This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft File: VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json) Hash identifier: RWC1W5j25P8CLBOEzxL1BsuEA13z6MFwO+ge+RxIGcg= Subject key identifier: 73:53:03:62:FA:88:97:BF:87:86:9C:4B:AE:E6:5B:6B:48:70:50:DF Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D Certificate issuer: /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft Manifest number: 4E Signing time: Sun 21 Dec 2025 06:19:40 +0000 Manifest this update: Sun 21 Dec 2025 06:19:40 +0000 Manifest next update: Sun 28 Dec 2025 06:19:40 +0000 Files and hashes: 1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: DWI6EHQ3EuFM+6EhljucUSUhUsr7zJ9SDYK6bfHYnQg=) 2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Validity Not Before: Dec 21 06:19:40 2025 GMT Not After : Dec 28 06:19:40 2025 GMT Subject: CN=6947917c-9749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e2:52:b4:7a:52:c2:72:71:66:d6:fd:fd:80: 21:51:9a:96:ff:1e:91:c6:3f:c1:31:9f:9e:39:c8: bd:1c:04:6b:6d:7a:91:4d:3e:84:7a:37:71:ca:fc: b6:13:2e:1e:2a:b8:84:2b:df:42:92:85:2b:2a:d8: cb:ce:b3:e1:d5:b3:5d:c2:b4:89:70:33:84:de:8b: b2:35:07:91:b2:26:4c:cd:4a:19:f4:6e:4a:38:d3: 2b:c2:61:07:09:4a:28:08:95:71:08:e8:f1:a5:64: b6:86:c8:d0:e4:d7:6f:16:3c:85:af:16:cf:98:04: 8c:d4:20:a2:dc:b2:0c:22:9a:d8:0e:bc:d7:88:c2: e7:64:e0:38:9c:7b:0c:15:52:12:62:75:33:4f:ef: 1a:06:ee:07:2b:45:51:9e:1d:4f:4f:43:2b:fe:1d: cd:96:84:6f:2a:02:22:88:86:64:a1:ca:05:74:28: e3:e3:16:89:14:e4:f1:be:cd:81:c9:da:3f:e5:fa: 0a:de:b2:49:dc:26:47:65:79:ba:16:cb:4e:a9:9d: 33:34:02:ca:a3:42:c5:84:63:67:57:56:44:bf:35: 31:6f:b6:8b:5b:80:cb:29:35:ce:07:20:4c:09:5a: 43:48:7e:f5:af:b7:4b:8b:c9:ee:92:fd:eb:4b:23: cf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:53:03:62:FA:88:97:BF:87:86:9C:4B:AE:E6:5B:6B:48:70:50:DF X509v3 Authority Key Identifier: keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f1:45:2d:b5:8b:8e:11:4b:44:cc:c7:7a:24:9f:76:57:20: 51:5c:7e:12:9a:b5:00:4d:76:e6:3a:9d:22:56:52:14:9b:88: 44:ca:53:84:73:e9:f6:ec:1f:c6:0a:ee:18:68:d9:61:35:80: c9:70:47:a8:b9:ff:6d:5a:bb:96:1e:2e:26:82:cb:93:ab:6d: f9:e4:72:48:dd:75:77:3b:4c:d9:8b:4e:ee:9c:22:e4:fb:4e: f4:4e:77:cd:a7:ef:05:1d:b7:7e:6b:f0:5f:d8:d6:73:96:ae: 4e:ae:a7:2e:42:37:bf:e5:a0:de:27:20:9e:a1:b0:e3:9b:a1: 47:11:f8:36:6b:05:f3:3e:af:51:f5:50:48:29:70:13:0c:33: af:46:80:31:6a:94:5c:b1:6d:26:a1:23:6e:0b:67:dd:89:5e: 7f:96:ba:5c:5b:be:9b:52:f4:85:b4:c7:d2:89:22:ed:41:83: 3b:4e:04:d9:f3:47:f0:07:63:e4:5f:6c:61:05:b2:2c:fd:02: d3:c6:94:f2:d5:40:06:6d:8d:ec:b5:25:46:98:97:8a:92:fc: fc:30:dc:e1:6c:9e:a8:f0:fd:bc:bd:9c:a7:0c:6b:b2:fa:64: dd:59:ff:c2:e6:20:49:02:72:7d:f3:4c:83:05:7d:f1:6c:82: fa:88:d8:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0U0QTExMC8GA1UEBRMoNTQxREQxNUUxNTRFNTA4RkIwMEZEQjI0NUM0RTc2RjJB RDNEODgxRDAeFw0yNTEyMjEwNjE5NDBaFw0yNTEyMjgwNjE5NDBaMBgxFjAUBgNV BAMMDTY5NDc5MTdjLTk3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCW4lK0elLCcnFm1v39gCFRmpb/HpHGP8Exn545yL0cBGttepFNPoR6N3HK/LYT Lh4quIQr30KShSsq2MvOs+HVs13CtIlwM4Tei7I1B5GyJkzNShn0bko40yvCYQcJ SigIlXEI6PGlZLaGyNDk128WPIWvFs+YBIzUIKLcsgwimtgOvNeIwudk4DicewwV UhJidTNP7xoG7gcrRVGeHU9PQyv+Hc2WhG8qAiKIhmShygV0KOPjFokU5PG+zYHJ 2j/l+greskncJkdleboWy06pnTM0AsqjQsWEY2dXVkS/NTFvtotbgMspNc4HIEwJ WkNIfvWvt0uLye6S/etLI8+xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc1MDYvqI l7+HhpxLruZba0hwUN8wHwYDVR0jBBgwFoAUVB3RXhVOUI+wD9skXE528q09iB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRTRBL0UxRUExOUY2Njcz ODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUktd0Q5c2tYRTUyOHEwOWlC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkIzUlhoVk9VSS13RDlza1hFNTI4cTA5aUIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RTRBL0UxRUExOUY2NjczODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUkt d0Q5c2tYRTUyOHEwOWlCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEvxRS21i44RS0TMx3okn3ZXIFFcfhKatQBNduY6nSJWUhSbiETKU4Rz 6fbsH8YK7hho2WE1gMlwR6i5/21au5YeLiaCy5OrbfnkckjddXc7TNmLTu6cIuT7 TvROd82n7wUdt35r8F/Y1nOWrk6upy5CN7/loN4nIJ6hsOOboUcR+DZrBfM+r1H1 UEgpcBMMM69GgDFqlFyxbSahI24LZ92JXn+WulxbvptS9IW0x9KJIu1BgztOBNnz R/AHY+RfbGEFsiz9AtPGlPLVQAZtjey1JUaYl4qS/Pww3OFsnqjw/by9nKcMa7L6 ZN1Z/8LmIEkCcn3zTIMFffFsgvqI2Ok= -----END CERTIFICATE-----Generated at Sun Dec 21 09:04:19 2025 by rpki-client