This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: t4q2WC+4GJ1kI1HCpHKGmSgBZMREb86Xpq0eWVj+TJQ= Subject key identifier: A0:03:91:81:A7:6A:33:DE:DB:18:43:C7:47:79:AD:DB:83:63:DC:1C Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0779 Signing time: Sat 06 Dec 2025 20:35:15 +0000 Manifest this update: Sat 06 Dec 2025 20:35:14 +0000 Manifest next update: Sat 13 Dec 2025 20:35:14 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: Tf0TQitnGW1ugm6InreF4PpH/CnA+2juHtxc3bAy8OY=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Dec 6 20:35:14 2025 GMT Not After : Dec 13 20:35:14 2025 GMT Subject: CN=69349383-2678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7d:c9:19:8b:f9:64:17:2b:f9:5a:7f:e0:c7: 6d:de:79:e8:54:17:b5:e7:4b:2b:c1:bb:f1:c1:e0: 97:2f:b4:c1:dd:61:d6:29:6f:c2:f6:c5:5f:5b:15: f1:46:8a:43:27:28:83:5f:3e:5d:27:f8:96:c5:9c: a0:d0:85:69:ea:c5:a3:07:55:74:4a:6c:65:9c:fd: 14:73:82:00:4f:f5:29:1f:af:2b:fc:9d:ce:b4:eb: f3:4f:63:df:00:fe:77:fb:9d:9d:69:7d:49:2f:eb: 4c:79:b3:3f:2d:a3:ee:1e:f6:c4:87:cb:a0:de:d5: 8e:3e:f2:3f:25:bc:ef:ff:1b:bd:b0:1c:86:92:a0: 2c:e4:3f:5a:c2:a8:4a:2b:36:ad:13:fb:3b:00:90: 16:64:3b:ca:2c:60:a7:02:e8:77:1e:56:ac:70:b7: 87:b8:7c:ca:c0:ba:73:3a:61:bf:0e:a1:fe:b8:7a: 6c:11:ec:67:fb:2c:59:86:f5:a6:fa:0a:56:6d:e9: 71:9d:33:ec:ca:11:2d:9a:76:ce:83:53:53:87:6c: bf:ff:b7:c2:f7:15:03:84:f5:33:7c:36:4d:a1:df: 3e:3f:71:6b:b4:36:ca:92:22:d9:c9:27:7d:77:54: 88:d0:f6:ea:f2:48:d5:3c:5d:64:7c:15:0d:cc:e8: c5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:03:91:81:A7:6A:33:DE:DB:18:43:C7:47:79:AD:DB:83:63:DC:1C X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:ba:b0:5a:a0:3b:8b:a9:12:3b:b3:9b:6b:8b:ac:04:21:28: 47:77:f9:e4:bd:86:23:be:22:32:b2:67:a8:62:fc:50:63:56: be:0a:4b:22:05:ca:8a:b3:af:45:8d:ea:8f:aa:28:ee:85:b0: 61:b9:03:4c:a2:08:02:d2:8e:c4:8d:83:6e:fe:54:78:c0:e4: c0:3a:e0:18:24:4f:7d:ab:e5:7f:2e:41:33:77:aa:3b:c6:f6: 0e:cd:88:d0:43:e8:2b:4a:00:36:ad:d4:58:70:72:a6:d6:1f: d5:70:01:de:2a:c7:fb:3b:c7:5e:74:e4:bd:f1:a0:ca:a3:bf: 64:80:d1:cd:af:86:12:bf:c4:65:7b:e1:32:1b:a4:17:77:22: a6:32:d1:73:d4:02:c6:11:ed:7a:71:8f:3e:9b:ce:7b:d7:79: 98:c5:e3:cb:58:b1:32:59:3a:a0:f1:65:e3:1a:c4:d6:98:41: 9e:0d:17:57:c5:da:b1:de:22:ec:58:f6:56:1d:8a:82:2b:7c: 66:d6:2f:21:b9:55:75:bb:78:0c:f4:9c:f1:84:1c:0e:20:d4: ba:75:35:f0:68:4a:22:d6:7d:cb:d8:cd:6a:df:e1:fd:8e:d9: e9:8f:98:9c:8c:57:c6:ea:29:7a:17:a0:ea:f9:7a:3f:30:d9: 64:45:8a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUxMjA2MjAzNTE0WhcNMjUxMjEzMjAzNTE0WjAYMRYwFAYD VQQDEw02OTM0OTM4My0yNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmn3JGYv5ZBcr+Vp/4Mdt3nnoVBe150srwbvxweCXL7TB3WHWKW/C9sVfWxXx RopDJyiDXz5dJ/iWxZyg0IVp6sWjB1V0SmxlnP0Uc4IAT/UpH68r/J3OtOvzT2Pf AP53+52daX1JL+tMebM/LaPuHvbEh8ug3tWOPvI/Jbzv/xu9sByGkqAs5D9awqhK KzatE/s7AJAWZDvKLGCnAuh3HlascLeHuHzKwLpzOmG/DqH+uHpsEexn+yxZhvWm +gpWbelxnTPsyhEtmnbOg1NTh2y//7fC9xUDhPUzfDZNod8+P3FrtDbKkiLZySd9 d1SI0Pbq8kjVPF1kfBUNzOjFmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKADkYGn ajPe2xhDx0d5rduDY9wcMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSurBaoDuLqRI7s5tri6wEIShHd/nkvYYjviIysmeoYvxQY1a+Cksi BcqKs69FjeqPqijuhbBhuQNMoggC0o7EjYNu/lR4wOTAOuAYJE99q+V/LkEzd6o7 xvYOzYjQQ+grSgA2rdRYcHKm1h/VcAHeKsf7O8dedOS98aDKo79kgNHNr4YSv8Rl e+EyG6QXdyKmMtFz1ALGEe16cY8+m85713mYxePLWLEyWTqg8WXjGsTWmEGeDRdX xdqx3iLsWPZWHYqCK3xm1i8huVV1u3gM9JzxhBwOINS6dTXwaEoi1n3L2M1q3+H9 jtnpj5icjFfG6il6F6Dq+Xo/MNlkRYrt -----END CERTIFICATE-----Generated at Sun Dec 7 02:11:07 2025 by rpki-client