This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: vEcKV5+nDTkushxJMcQwBrQ9YG/59kbzcaZIvPLClnk= Subject key identifier: 00:00:EF:A2:4C:9C:7C:D4:E3:FA:37:15:A0:1B:F5:68:E2:63:3D:77 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0B37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0B30 Signing time: Tue 16 Dec 2025 18:58:26 +0000 Manifest this update: Tue 16 Dec 2025 18:58:25 +0000 Manifest next update: Tue 23 Dec 2025 18:58:25 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: CrPBOVGFhEQp0wgzeHOouBDU3OuQvu4xG+kpGI82wK8=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: dlSOSQk2MniPlYlY5Ht7zlRaFaui9HZpjfs6c69fqdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2871 (0xb37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Dec 16 18:58:25 2025 GMT Not After : Dec 23 18:58:25 2025 GMT Subject: CN=6941abd2-de72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:c2:46:3a:e0:2c:ed:b1:94:f2:e1:8a:47: 8e:e2:b1:6f:c2:04:6d:54:69:47:33:0a:9c:14:ca: c4:5d:9c:d7:32:10:18:62:0d:74:a6:92:4b:19:24: 9c:a6:f3:09:b2:ab:f4:df:d4:0a:1f:fb:4a:e0:c7: b4:cb:53:4d:a8:c2:0d:e4:04:40:97:ce:31:50:83: bf:22:83:32:6c:1a:9d:8e:9b:5b:3b:34:d6:a6:59: 77:8d:d1:a7:37:06:5e:7d:e7:01:b9:83:b5:9b:19: b7:e1:fc:cb:97:26:67:d2:e9:65:34:29:53:50:22: 73:1f:de:5e:3b:d3:65:bf:0d:7b:64:ba:a2:92:bf: 7b:e1:db:6c:12:4f:91:7d:32:c9:15:74:53:66:c6: bf:d8:93:1a:2b:30:30:75:03:2b:4f:43:bc:a9:7a: 30:d2:3c:2b:e0:82:df:f8:72:52:b4:c0:07:bc:37: 0c:a4:15:21:f8:3d:f9:19:55:d9:e9:f6:78:f3:09: ed:27:7e:1b:df:87:5a:8a:12:eb:91:2a:68:ab:0b: 86:54:be:0c:be:d3:69:bf:50:4f:d5:d4:44:63:a8: f7:60:40:9f:40:94:a3:8d:66:34:1c:a1:4c:fe:8b: 8f:50:b9:46:d8:9a:66:13:7b:17:71:f8:7b:92:59: 8a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:00:EF:A2:4C:9C:7C:D4:E3:FA:37:15:A0:1B:F5:68:E2:63:3D:77 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a5:1b:2c:75:f2:52:00:82:fe:fb:06:78:5d:57:7d:be:61: f6:52:d8:d4:e4:ad:09:fb:46:04:f6:30:6b:54:00:90:b8:05: 13:cd:c2:c3:62:20:01:cd:d5:ba:9f:da:2d:7c:38:5c:2f:f9: ff:1a:43:2e:74:22:41:b5:bb:a9:21:69:77:af:a9:92:80:ed: b2:37:c1:0b:ee:b9:35:01:ed:77:c3:00:d7:f3:49:93:10:d1: ee:41:3c:ac:5a:3a:df:45:c2:e7:17:98:bb:5b:8f:03:47:a2: db:63:d6:b6:d5:ca:49:60:fe:bc:b3:fe:18:6a:47:18:ec:33: a5:48:8f:04:eb:f5:16:b2:91:00:67:e9:93:2f:4a:d1:bf:75: 84:0e:2d:f6:b2:17:47:23:86:89:86:01:dd:66:40:91:3d:97: 11:dd:8b:11:65:5d:f8:30:67:0c:28:78:ed:3a:66:bf:15:9e: d7:97:83:2b:2d:d8:1f:6b:e2:87:2d:69:11:61:aa:e0:72:72: 3e:6f:09:b7:59:55:94:f2:ac:41:b4:3d:05:36:2b:1d:90:11: 15:ac:8a:8e:6c:ec:91:51:73:a5:72:d2:c3:d0:9a:0e:3a:8e: d7:1c:58:53:3d:4a:aa:55:9c:65:84:c0:78:1d:fa:f0:03:cf: 0e:31:54:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUxMjE2MTg1ODI1WhcNMjUxMjIzMTg1ODI1WjAYMRYwFAYD VQQDDA02OTQxYWJkMi1kZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M3CRjrgLO2xlPLhikeO4rFvwgRtVGlHMwqcFMrEXZzXMhAYYg10ppJLGSSc pvMJsqv039QKH/tK4Me0y1NNqMIN5ARAl84xUIO/IoMybBqdjptbOzTWpll3jdGn NwZefecBuYO1mxm34fzLlyZn0ullNClTUCJzH95eO9Nlvw17ZLqikr974dtsEk+R fTLJFXRTZsa/2JMaKzAwdQMrT0O8qXow0jwr4ILf+HJStMAHvDcMpBUh+D35GVXZ 6fZ48wntJ34b34daihLrkSpoqwuGVL4MvtNpv1BP1dREY6j3YECfQJSjjWY0HKFM /ouPULlG2JpmE3sXcfh7klmKPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAA76JM nHzU4/o3FaAb9WjiYz13MB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALpRssdfJSAIL++wZ4XVd9vmH2UtjU5K0J+0YE9jBrVACQuAUTzcLD YiABzdW6n9otfDhcL/n/GkMudCJBtbupIWl3r6mSgO2yN8EL7rk1Ae13wwDX80mT ENHuQTysWjrfRcLnF5i7W48DR6LbY9a21cpJYP68s/4YakcY7DOlSI8E6/UWspEA Z+mTL0rRv3WEDi32shdHI4aJhgHdZkCRPZcR3YsRZV34MGcMKHjtOma/FZ7Xl4Mr Ldgfa+KHLWkRYargcnI+bwm3WVWU8qxBtD0FNisdkBEVrIqObOyRUXOlctLD0JoO Oo7XHFhTPUqqVZxlhMB4HfrwA88OMVQ9 -----END CERTIFICATE-----Generated at Thu Dec 18 11:34:47 2025 by rpki-client