This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: GZXWkygRUEDGr6boMRmlz2GnR2IeAG2tq0SL2ErFtz8= Subject key identifier: 1A:98:81:13:7E:2A:45:18:2B:6F:41:C2:7D:4F:E3:A0:13:F5:05:A0 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 021B Signing time: Sun 21 Dec 2025 01:28:19 +0000 Manifest this update: Sun 21 Dec 2025 01:28:18 +0000 Manifest next update: Sun 28 Dec 2025 01:28:18 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: MYVtjpUi/vwmcW5tgly76uNFcBms4hWMsAW38UfSWJ0=) 2: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: YIHS3PAvaz4V4QmFJCk8b1AkmK5GNgS8/DelBF3BA28=) 3: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: g6pquqeh1IhUuquygrP9Vdo65/Zud1vKIjoHKRNQNOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Dec 21 01:28:18 2025 GMT Not After : Dec 28 01:28:18 2025 GMT Subject: CN=69474d33-ca97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:28:3b:36:37:7d:19:e7:54:de:c8:6e:01:83: ca:8e:ee:9e:d5:72:b3:c4:dc:b0:c3:d4:04:8a:f9: 9c:e9:c7:71:ee:f5:33:63:59:d2:0b:9c:fa:ce:f8: 7b:af:0b:a5:5f:c1:d6:c7:ad:db:47:49:96:da:68: 0a:ba:41:d6:e3:ae:86:ab:b6:8a:eb:da:25:81:fd: 6b:b6:74:9a:de:61:03:4f:4a:15:b8:63:a5:93:0f: 68:14:74:4b:99:ec:37:8e:57:9f:f7:5e:fe:06:a6: a2:d0:42:81:f3:f0:60:a9:3a:13:f6:d8:25:a0:84: 53:35:ad:c9:0c:55:79:7d:36:67:bc:c3:0c:52:8d: 23:03:a4:3c:b4:dc:f1:e4:71:96:f2:d1:9b:5d:85: 08:b2:fb:d5:c7:3a:a2:58:81:ec:2b:73:d7:b0:bf: f3:27:b3:09:a0:15:54:58:30:04:90:d1:82:f1:ff: b1:3b:37:c7:ed:fc:7c:42:07:ed:f3:47:4a:dc:90: b9:ea:21:d1:a6:5a:d0:66:6e:ef:09:e4:3e:9c:a2: c9:3d:a2:14:04:34:74:33:81:df:d0:e1:f5:5c:c9: 1b:ba:a0:57:4a:ab:cf:e6:f7:df:a6:02:a0:b1:07: 70:ea:d4:fa:fd:7d:3c:7f:f6:a2:4e:07:53:84:8a: dd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:98:81:13:7E:2A:45:18:2B:6F:41:C2:7D:4F:E3:A0:13:F5:05:A0 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:aa:62:10:98:36:a6:b2:b7:a9:e5:10:26:40:cf:3f:e1:01: 06:8e:18:ce:ec:0b:0f:f5:9d:e2:04:1e:9b:17:48:10:ae:75: a1:02:ab:ed:65:3b:c3:00:6b:a0:03:a9:6b:f4:12:d4:f3:6a: ee:2e:f7:41:0b:00:be:3a:09:c8:b3:b9:d8:b9:54:af:7c:b3: d7:ec:50:79:c6:51:42:78:d0:29:31:53:d4:c7:bf:44:2f:e5: a3:e4:62:5f:47:61:16:e5:07:f7:2a:02:85:7e:8d:82:81:d2: 0a:c7:5e:46:18:2c:46:12:e0:a5:9a:9a:cd:91:c2:bc:37:8d: 0f:4e:b3:5f:99:46:05:a0:20:70:f1:fc:9f:97:9e:65:ed:92: 0e:df:71:73:10:51:2d:ea:b3:81:f7:59:ee:e1:c0:3b:40:f3: 5e:e3:3e:8d:e8:cd:6d:a4:d5:73:2a:a0:99:30:df:0c:06:95: d6:ba:ae:6d:d1:c4:9b:d0:18:c9:81:a8:39:c0:99:35:cf:e0: f4:fa:89:5f:ba:91:d6:69:d6:8b:70:5b:ba:aa:9a:dd:f9:69: b2:c1:07:c1:74:62:ad:8b:8d:6b:96:c5:96:93:48:a1:71:c1: d6:76:81:62:05:0a:b0:9c:f8:de:62:12:33:04:61:2a:90:5d: 81:ac:e2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUxMjIxMDEyODE4WhcNMjUxMjI4MDEyODE4WjAYMRYwFAYD VQQDDA02OTQ3NGQzMy1jYTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnig7Njd9GedU3shuAYPKju6e1XKzxNyww9QEivmc6cdx7vUzY1nSC5z6zvh7 rwulX8HWx63bR0mW2mgKukHW466Gq7aK69olgf1rtnSa3mEDT0oVuGOlkw9oFHRL mew3jlef917+Bqai0EKB8/BgqToT9tgloIRTNa3JDFV5fTZnvMMMUo0jA6Q8tNzx 5HGW8tGbXYUIsvvVxzqiWIHsK3PXsL/zJ7MJoBVUWDAEkNGC8f+xOzfH7fx8Qgft 80dK3JC56iHRplrQZm7vCeQ+nKLJPaIUBDR0M4Hf0OH1XMkbuqBXSqvP5vffpgKg sQdw6tT6/X08f/aiTgdThIrdrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqYgRN+ KkUYK29Bwn1P46AT9QWgMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+qmIQmDamsrep5RAmQM8/4QEGjhjO7AsP9Z3iBB6bF0gQrnWhAqvt ZTvDAGugA6lr9BLU82ruLvdBCwC+OgnIs7nYuVSvfLPX7FB5xlFCeNApMVPUx79E L+Wj5GJfR2EW5Qf3KgKFfo2CgdIKx15GGCxGEuClmprNkcK8N40PTrNfmUYFoCBw 8fyfl55l7ZIO33FzEFEt6rOB91nu4cA7QPNe4z6N6M1tpNVzKqCZMN8MBpXWuq5t 0cSb0BjJgag5wJk1z+D0+olfupHWadaLcFu6qprd+WmywQfBdGKti41rlsWWk0ih ccHWdoFiBQqwnPjeYhIzBGEqkF2BrOLB -----END CERTIFICATE-----Generated at Sun Dec 21 15:52:36 2025 by rpki-client