This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft File: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft (raw, json) Hash identifier: bX2RvoAgKw9d3yk66A4uNsAVANMhzJmFA5gChlSOXGM= Subject key identifier: 91:29:93:DD:0E:D6:CA:65:DF:F3:D1:12:90:50:D8:8A:4C:45:EE:AC Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft Manifest number: 0B17 Signing time: Sat 06 Dec 2025 18:34:40 +0000 Manifest this update: Sat 06 Dec 2025 18:34:40 +0000 Manifest next update: Sat 13 Dec 2025 18:34:40 +0000 Files and hashes: 1: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl (hash: BfJzmGjFJJj9qVwI4Qc41HVAo8bH22Z1oFDqq6Al8K8=) 2: 29B9D5B8524111EABEF0A119C4F9AE02.roa (hash: XgnhviRQUKAkeu4itRmlPhHlV4kxqNIZcBKK2pdxl3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Dec 6 18:34:40 2025 GMT Not After : Dec 13 18:34:40 2025 GMT Subject: CN=69347740-71b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:84:74:dc:76:05:1d:52:fd:be:fc:85:a5:d9: 15:2f:73:cd:fb:e6:46:46:0c:b6:f6:5f:be:b2:e9: 01:17:51:f5:95:00:3d:7b:12:97:15:db:c2:5f:37: 1f:9e:45:55:51:83:e8:f2:83:8c:88:e8:d6:14:52: f8:62:39:86:86:ef:a9:e0:75:79:65:2b:15:f0:8c: 30:fb:9b:65:a8:a8:37:05:0b:ca:44:22:f0:26:bf: c7:62:17:9e:98:23:52:1e:59:43:ab:cf:5e:b8:68: 3a:47:5e:b7:f3:5d:44:96:b5:6c:bb:e7:56:fd:25: 54:cb:d3:8e:fe:e0:02:4a:63:de:c8:9f:c9:4d:72: 58:93:76:f5:60:f5:58:f5:26:00:cf:6c:cf:27:6b: c2:6d:4b:1d:17:e1:57:2c:0f:df:06:68:7e:88:cf: 4b:94:2a:d3:be:7b:6b:2c:e0:29:47:80:99:5a:2d: f5:7a:82:08:e4:01:df:62:44:bf:4b:e6:3c:fe:ed: ac:a7:28:da:77:56:3b:0b:67:95:13:98:94:ab:e6: 37:d8:e8:69:19:f4:98:a8:e3:a7:fa:93:4e:69:63: 77:70:70:77:6a:88:85:2a:ec:5b:5b:4d:a5:47:05: d1:c9:f2:41:56:4d:64:09:92:9e:55:46:43:bc:5d: ef:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:29:93:DD:0E:D6:CA:65:DF:F3:D1:12:90:50:D8:8A:4C:45:EE:AC X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:72:6c:ed:e2:b7:ab:08:69:e8:92:00:32:9b:38:d6:16:eb: c2:8e:4c:82:02:3b:7f:87:9a:57:02:12:59:5f:e8:e6:e7:d4: 4b:43:43:d4:fc:b8:2c:12:12:ea:36:88:39:1b:c7:02:ba:2a: 6c:4c:ae:98:67:16:19:c6:df:c1:b1:30:55:3b:5d:a7:99:e1: 29:ef:29:af:4f:82:82:75:ab:0d:05:3e:a1:fe:87:a5:60:81: bb:ed:fa:f2:d8:05:7f:5c:74:f7:0c:bc:54:f8:fa:80:b5:97: 3a:5d:5f:39:85:90:6e:b0:7c:8c:c2:92:d8:87:60:e0:b6:0c: cf:b3:45:2c:b5:9f:99:4d:b3:13:9d:d6:13:70:2c:83:83:7d: a2:53:3e:33:16:99:fb:e5:71:9b:1d:f7:e9:ec:e6:71:4b:f3: 77:23:ce:bc:73:6a:f7:b9:86:a9:9c:ff:3e:73:de:38:96:ff: 2c:d2:b7:9d:9b:4e:ff:d4:12:ff:a2:f8:e3:9d:ba:3c:02:86: 22:72:df:ea:c0:2e:ce:7f:da:f6:dd:d2:03:86:73:9a:d8:63: 48:f1:2a:3e:56:56:f5:47:4a:28:c5:d3:da:1a:32:ac:ed:b5: 85:78:ac:ca:c2:91:95:c7:1c:58:1f:c8:43:3c:8c:13:9f:56: c6:df:ef:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjUxMjA2MTgzNDQwWhcNMjUxMjEzMTgzNDQwWjAYMRYwFAYD VQQDEw02OTM0Nzc0MC03MWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24R03HYFHVL9vvyFpdkVL3PN++ZGRgy29l++sukBF1H1lQA9exKXFdvCXzcf nkVVUYPo8oOMiOjWFFL4YjmGhu+p4HV5ZSsV8Iww+5tlqKg3BQvKRCLwJr/HYhee mCNSHllDq89euGg6R163811ElrVsu+dW/SVUy9OO/uACSmPeyJ/JTXJYk3b1YPVY 9SYAz2zPJ2vCbUsdF+FXLA/fBmh+iM9LlCrTvntrLOApR4CZWi31eoII5AHfYkS/ S+Y8/u2spyjad1Y7C2eVE5iUq+Y32OhpGfSYqOOn+pNOaWN3cHB3aoiFKuxbW02l RwXRyfJBVk1kCZKeVUZDvF3viQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEpk90O 1spl3/PREpBQ2IpMRe6sMB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS83MDYzRTQyNDUyM0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklD bXV2aDRUQ0FtZVlrbk5OaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjcmzt4rerCGnokgAymzjWFuvCjkyCAjt/h5pXAhJZX+jm59RLQ0PU /LgsEhLqNog5G8cCuipsTK6YZxYZxt/BsTBVO12nmeEp7ymvT4KCdasNBT6h/oel YIG77fry2AV/XHT3DLxU+PqAtZc6XV85hZBusHyMwpLYh2DgtgzPs0UstZ+ZTbMT ndYTcCyDg32iUz4zFpn75XGbHffp7OZxS/N3I868c2r3uYapnP8+c944lv8s0red m07/1BL/ovjjnbo8AoYict/qwC7Of9r23dIDhnOa2GNI8So+Vlb1R0ooxdPaGjKs 7bWFeKzKwpGVxxxYH8hDPIwTn1bG3+9w -----END CERTIFICATE-----Generated at Sat Dec 6 20:27:55 2025 by rpki-client