This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: dw6p9bbsVgyTBGXz31oRXV7kdFJnZqHCoHs+PoQfjUo= Subject key identifier: 80:B1:E6:65:54:65:19:94:FF:B3:3A:6E:F9:CA:1E:03:62:EE:31:04 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C7B Signing time: Sat 20 Dec 2025 18:11:09 +0000 Manifest this update: Sat 20 Dec 2025 18:11:08 +0000 Manifest next update: Sat 27 Dec 2025 18:11:08 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: CphBK5httNG73QJvqTlpVyzLMmsTiWxvVU2KYu58lDg=) 2: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) 5: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 20 18:11:08 2025 GMT Not After : Dec 27 18:11:08 2025 GMT Subject: CN=6946e6bc-e0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:2b:3d:c2:1a:75:c4:bc:b5:ba:54:2b:bf: 4c:22:2e:1c:d0:f8:a9:16:eb:4a:99:59:ae:d0:cb: c7:42:34:af:c2:27:fe:8c:e5:d4:a4:bb:56:1d:33: 5e:b8:3e:86:cf:68:b9:e1:fa:ff:f2:82:40:13:7a: d5:79:1a:2c:46:b8:3a:56:84:40:41:87:06:22:be: 49:9e:cc:57:ce:34:c2:be:ed:d9:63:6f:99:62:2a: 73:0e:5e:d6:66:9e:98:fb:a5:e9:b3:1a:d0:8e:3b: 12:49:24:27:48:eb:bf:c4:96:10:5d:f8:5e:57:87: 2e:93:3a:94:62:25:91:aa:d8:67:a6:c7:17:0a:a1: 34:66:0f:92:b5:5e:77:80:3a:38:05:6d:aa:ae:f4: 0e:60:c7:36:3d:d3:78:70:72:53:5e:6d:42:eb:6b: 45:dd:57:05:30:89:bf:6e:7c:3e:4a:a8:03:14:89: 14:d0:2c:a0:ae:73:0b:4d:b6:79:af:74:9c:e2:f0: 29:74:2b:b9:a1:6d:1c:50:36:25:64:8c:a9:79:1e: c1:ce:95:5f:b7:a8:a5:4b:be:a0:f1:2d:02:e6:11: 29:87:6d:3b:0d:19:09:79:be:74:17:df:3b:78:da: d4:be:bc:14:85:95:c9:0c:fd:5f:db:19:1a:a8:f2: 93:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B1:E6:65:54:65:19:94:FF:B3:3A:6E:F9:CA:1E:03:62:EE:31:04 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5c:e0:32:47:29:c1:07:39:6c:ff:e9:d8:61:e3:7f:21:4f: b8:8f:3c:dc:3e:51:f5:59:44:f4:fa:ca:dd:1c:d6:60:b9:4b: ac:fc:fb:c5:f7:73:cd:c4:81:e0:1a:fd:3e:e3:ff:2b:b3:e5: e0:2d:97:20:7b:88:3d:f1:38:d6:81:7b:e5:de:dc:8d:2e:ea: 38:c0:7d:97:23:80:2a:52:89:00:6c:9d:ce:34:c1:70:7d:b7: e9:a6:7f:ee:af:2e:b8:c9:5a:af:10:53:4e:2b:9d:6a:76:7e: 60:5e:96:6b:05:17:cc:90:b3:74:31:9a:9f:8d:a6:4c:5f:5d: 07:54:d5:22:b0:02:eb:a2:e9:ab:59:31:aa:99:58:16:90:b7: da:01:f6:0b:de:79:98:69:47:67:48:cf:d7:78:db:93:ab:c2: c2:d3:36:b8:e4:cf:ef:5f:2b:eb:5f:31:8c:76:19:37:17:77: ba:d7:32:4a:34:24:e7:b8:fc:be:6d:3b:83:f3:bf:65:f2:67: 7f:5f:97:7c:a0:6f:15:0b:59:30:15:97:10:e5:b2:74:9c:f7: 15:47:cd:58:e2:03:68:d2:18:e9:01:79:3e:ab:48:9d:d9:23: 62:a3:eb:d2:41:20:5d:70:db:fb:4d:83:d0:1e:46:ee:a4:56: a3:75:28:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjIwMTgxMTA4WhcNMjUxMjI3MTgxMTA4WjAYMRYwFAYD VQQDDA02OTQ2ZTZiYy1lMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnwrPcIadcS8tbpUK79MIi4c0PipFutKmVmu0MvHQjSvwif+jOXUpLtWHTNe uD6Gz2i54fr/8oJAE3rVeRosRrg6VoRAQYcGIr5JnsxXzjTCvu3ZY2+ZYipzDl7W Zp6Y+6XpsxrQjjsSSSQnSOu/xJYQXfheV4cukzqUYiWRqthnpscXCqE0Zg+StV53 gDo4BW2qrvQOYMc2PdN4cHJTXm1C62tF3VcFMIm/bnw+SqgDFIkU0CygrnMLTbZ5 r3Sc4vApdCu5oW0cUDYlZIypeR7BzpVft6ilS76g8S0C5hEph207DRkJeb50F987 eNrUvrwUhZXJDP1f2xkaqPKTWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICx5mVU ZRmU/7M6bvnKHgNi7jEEMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOXOAyRynBBzls/+nYYeN/IU+4jzzcPlH1WUT0+srdHNZguUus/PvF 93PNxIHgGv0+4/8rs+XgLZcge4g98TjWgXvl3tyNLuo4wH2XI4AqUokAbJ3ONMFw fbfppn/ury64yVqvEFNOK51qdn5gXpZrBRfMkLN0MZqfjaZMX10HVNUisALroumr WTGqmVgWkLfaAfYL3nmYaUdnSM/XeNuTq8LC0za45M/vXyvrXzGMdhk3F3e61zJK NCTnuPy+bTuD879l8md/X5d8oG8VC1kwFZcQ5bJ0nPcVR81Y4gNo0hjpAXk+q0id 2SNio+vSQSBdcNv7TYPQHkbupFajdSi5 -----END CERTIFICATE-----Generated at Sun Dec 21 07:29:56 2025 by rpki-client