:CD:89:C3 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:d4:8e:91:ab:49:1b:cc:0a:0f:35:2c:8e:c3:c2:a4:31:6c: a5:ea:44:45:38:a5:ae:21:a5:18:2c:db:d7:26:1f:23:d1:c3: d2:0f:50:ac:87:c6:1b:12:4c:50:bc:56:d4:cd:c9:18:70:b3: 2e:63:ed:03:d4:b0:3e:3f:26:d9:21:de:e4:85:85:8c:12:9b: da:36:00:62:ae:3e:9e:34:ce:ad:cb:a7:55:27:5e:f3:16:f5: 30:7f:b3:25:6e:ff:34:e0:9c:42:81:ea:7e:44:79:99:2d:a5: c3:53:8c:87:c4:86:d7:3a:43:f7:91:a3:53:d1:14:34:cb:8e: f4:5c:e6:ef:81:46:48:bf:56:7f:b8:68:72:eb:3f:d9:80:d6: 82:96:59:e5:3b:c7:ed:be:8c:23:ac:dd:4c:21:fd:bb:d1:d4: ac:1c:b5:14:97:03:5e:16:bb:7a:ff:8a:4f:c7:2b:57:62:c4: 30:b7:3b:62:e0:d6:7a:42:ec:b3:ba:5d:e5:f8:74:60:34:6d: 7d:53:0e:d1:8e:14:cd:bf:89:6b:19:b7:3b:d8:7f:59:78:5b: eb:1e:01:f1:7f:12:7f:03:f1:89:55:22:37:58:f0:ae:2d:3f: e2:64:58:8d:03:a4:34:2f:6e:7e:ff:57:67:5f:ee:49:d0:2d: a8:f9:34:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUxMjA2MTYyNTE4WhcNMjUxMjEzMTYyNTE4WjAYMRYwFAYD VQQDEw02OTM0NThlZS02NWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11M88Edf6oJ9knXrJKN7m8lJi4+aBljBncfiAklOlSH25S9ZDGoilWNGM6V8 IZXWnS+d/Mp8GvFDZCVW3/MhQ/N8V471mUr6X3I60m/QWnfLYld4Zw9z7I0oeGOa wt55AcAxcvWOd7TGXgqLykaXDBknwYNkYKVEka5TwBs6Sx1N4Jn+SoD6MF1vkH/9 H6EKgXSDnAauPyNP8FJgzy8xOQdHn55RI+FEKsv9U87Cl7BEzCe0PEf6H+hboMQx xt3JrIaBbyzp3d36tKdmnTghczEBON3fP0U+lXv0id/z5hiFcq0Qhv6rw5v2WM6U TeihRfnyKaMFxTbUKhJDtsWwxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANMiF9D nnYL1wT312NDRT0gzYnDMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA1I6Rq0kbzAoPNSyOw8KkMWyl6kRFOKWuIaUYLNvXJh8j0cPSD1Cs h8YbEkxQvFbUzckYcLMuY+0D1LA+PybZId7khYWMEpvaNgBirj6eNM6ty6dVJ17z FvUwf7Mlbv804JxCgep+RHmZLaXDU4yHxIbXOkP3kaNT0RQ0y470XObvgUZIv1Z/ uGhy6z/ZgNaCllnlO8ftvowjrN1MIf270dSsHLUUlwNeFrt6/4pPxytXYsQwtzti 4NZ6Quyzul3l+HRgNG19Uw7RjhTNv4lrGbc72H9ZeFvrHgHxfxJ/A/GJVSI3WPCu LT/iZFiNA6Q0L25+/1dnX+5J0C2o+TSV -----END CERTIFICATE-----Generated at Sun Dec 7 02:39:47 2025 by rpki-client