This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: fcZ3lg3RitNSfl0gp3xIinib2Eno1xDZOsPFt5uy90k= Subject key identifier: BF:40:26:99:2B:1F:26:93:6D:E9:5D:2B:01:E9:64:2B:DE:B9:1E:5A Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0194 Signing time: Thu 04 Dec 2025 22:04:54 +0000 Manifest this update: Thu 04 Dec 2025 22:04:54 +0000 Manifest next update: Thu 11 Dec 2025 22:04:54 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: zhN1M020F5njL43MC3obJl/Qwh88ifmY3u/WZ9pN2Rk=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Dec 4 22:04:54 2025 GMT Not After : Dec 11 22:04:54 2025 GMT Subject: CN=69320586-3609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:7e:74:76:1d:e6:91:40:17:c4:4c:ec:01: 15:5a:fb:2b:02:69:06:37:e2:46:17:01:4d:c3:88: f0:46:d0:b9:a1:0e:51:0c:ce:54:5d:7f:23:f2:76: 56:18:e5:53:c3:9b:c9:9b:7e:06:18:98:b6:47:94: 9a:9b:a2:75:3a:86:a8:b0:f1:03:86:b6:79:b0:d3: d2:b6:a1:0c:83:e1:cf:cd:5e:d2:a2:1a:03:54:0a: 9f:23:1d:e8:0e:22:f8:1b:3c:f4:65:ff:c6:ed:09: a8:45:f6:55:df:33:f8:1c:3a:d3:e5:a3:a9:f7:9d: 4d:0a:61:f5:f0:79:c0:8a:a2:a1:85:a7:93:71:4e: 7e:a8:f3:89:79:25:58:7b:4c:29:85:86:da:92:95: 2a:73:83:32:57:78:e6:b6:02:9b:c1:2c:20:37:2a: 3d:2c:a3:07:bb:f8:53:e0:2a:db:ae:98:50:c3:fc: c9:be:e9:8b:d0:e3:e5:92:cd:cb:66:33:5a:61:3f: 3a:63:78:da:d8:1f:e6:c1:80:91:af:07:83:69:b1: 33:d3:b1:be:4d:68:2e:46:a9:19:31:d3:1b:a5:58: 80:56:f6:df:bd:48:d2:74:ea:5a:5a:11:d4:8b:79: 4f:f7:f2:85:98:99:09:43:bd:63:be:7f:cd:9f:a1: 3b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:40:26:99:2B:1F:26:93:6D:E9:5D:2B:01:E9:64:2B:DE:B9:1E:5A X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ab:57:df:6f:1e:54:11:25:d3:f7:c7:34:57:c7:bc:8f:1e: ca:30:0c:41:4a:4f:fb:0c:b9:fe:b8:27:17:28:31:a6:50:a9: 31:13:18:48:cd:6e:63:7f:29:bb:18:3e:db:f0:b9:ad:18:d6: 8d:43:0f:29:29:f8:6e:46:78:4d:eb:49:21:b2:1b:d9:be:76: 08:bb:d8:03:81:90:dd:a3:e5:f5:f5:61:06:ca:12:3f:8d:5b: c0:34:98:5b:9f:0f:1e:98:18:42:43:15:e6:22:68:f6:81:b4: 1f:f2:ff:bc:22:e0:7b:f1:e8:d9:aa:d8:fb:a6:d7:5b:a6:2b: b3:f6:df:8c:b6:2b:57:88:b3:8f:ce:9e:cc:c1:eb:1b:75:31: 5e:9f:24:26:02:76:5c:ad:86:67:46:62:a8:f6:82:58:20:96: 43:c8:44:67:bb:55:05:c2:32:b8:c6:0f:3a:64:c3:3a:d5:62: 05:19:0f:9b:93:dd:54:bc:c7:fe:44:ee:a7:c5:57:bc:12:0c: 68:d6:fe:19:d4:f2:6d:89:7d:9b:be:da:d0:85:fb:f9:8c:e2: a9:5f:a2:31:c3:03:23:2a:ee:cf:41:36:89:af:f9:40:b4:a3: 8d:c6:5a:ef:d1:3a:08:d4:fe:14:91:83:b4:7f:72:59:bf:26: 8d:8b:bc:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUxMjA0MjIwNDU0WhcNMjUxMjExMjIwNDU0WjAYMRYwFAYD VQQDEw02OTMyMDU4Ni0zNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYt+dHYd5pFAF8RM7AEVWvsrAmkGN+JGFwFNw4jwRtC5oQ5RDM5UXX8j8nZW GOVTw5vJm34GGJi2R5Sam6J1OoaosPEDhrZ5sNPStqEMg+HPzV7SohoDVAqfIx3o DiL4Gzz0Zf/G7QmoRfZV3zP4HDrT5aOp951NCmH18HnAiqKhhaeTcU5+qPOJeSVY e0wphYbakpUqc4MyV3jmtgKbwSwgNyo9LKMHu/hT4CrbrphQw/zJvumL0OPlks3L ZjNaYT86Y3ja2B/mwYCRrweDabEz07G+TWguRqkZMdMbpViAVvbfvUjSdOpaWhHU i3lP9/KFmJkJQ71jvn/Nn6E7jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9AJpkr HyaTbeldKwHpZCveuR5aMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCq1ffbx5UESXT98c0V8e8jx7KMAxBSk/7DLn+uCcXKDGmUKkxExhI zW5jfym7GD7b8LmtGNaNQw8pKfhuRnhN60khshvZvnYIu9gDgZDdo+X19WEGyhI/ jVvANJhbnw8emBhCQxXmImj2gbQf8v+8IuB78ejZqtj7ptdbpiuz9t+MtitXiLOP zp7MwesbdTFenyQmAnZcrYZnRmKo9oJYIJZDyERnu1UFwjK4xg86ZMM61WIFGQ+b k91UvMf+RO6nxVe8Egxo1v4Z1PJtiX2bvtrQhfv5jOKpX6IxwwMjKu7PQTaJr/lA tKONxlrv0ToI1P4UkYO0f3JZvyaNi7xW -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:51 2025 by rpki-client