This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: 7pjJJFBdD6RDlBbIK9hho9Y2BfUMFwkyCRXqoTcAS+M= Subject key identifier: E7:D9:D7:8D:55:E0:92:30:43:43:FB:52:96:58:EF:4B:54:2F:2D:D0 Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: AD Signing time: Fri 05 Dec 2025 04:09:34 +0000 Manifest this update: Fri 05 Dec 2025 04:09:33 +0000 Manifest next update: Fri 12 Dec 2025 04:09:33 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: NDtLxU2F5ur3eyiAfrrfYeiZqkpe/PfPKAer3HBEAUc=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: ICu/yjGLx5mxYSM0WJFCxUELVponO7X2E1rDJr+HfU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Dec 5 04:09:33 2025 GMT Not After : Dec 12 04:09:33 2025 GMT Subject: CN=69325afd-b8c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:18:29:fa:61:fd:48:0b:ca:76:f9:20:b7:ee: 4b:85:b8:9b:d0:35:15:60:e9:9b:bd:2a:ca:74:6e: b5:3c:27:1c:63:7e:d4:a8:c1:42:cf:cb:c6:3b:80: 6b:5e:bb:20:7e:13:35:af:98:3c:7e:b6:6d:a2:01: 69:ee:bf:61:2a:2e:4a:c4:3b:31:ac:09:2a:40:ac: 87:e9:60:bb:90:0a:74:9c:f8:67:f7:33:d7:09:c7: 09:0d:c2:73:2c:20:75:ec:a0:3f:0d:c7:36:82:5e: 44:be:fc:dd:c3:aa:ab:9f:55:b6:8f:aa:46:44:63: 4b:35:68:dd:8d:9a:06:dd:32:a3:72:e2:91:4e:8a: 70:44:35:76:e0:0a:32:20:68:5f:a9:20:9b:38:8f: ca:83:96:31:33:52:b6:f8:f2:49:40:fc:bf:36:b4: 19:c2:82:86:8b:12:2a:5d:88:62:c2:98:33:54:b4: c6:99:4d:0d:aa:c7:18:9b:64:23:b0:e2:62:37:5f: cb:aa:78:d9:ca:3c:77:cc:6a:f0:15:c3:be:01:4d: 85:1f:32:b8:e9:c0:55:b2:3a:d6:78:56:82:03:08: a9:e9:24:4f:92:c2:af:c5:3f:24:3e:1d:e8:61:0b: 65:b4:b2:c3:12:45:d5:dc:56:5f:c3:fa:a4:96:46: dd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D9:D7:8D:55:E0:92:30:43:43:FB:52:96:58:EF:4B:54:2F:2D:D0 X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ce:79:ca:de:75:b5:09:14:a5:c7:23:8a:51:d9:15:b6:20: 83:76:aa:55:3d:f5:55:d2:cb:ec:26:2b:1d:82:db:e5:c3:27: 06:74:c6:d5:8c:3b:0f:f7:15:8e:1d:70:f4:2c:ed:8b:6c:dc: 5e:59:e7:fe:6c:77:98:bd:8b:a0:73:fd:6a:70:e6:32:e1:5d: 7f:80:9f:b6:24:f7:2c:bc:0c:76:f0:76:ea:2d:2c:1e:77:35: ee:d7:8a:04:ef:32:40:f4:4a:2b:6e:52:43:b1:30:8d:d0:5e: b6:fe:a8:b3:4e:b0:bf:fb:9c:a4:40:6f:22:f9:39:38:99:24: 10:1a:58:c4:04:00:7b:9d:61:ba:07:2d:6b:63:16:b0:82:92: a0:e8:ad:a1:83:c8:eb:6d:76:0f:e4:5d:72:98:44:d1:21:45: 0a:4f:08:29:71:60:55:02:14:42:67:6f:2f:8b:d0:3b:cb:e6: a8:64:8d:20:28:e3:ce:ca:bb:38:bf:d0:15:00:61:10:20:0b: 4f:39:d7:d9:8c:70:41:67:50:24:cd:f0:36:76:16:3c:a3:96: 58:84:1c:4e:a2:e2:56:3d:6f:1b:e3:f2:6d:27:0b:1c:77:64: 24:cb:11:0f:97:d6:83:fc:cb:62:cf:60:39:87:da:29:30:14: 55:40:d7:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwQUYxMTAvBgNVBAUTKEUxMTQzNzhEQTkzNDg2MTQ2OUY0OTVEOTc1OThFMEYw MDI4OUMzMzAwHhcNMjUxMjA1MDQwOTMzWhcNMjUxMjEyMDQwOTMzWjAYMRYwFAYD VQQDEw02OTMyNWFmZC1iOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBgp+mH9SAvKdvkgt+5Lhbib0DUVYOmbvSrKdG61PCccY37UqMFCz8vGO4Br XrsgfhM1r5g8frZtogFp7r9hKi5KxDsxrAkqQKyH6WC7kAp0nPhn9zPXCccJDcJz LCB17KA/Dcc2gl5Evvzdw6qrn1W2j6pGRGNLNWjdjZoG3TKjcuKRTopwRDV24Aoy IGhfqSCbOI/Kg5YxM1K2+PJJQPy/NrQZwoKGixIqXYhiwpgzVLTGmU0NqscYm2Qj sOJiN1/LqnjZyjx3zGrwFcO+AU2FHzK46cBVsjrWeFaCAwip6SRPksKvxT8kPh3o YQtltLLDEkXV3FZfw/qklkbdTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfZ141V 4JIwQ0P7UpZY70tULy3QMB8GA1UdIwQYMBaAFOEUN42pNIYUafSV2XWY4PACicMw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjBBRi8yRDdBN0UwRUND NEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGhoUnA5SlhaZFpqZzhBS0p3 ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjBBRi8yRDdBN0UwRUNDNEYxMUVGQTg5QThGMTRDNEY5QUUwMi80UlEzamFrMGho UnA5SlhaZFpqZzhBS0p3ekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLznnK3nW1CRSlxyOKUdkVtiCDdqpVPfVV0svsJisdgtvlwycGdMbV jDsP9xWOHXD0LO2LbNxeWef+bHeYvYugc/1qcOYy4V1/gJ+2JPcsvAx28HbqLSwe dzXu14oE7zJA9EorblJDsTCN0F62/qizTrC/+5ykQG8i+Tk4mSQQGljEBAB7nWG6 By1rYxawgpKg6K2hg8jrbXYP5F1ymETRIUUKTwgpcWBVAhRCZ28vi9A7y+aoZI0g KOPOyrs4v9AVAGEQIAtPOdfZjHBBZ1AkzfA2dhY8o5ZYhBxOouJWPW8b4/JtJwsc d2QkyxEPl9aD/Mtiz2A5h9opMBRVQNdY -----END CERTIFICATE-----Generated at Sat Dec 6 22:59:59 2025 by rpki-client