This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft File: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft (raw, json) Hash identifier: FNM6SPwBzESfw2lc+K9oChWrw/DAKPhS2lV91MK/4Kc= Subject key identifier: FC:64:52:93:38:66:B3:29:F7:B2:C9:0D:31:05:ED:C9:46:DE:D9:32 Authority key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA Certificate issuer: /CN=A914E1C1/serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft Manifest number: 02D7 Signing time: Wed 17 Dec 2025 00:45:44 +0000 Manifest this update: Wed 17 Dec 2025 00:45:44 +0000 Manifest next update: Wed 24 Dec 2025 00:45:44 +0000 Files and hashes: 1: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl (hash: Pw5Q/JqVrsr3Lr3rx7qw0SXhVFEZfsFdw/PAT6S6NB8=) 2: 2541D62A7F9811ED93508538C4F9AE02.roa (hash: U9zRAtnK+rMFnlnfGAU4KvzYtOXqBm7qFzqLf0N4GqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 00:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1C1, serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Validity Not Before: Dec 17 00:45:44 2025 GMT Not After : Dec 24 00:45:44 2025 GMT Subject: CN=6941fd38-d2ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0c:44:d7:c3:23:67:d5:93:5a:e2:f7:a3:b1: 43:da:a0:44:fb:8b:4c:25:af:63:c1:b2:7c:89:97: 2c:3d:f2:5d:c0:d1:c1:5d:e3:68:6c:4b:29:cf:9c: 82:a6:72:db:eb:7c:08:c7:b7:6d:ad:0e:63:5d:87: 29:38:73:81:27:2e:d0:34:ff:b2:f5:9d:a3:ec:4a: 1f:ce:04:68:1b:f9:7f:64:fd:b2:6f:69:01:59:60: e5:23:a1:b3:6f:19:a1:20:0a:54:fa:d2:5e:a0:ca: 25:bc:45:2b:7f:78:fc:0e:1c:48:84:0e:95:f2:75: b0:cb:ab:45:b0:8f:19:cf:2f:f1:dc:98:d2:3c:20: 91:ad:92:1b:c1:c0:7d:50:8a:74:3e:0e:dc:17:ba: 41:dc:d7:61:4f:25:28:5a:1b:72:d5:cc:77:d9:ff: a7:3d:eb:96:d5:b3:ce:7a:65:d1:25:8d:24:7f:7c: de:67:93:4b:a4:67:e6:82:b6:be:63:f9:44:ee:3b: 49:d9:00:ec:c2:89:9c:89:60:ad:c4:0b:12:38:be: 44:71:34:8c:7c:af:e3:1a:93:88:26:64:c7:51:87: 6a:1e:83:47:e3:a1:b3:4b:8b:88:eb:21:ba:95:5b: de:7d:ef:a0:a8:4d:c0:3b:93:63:1e:db:ca:11:5e: a3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:64:52:93:38:66:B3:29:F7:B2:C9:0D:31:05:ED:C9:46:DE:D9:32 X509v3 Authority Key Identifier: keyid:E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:0c:d9:03:0b:e3:49:66:bd:f0:47:6c:2f:7e:96:4c:12:6f: ad:c3:dc:9c:98:23:6f:ba:5b:c2:bc:0a:62:00:b5:30:3f:72: 50:a2:c9:c0:07:2a:2e:15:3e:ec:bd:ae:83:8c:56:f5:54:ce: 77:64:3e:2e:05:f0:7d:22:e4:3f:cc:08:da:d0:d4:c1:6b:95: 21:18:33:ea:2e:b3:f8:0c:d2:b8:6c:fb:5d:65:90:cc:50:f8: 5c:bd:68:08:eb:d3:eb:3a:de:e8:17:57:89:38:f1:2d:37:6b: ed:4a:c9:a3:5d:a4:16:fa:30:ef:74:7f:b8:7e:d9:70:1d:ee: e1:1f:21:6a:73:0f:fa:fb:12:0a:f2:df:91:f7:02:18:95:68: 98:4d:66:e8:a7:d5:3b:48:47:8e:40:2f:d7:32:fa:3b:0c:21: 63:54:87:85:53:2c:4f:f1:74:3e:e1:66:b5:70:50:9f:98:b7: 01:99:25:dc:24:96:81:d9:59:2b:49:b7:07:a2:b4:30:d4:84: 77:87:ff:17:36:a2:72:5a:7d:fb:e0:f7:61:81:73:c6:88:64: cf:1c:9a:4a:ca:b2:81:8f:db:75:db:74:07:f2:08:c6:28:a9: 55:3e:1b:df:f6:5f:6e:3a:bf:98:17:b7:36:dd:80:0b:b9:48: c8:28:41:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQzExMTAvBgNVBAUTKEUzRjMxNTREOTg4Mjc2QTJGNTQxRTVFQTYyODE4Qzc3 MEJCQjgwRUEwHhcNMjUxMjE3MDA0NTQ0WhcNMjUxMjI0MDA0NTQ0WjAYMRYwFAYD VQQDDA02OTQxZmQzOC1kMmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgxE18MjZ9WTWuL3o7FD2qBE+4tMJa9jwbJ8iZcsPfJdwNHBXeNobEspz5yC pnLb63wIx7dtrQ5jXYcpOHOBJy7QNP+y9Z2j7EofzgRoG/l/ZP2yb2kBWWDlI6Gz bxmhIApU+tJeoMolvEUrf3j8DhxIhA6V8nWwy6tFsI8Zzy/x3JjSPCCRrZIbwcB9 UIp0Pg7cF7pB3NdhTyUoWhty1cx32f+nPeuW1bPOemXRJY0kf3zeZ5NLpGfmgra+ Y/lE7jtJ2QDswomciWCtxAsSOL5EcTSMfK/jGpOIJmTHUYdqHoNH46GzS4uI6yG6 lVvefe+gqE3AO5NjHtvKEV6jIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxkUpM4 ZrMp97LJDTEF7clG3tkyMB8GA1UdIwQYMBaAFOPzFU2Ygnai9UHl6mKBjHcLu4Dq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFDMS9EQkU1RjJDQTEw QzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2RxTDFRZVhxWW9HTWR3dTdn T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfTVZUWmlDZHFMMVFlWHFZb0dNZHd1N2dPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFDMS9EQkU1RjJDQTEwQzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2Rx TDFRZVhxWW9HTWR3dTdnT28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4DNkDC+NJZr3wR2wvfpZMEm+tw9ycmCNvulvCvApiALUwP3JQosnA ByouFT7sva6DjFb1VM53ZD4uBfB9IuQ/zAja0NTBa5UhGDPqLrP4DNK4bPtdZZDM UPhcvWgI69PrOt7oF1eJOPEtN2vtSsmjXaQW+jDvdH+4ftlwHe7hHyFqcw/6+xIK 8t+R9wIYlWiYTWbop9U7SEeOQC/XMvo7DCFjVIeFUyxP8XQ+4Wa1cFCfmLcBmSXc JJaB2VkrSbcHorQw1IR3h/8XNqJyWn374PdhgXPGiGTPHJpKyrKBj9t123QH8gjG KKlVPhvf9l9uOr+YF7c23YALuUjIKEHc -----END CERTIFICATE-----Generated at Wed Dec 17 14:35:36 2025 by rpki-client