This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: WA81nz9VwAUiidt4awQspfOnNpkpd8+qiQhmG1zAQq4= Subject key identifier: DE:4E:B8:C6:D4:92:41:63:C9:34:64:58:00:11:EB:F8:92:87:C3:6D Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05E7 Signing time: Sat 06 Dec 2025 21:49:57 +0000 Manifest this update: Sat 06 Dec 2025 21:49:56 +0000 Manifest next update: Sat 13 Dec 2025 21:49:56 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: 4ObtBI1Gk9fnVGXiBFnicHc/reWGBkT37sjfeIeIrJ0=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Dec 6 21:49:56 2025 GMT Not After : Dec 13 21:49:56 2025 GMT Subject: CN=6934a505-6292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ca:e0:96:a9:81:c5:f5:86:ff:89:98:4e:94: 72:6c:d0:58:75:e0:0e:ed:da:61:5e:e3:2e:9e:3e: 69:ce:ed:0d:e7:16:40:f1:25:44:45:1b:d6:71:ea: 47:62:f7:43:2e:59:fe:33:b9:73:d4:1d:a9:d8:bf: d5:0f:ec:10:38:1b:1a:76:93:ad:68:f7:ee:6a:a9: 3e:33:34:86:75:cc:e3:a7:c8:fd:85:3d:b9:f0:78: 01:0b:f6:63:fd:c3:b4:dd:e1:b3:07:cc:00:7b:7b: 20:25:eb:ab:df:80:1e:97:13:c1:19:58:8e:f4:12: 85:d3:df:8d:cf:e3:17:e8:8e:87:87:8a:f7:90:01: f4:c3:7e:5c:5e:0d:88:7e:44:73:e9:3c:21:34:af: 2b:a8:38:9a:c2:2c:16:a4:6d:a9:77:b6:54:c8:66: 98:3f:e5:c7:0d:2a:ab:b7:57:90:ef:04:ac:dc:0c: 38:dc:a3:d8:c1:21:e5:6c:17:f7:ac:61:8f:26:57: 61:d0:a2:8c:82:00:bf:01:63:68:2e:88:c5:31:b4: b4:f1:0d:28:a7:d2:dc:61:20:a9:7d:a5:64:9b:08: 77:be:cf:f4:9c:8c:3b:d8:21:c7:29:ee:2d:65:4d: 90:61:1c:e3:11:c5:35:cd:da:3b:ca:10:c8:12:c2: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4E:B8:C6:D4:92:41:63:C9:34:64:58:00:11:EB:F8:92:87:C3:6D X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:24:88:8a:8c:a3:d2:8e:f3:24:2d:4b:bb:8f:f8:4c:ea:95: 46:3e:97:dc:6c:7b:a2:46:9e:d3:8f:25:e5:fb:dd:d0:fd:8a: 76:19:57:b4:be:e2:3c:51:98:e4:7f:f5:85:60:f0:ab:4d:c9: 30:38:19:c0:1a:2a:5a:46:84:e5:9f:60:b9:14:5b:7f:80:b2: 91:43:0a:8a:00:88:72:c6:f2:c2:06:56:79:73:91:ea:cc:10: 4d:65:4c:09:0d:35:22:db:e5:2c:8a:ff:b8:d6:68:fe:3f:4b: bd:f4:5a:6f:28:60:54:ad:ce:a2:3c:09:c2:70:82:84:38:92: ee:96:3b:6b:aa:49:9b:20:07:3f:91:f1:99:07:e5:84:f1:4d: 7e:04:f2:3d:46:e5:df:e8:3f:c1:76:c1:12:8b:a6:5b:2b:5f: fd:1d:94:9e:24:8a:64:8f:53:ec:07:70:27:5c:e5:8d:77:f8: 41:ee:bf:42:23:25:23:6c:a4:98:7b:c3:b8:24:6e:12:84:54: d8:be:2c:5c:b0:e5:df:97:2b:6d:39:06:b6:52:13:30:76:93: 8d:1e:2f:28:1e:4b:20:08:62:9a:6a:37:f8:f9:45:55:6a:58: 26:3b:7e:9d:fd:3a:f0:af:09:40:37:3b:5b:e4:78:b0:82:c8: 67:1a:68:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMjA2MjE0OTU2WhcNMjUxMjEzMjE0OTU2WjAYMRYwFAYD VQQDEw02OTM0YTUwNS02MjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MrglqmBxfWG/4mYTpRybNBYdeAO7dphXuMunj5pzu0N5xZA8SVERRvWcepH YvdDLln+M7lz1B2p2L/VD+wQOBsadpOtaPfuaqk+MzSGdczjp8j9hT258HgBC/Zj /cO03eGzB8wAe3sgJeur34AelxPBGViO9BKF09+Nz+MX6I6Hh4r3kAH0w35cXg2I fkRz6TwhNK8rqDiawiwWpG2pd7ZUyGaYP+XHDSqrt1eQ7wSs3Aw43KPYwSHlbBf3 rGGPJldh0KKMggC/AWNoLojFMbS08Q0op9LcYSCpfaVkmwh3vs/0nIw72CHHKe4t ZU2QYRzjEcU1zdo7yhDIEsLJkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5OuMbU kkFjyTRkWAAR6/iSh8NtMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtJIiKjKPSjvMkLUu7j/hM6pVGPpfcbHuiRp7TjyXl+93Q/Yp2GVe0 vuI8UZjkf/WFYPCrTckwOBnAGipaRoTln2C5FFt/gLKRQwqKAIhyxvLCBlZ5c5Hq zBBNZUwJDTUi2+Usiv+41mj+P0u99FpvKGBUrc6iPAnCcIKEOJLuljtrqkmbIAc/ kfGZB+WE8U1+BPI9RuXf6D/BdsESi6ZbK1/9HZSeJIpkj1PsB3AnXOWNd/hB7r9C IyUjbKSYe8O4JG4ShFTYvixcsOXflyttOQa2UhMwdpONHi8oHksgCGKaajf4+UVV algmO36d/TrwrwlANztb5HiwgshnGmi+ -----END CERTIFICATE-----Generated at Sun Dec 7 01:01:37 2025 by rpki-client