This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: 3DB+stoZopTKE+VrALHlijODvUrVk/ZElpjE1Ga0GW4= Subject key identifier: A1:D7:7A:50:5C:B4:A5:1A:17:4E:C7:88:39:59:9B:27:D5:1E:91:4D Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1C3E Signing time: Sat 06 Dec 2025 15:52:58 +0000 Manifest this update: Sat 06 Dec 2025 15:52:57 +0000 Manifest next update: Sat 13 Dec 2025 15:52:57 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: kKbFc7H7Y34YfS3aaA3aUK11nS6zIktDiCmwqs7sGWc=) 2: 65D82706BACE11F0AAEC4611C4F9AE02.roa (hash: jRKCXjvvxz21yV0w47MZxjLNIbg9HlLS7JMeNrcmv0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7245 (0x1c4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Dec 6 15:52:57 2025 GMT Not After : Dec 13 15:52:57 2025 GMT Subject: CN=69345159-c6cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:67:fe:85:9b:1d:b6:a5:9e:e9:d0:ed:05: 07:72:4b:52:4a:f7:70:1c:53:c8:3e:9f:6c:34:2a: 59:0c:d7:ab:96:ea:6c:46:62:3d:a0:b2:8e:14:17: d4:43:65:ff:9d:70:df:2a:1e:f4:6d:7d:42:0f:c5: 5e:0e:ca:06:2d:57:c6:c8:1a:f0:39:a6:60:27:43: 8c:f0:a0:a7:8b:60:a2:5d:37:30:1e:66:f3:2c:0a: 5d:76:12:57:79:ac:e1:00:21:bd:30:20:59:76:b0: 5c:fe:d5:8e:14:d6:cf:41:43:4a:f9:3d:f7:9b:4d: be:2e:f4:02:11:38:20:0b:4f:fb:fd:63:90:b8:df: 45:68:47:83:b0:8b:97:1c:69:2b:d1:d0:fc:21:86: 16:65:23:54:1e:10:fc:0f:0a:9e:10:8b:da:35:f4: 0d:04:22:29:88:49:c6:bf:91:29:0d:50:9a:b5:24: 2f:cd:8d:5d:15:79:28:c5:e1:12:d3:af:96:07:4f: 17:73:b7:f0:47:22:bd:52:eb:ec:77:68:d0:fa:30: 2d:5c:a2:83:f7:9f:e3:f3:5d:7f:be:3a:5f:ee:13: b9:ba:2c:09:ca:0a:e8:fe:20:bf:24:f9:9c:fe:ac: 53:64:fa:0c:86:94:18:1a:95:05:80:f6:47:f2:d1: 6e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D7:7A:50:5C:B4:A5:1A:17:4E:C7:88:39:59:9B:27:D5:1E:91:4D X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:a0:ee:f2:39:07:6f:e5:48:cc:fb:45:6e:26:bc:8d:ea:b1: 7f:43:f1:3e:7e:4f:f8:94:37:8d:48:75:c3:8d:01:14:92:93: 51:59:fe:62:e8:d3:e5:99:5b:9a:54:ee:a7:26:b0:26:60:ad: c9:a2:fb:4b:2c:75:b1:d0:fd:25:a2:d7:7c:94:42:3d:3d:3a: 95:8b:72:85:b4:65:f9:57:1b:48:e7:2f:ca:dd:84:89:8d:a5: 68:b6:f2:6d:fc:88:bc:b7:e3:f9:90:30:ab:62:e4:a9:37:c1: dd:d7:b1:1a:13:f8:ec:5d:99:28:35:e6:9b:84:5a:42:41:b3: 08:b2:7a:ca:08:e1:65:4d:b4:12:98:89:5f:f2:06:9a:5f:e8: be:6e:4e:d4:8f:1e:fa:5f:d0:59:8d:87:0a:4e:74:2f:f3:a6: 37:6c:50:0a:53:c1:d9:37:b7:a9:fe:59:b5:ba:63:b6:33:74: 86:e1:d4:3f:be:86:27:ba:d7:97:0c:aa:e2:16:cf:0b:54:bb: 11:7c:de:c8:ad:e8:2f:ed:dc:b6:99:df:37:39:b6:40:cd:43: bc:56:82:69:2f:ae:30:66:e1:fe:91:33:34:04:a6:b9:af:e8: a4:8e:2a:86:e5:9c:3d:0b:be:0d:ee:3c:ae:18:52:1b:ab:f4: 16:5f:db:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUxMjA2MTU1MjU3WhcNMjUxMjEzMTU1MjU3WjAYMRYwFAYD VQQDEw02OTM0NTE1OS1jNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+xn/oWbHbalnunQ7QUHcktSSvdwHFPIPp9sNCpZDNerlupsRmI9oLKOFBfU Q2X/nXDfKh70bX1CD8VeDsoGLVfGyBrwOaZgJ0OM8KCni2CiXTcwHmbzLApddhJX eazhACG9MCBZdrBc/tWOFNbPQUNK+T33m02+LvQCETggC0/7/WOQuN9FaEeDsIuX HGkr0dD8IYYWZSNUHhD8DwqeEIvaNfQNBCIpiEnGv5EpDVCatSQvzY1dFXkoxeES 06+WB08Xc7fwRyK9Uuvsd2jQ+jAtXKKD95/j811/vjpf7hO5uiwJygro/iC/JPmc /qxTZPoMhpQYGpUFgPZH8tFuEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHXelBc tKUaF07HiDlZmyfVHpFNMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBooO7yOQdv5UjM+0VuJryN6rF/Q/E+fk/4lDeNSHXDjQEUkpNRWf5i 6NPlmVuaVO6nJrAmYK3JovtLLHWx0P0lotd8lEI9PTqVi3KFtGX5VxtI5y/K3YSJ jaVotvJt/Ii8t+P5kDCrYuSpN8Hd17EaE/jsXZkoNeabhFpCQbMIsnrKCOFlTbQS mIlf8gaaX+i+bk7Ujx76X9BZjYcKTnQv86Y3bFAKU8HZN7ep/lm1umO2M3SG4dQ/ voYnuteXDKriFs8LVLsRfN7Iregv7dy2md83ObZAzUO8VoJpL64wZuH+kTM0BKa5 r+ikjiqG5Zw9C74N7jyuGFIbq/QWX9u4 -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:19 2025 by rpki-client