This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: zV20uleKydtyBgVz4x+SLimRP+uicgqCsk1Qvg0VzP4= Subject key identifier: 7F:E3:60:B6:04:C1:5A:71:D3:5D:C9:C4:1A:35:00:00:7A:C9:8C:20 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0146 Signing time: Fri 05 Dec 2025 02:26:58 +0000 Manifest this update: Fri 05 Dec 2025 02:26:57 +0000 Manifest next update: Fri 12 Dec 2025 02:26:57 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: dgosT2ekdLuFzE2kVdf7kPqAfVJpI3/K4fc8TnreGOY=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Dec 5 02:26:57 2025 GMT Not After : Dec 12 02:26:57 2025 GMT Subject: CN=693242f1-168b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:d0:62:e5:b0:b1:1c:6e:58:90:21:3a:99: 20:fa:e1:f7:ac:ef:62:88:4c:4a:43:34:37:4b:25: 67:0e:88:4b:4f:16:9c:19:66:42:d3:d6:1f:67:5b: 1f:21:7c:0a:74:d9:2a:83:02:83:f4:d7:a3:7f:71: 12:90:d7:35:3f:e6:29:92:60:87:66:d9:5a:65:f7: 36:1c:cf:d9:14:55:e1:96:2b:b1:3c:71:da:24:35: ea:27:90:ec:4b:23:2e:58:07:25:bb:61:3d:02:dc: 9f:b8:65:07:5c:a2:05:78:74:a6:bf:9b:cc:b4:08: 40:10:0f:96:b8:cc:62:c6:b9:4f:04:e4:ce:86:33: 5f:b3:b1:9c:ff:10:a2:f3:e1:b2:1a:59:c9:86:9a: d6:aa:08:87:41:90:d6:a3:89:67:d2:27:a7:c2:8c: b1:05:53:49:75:19:06:2c:ec:67:01:05:53:1d:b9: 1f:38:c4:56:b0:1a:83:8d:be:fb:76:59:ae:c0:6a: 5c:90:7a:3f:97:45:9b:92:36:e4:40:79:32:a2:11: ea:44:3e:89:95:2b:b1:c7:8f:2c:9c:ee:ed:ee:0f: 97:71:07:44:f6:ce:2b:b5:37:f7:19:de:48:a1:9d: eb:2a:e4:ee:e9:51:21:01:07:0d:c9:84:b2:50:e0: 3a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E3:60:B6:04:C1:5A:71:D3:5D:C9:C4:1A:35:00:00:7A:C9:8C:20 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:57:d8:fd:d6:0f:48:e9:fd:86:a0:90:a3:77:1e:4f:17:51: c9:44:7b:2d:dd:86:7d:ff:ed:3e:d2:1f:9d:e5:35:81:f3:0d: 9a:5b:a1:4f:c9:21:f6:5a:76:52:98:d7:fb:7d:8d:ef:d5:76: 18:3c:d7:82:23:b4:9f:b0:82:67:c4:33:75:f2:cf:2f:a5:80: 9d:de:d5:d5:91:8b:99:45:5f:aa:97:42:1c:37:01:1f:96:24: 4d:05:af:49:c8:bf:7f:fa:06:31:9f:fc:c8:71:ac:81:67:7a: 5c:17:33:c2:63:77:ed:93:93:e9:4f:7a:3b:89:3b:a3:e7:b5: 2f:0e:f7:0f:39:00:80:20:1d:1d:8d:e1:26:82:e5:ec:c8:06: 4e:11:bb:e0:05:f2:a9:1b:ca:97:ce:dc:8c:51:22:83:54:57: e4:0b:a9:87:0c:88:1d:26:1d:3d:25:cd:5a:27:36:6f:55:c1: ab:b4:c2:26:d3:c6:36:9a:cb:f8:e1:25:ac:11:cc:ef:1b:53: e8:4b:44:fd:08:a7:52:e2:5e:fb:78:99:64:f9:a5:0a:33:0c: 13:f1:b4:6e:08:e6:69:89:1a:a5:24:cc:35:6b:0d:79:06:ba: 75:58:6f:85:ea:ce:8e:86:cf:08:e5:94:ec:2a:3a:37:49:b9: 00:09:0c:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUxMjA1MDIyNjU3WhcNMjUxMjEyMDIyNjU3WjAYMRYwFAYD VQQDEw02OTMyNDJmMS0xNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2nQYuWwsRxuWJAhOpkg+uH3rO9iiExKQzQ3SyVnDohLTxacGWZC09YfZ1sf IXwKdNkqgwKD9Nejf3ESkNc1P+YpkmCHZtlaZfc2HM/ZFFXhliuxPHHaJDXqJ5Ds SyMuWAclu2E9AtyfuGUHXKIFeHSmv5vMtAhAEA+WuMxixrlPBOTOhjNfs7Gc/xCi 8+GyGlnJhprWqgiHQZDWo4ln0ienwoyxBVNJdRkGLOxnAQVTHbkfOMRWsBqDjb77 dlmuwGpckHo/l0WbkjbkQHkyohHqRD6JlSuxx48snO7t7g+XcQdE9s4rtTf3Gd5I oZ3rKuTu6VEhAQcNyYSyUOA6tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/jYLYE wVpx013JxBo1AAB6yYwgMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmV9j91g9I6f2GoJCjdx5PF1HJRHst3YZ9/+0+0h+d5TWB8w2aW6FP ySH2WnZSmNf7fY3v1XYYPNeCI7SfsIJnxDN18s8vpYCd3tXVkYuZRV+ql0IcNwEf liRNBa9JyL9/+gYxn/zIcayBZ3pcFzPCY3ftk5PpT3o7iTuj57UvDvcPOQCAIB0d jeEmguXsyAZOEbvgBfKpG8qXztyMUSKDVFfkC6mHDIgdJh09Jc1aJzZvVcGrtMIm 08Y2msv44SWsEczvG1PoS0T9CKdS4l77eJlk+aUKMwwT8bRuCOZpiRqlJMw1aw15 Brp1WG+F6s6Ohs8I5ZTsKjo3SbkACQwl -----END CERTIFICATE-----Generated at Sun Dec 7 03:25:56 2025 by rpki-client