This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: 0yxVJ5ymipKK2vSawRq09t6Nx+wPBnkyujhxeqIh/bY= Subject key identifier: B3:19:2C:AC:61:4D:42:36:91:CC:7F:2B:A1:7C:75:02:CD:8F:77:ED Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 4B Signing time: Fri 05 Dec 2025 05:11:08 +0000 Manifest this update: Fri 05 Dec 2025 05:11:07 +0000 Manifest next update: Fri 12 Dec 2025 05:11:07 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: UCdxuLNb6QV2gpav8Ij11VixT6ehFyykaBAdScegiTM=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Dec 5 05:11:07 2025 GMT Not After : Dec 12 05:11:07 2025 GMT Subject: CN=6932696b-19a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:44:df:f4:f0:4a:6e:7b:3c:6d:85:b4:66:9e: fe:80:d0:e6:5d:ca:92:5b:af:74:1b:52:95:c3:fb: c8:16:d5:54:68:51:4b:19:c6:d5:42:48:09:10:53: ad:b8:95:92:7f:f2:45:eb:3f:9f:25:98:39:e5:bc: f1:5c:d5:0d:30:f5:a3:43:94:84:f8:c6:61:c5:5e: be:c2:20:29:b9:f1:63:54:fb:b7:8a:aa:f0:03:75: 7d:e0:2d:c8:9e:a8:fb:5e:ce:bc:4f:08:13:29:d8: cd:e0:a4:89:ad:b2:20:b0:5b:b0:76:07:ea:8c:e4: 4a:47:40:e5:ba:6b:52:f8:eb:60:2e:6f:bd:5d:09: af:09:1d:3f:93:1f:78:60:be:d8:a4:53:7e:8a:58: 57:44:99:da:04:93:17:e8:ae:ca:e1:a4:00:72:50: 44:9d:f3:75:1d:7b:8a:6e:48:93:e5:ea:2a:8f:75: bc:41:04:cd:7d:28:46:c2:81:82:6d:4d:d4:41:84: 61:c3:82:c1:63:8d:ff:58:c4:e1:47:6b:83:04:72: 54:7c:51:c5:22:d9:cd:dd:cd:bd:62:9c:73:44:21: 12:6d:c1:c3:59:7c:9b:4c:20:a9:c4:c4:34:e9:05: 6c:87:5b:40:14:a1:ce:b0:c7:69:4e:70:1a:8c:d5: fb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:19:2C:AC:61:4D:42:36:91:CC:7F:2B:A1:7C:75:02:CD:8F:77:ED X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:21:5a:ce:62:fc:b1:28:c2:72:53:4b:91:93:ea:29:7c:5a: 61:f3:93:48:70:88:46:a3:77:34:69:46:4c:0d:2e:4c:97:16: c3:ba:8a:95:d0:0a:fd:2e:6f:e8:27:11:d8:36:15:11:ec:a8: 8c:39:ea:6c:c8:e7:24:4f:28:a1:9e:a9:6d:47:6b:c0:e7:58: aa:70:42:bf:c4:5b:c6:45:18:90:da:b0:cc:d0:29:9f:b1:aa: cc:12:33:ba:f7:80:8d:ec:32:64:2c:94:4e:b7:a8:f1:22:41: 87:ad:0c:53:6e:50:b7:fa:00:3b:98:a1:81:5d:c5:fa:d1:53: 73:5c:2e:0a:5a:81:4e:04:4e:de:ad:2b:91:e8:f4:e7:65:c6: 2b:43:fc:12:72:9c:36:06:18:9c:33:ef:34:7f:31:8d:b0:3a: 28:e9:df:d0:b4:4b:8d:c5:07:11:ea:73:08:92:ae:c6:ec:2d: 36:64:e8:f4:6b:ac:73:cc:4d:23:d2:f5:e0:54:ac:0d:d7:7c: d5:d4:c8:17:bb:44:05:27:6d:26:18:9b:a5:2d:73:10:ce:ad: f1:be:16:2e:f8:7d:2f:8e:45:cb:17:11:ee:42:7b:b5:3f:ac: 35:39:bd:3a:52:bc:ec:67:fa:1b:49:bd:61:de:eb:bb:a0:8f: fe:a5:34:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTEyMDUwNTExMDdaFw0yNTEyMTIwNTExMDdaMBgxFjAUBgNV BAMTDTY5MzI2OTZiLTE5YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmRN/08EpuezxthbRmnv6A0OZdypJbr3QbUpXD+8gW1VRoUUsZxtVCSAkQU624 lZJ/8kXrP58lmDnlvPFc1Q0w9aNDlIT4xmHFXr7CICm58WNU+7eKqvADdX3gLcie qPtezrxPCBMp2M3gpImtsiCwW7B2B+qM5EpHQOW6a1L462Aub71dCa8JHT+TH3hg vtikU36KWFdEmdoEkxforsrhpAByUESd83Ude4puSJPl6iqPdbxBBM19KEbCgYJt TdRBhGHDgsFjjf9YxOFHa4MEclR8UcUi2c3dzb1inHNEIRJtwcNZfJtMIKnExDTp BWyHW0AUoc6wx2lOcBqM1fv7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsxksrGFN QjaRzH8roXx1As2Pd+0wHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8hWs5i/LEownJTS5GT6il8WmHzk0hwiEajdzRpRkwNLkyXFsO6ipXQ Cv0ub+gnEdg2FRHsqIw56mzI5yRPKKGeqW1Ha8DnWKpwQr/EW8ZFGJDasMzQKZ+x qswSM7r3gI3sMmQslE63qPEiQYetDFNuULf6ADuYoYFdxfrRU3NcLgpagU4ETt6t K5Ho9OdlxitD/BJynDYGGJwz7zR/MY2wOijp39C0S43FBxHqcwiSrsbsLTZk6PRr rHPMTSPS9eBUrA3XfNXUyBe7RAUnbSYYm6UtcxDOrfG+Fi74fS+ORcsXEe5Ce7U/ rDU5vTpSvOxn+htJvWHe67ugj/6lND4= -----END CERTIFICATE-----Generated at Sat Dec 6 16:53:20 2025 by rpki-client