This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: miF+oURf+/8WbtmOOS+EiJY+0qyX9/gfSfDGBW8X8TY= Subject key identifier: 4A:A6:C9:40:87:EB:38:27:25:58:13:A7:FC:6E:3C:85:D1:65:90:FE Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 1305 Signing time: Sat 20 Dec 2025 17:14:57 +0000 Manifest this update: Sat 20 Dec 2025 17:14:57 +0000 Manifest next update: Sat 27 Dec 2025 17:14:57 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: LrAysT4m44NJrok9zuUiqxLJ822GDpQ01D/bDUoe6pY=) 2: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: u3hqsVF2IxROae06RgQqau4TwcmQ2hfIoS0ycS2ZYYk=) 3: 0038D872072E11EB8914E540C4F9AE02.roa (hash: Sm2BWR/x62V1ChSVqLl9qtUU2JtttSVmIcQ57lBV/yg=) 4: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: r6ZmJmXo5KHVG/yLQVWI5msuFaPg0Y7qHUR8OuUmDmQ=) 5: 6A5222E2B8CA11F0AEF0BA3CC4F9AE02.roa (hash: 6+gB7mL+bEvy7oGoW94iW1fZ9WL9S07it/mKgQAz+c0=) 6: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: xso6zKvBbi3wM6Wy7sgUcNmQLyVakEEliXt2454vT2g=) 7: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: dSHlc69pRBGdn38cVlmBltnXpffbwXc9Xns6KXz/aJM=) 8: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 732T9uPwwK9ZGQYizjkN4dg8xKfMSmsajV4WXneqdWQ=) 9: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 4ijPBPOAaTXJb677dP3lcdQkWKRIh34QpbisACynIlc=) 10: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: FblJx4AhcAktvj2/dwTjDbd3uRT5iMvilMffwyS9Rtk=) 11: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: J5rudUriqxnG3Kj9XK1/m/G4HKNPvqCv13zNix3h72Y=) 12: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GtCwmWc8gA6Yj8DbZ5w0Aat1zBOR2vnVTBDt8/HEVGA=) 13: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: mBWzVj8R0JSgpTd2/lwo26j0nuTovGbgz3rVwBfIjuw=) 14: AD7B2798CDCA11F096B9035EC4F9AE02.roa (hash: 9AZNpWMBQO5+BmyYbBmo4faP647OYT7C6DNutUy5NOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5011 (0x1393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:57 2025 GMT Not After : Dec 27 17:14:57 2025 GMT Subject: CN=6946d991-de17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:5a:58:3e:fc:bf:88:e9:4d:46:aa:bf:a8: b3:f7:3f:f0:ce:21:39:69:7f:41:20:35:90:c1:d7: 04:da:02:65:de:89:44:a1:1a:e0:bc:76:a8:19:39: c0:fc:43:3e:bc:00:06:ab:97:85:cd:83:be:40:2a: 46:ac:2c:64:1c:d6:d6:0a:08:5e:20:21:79:9d:d5: 93:bf:93:ee:53:00:b0:99:ca:03:be:b5:d0:91:e0: c0:fe:03:f9:42:4d:06:bb:0f:7a:d0:5f:95:1f:84: 5a:1e:8d:44:3d:96:75:59:63:52:b5:4a:32:55:8c: 7e:92:31:ee:7a:4d:e7:ec:12:37:94:64:2f:e3:93: c9:30:f7:73:7a:b3:bb:72:6c:85:61:82:16:fd:79: 87:0b:c3:40:d7:f3:ef:dc:f4:b6:40:d5:d9:fa:3e: 6a:e1:4c:04:cd:b1:f4:d8:ef:0c:de:20:33:30:5f: f8:e1:0e:0b:6b:63:14:c5:da:5c:a2:96:09:5a:4d: 58:f4:4a:e9:f6:73:24:b6:26:73:87:67:cd:2b:11: 35:28:ec:3c:9c:17:56:c1:01:78:db:24:55:50:1c: 95:4d:a0:2a:b7:ac:aa:ba:71:1f:ff:5c:74:8c:f5: 57:c4:df:1b:46:62:eb:0d:41:a5:b5:fb:9f:16:1b: 4e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A6:C9:40:87:EB:38:27:25:58:13:A7:FC:6E:3C:85:D1:65:90:FE X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:67:81:27:20:2b:7d:e2:04:23:8c:f8:dc:92:98:b8:de:dd: 9f:6e:93:95:23:07:51:01:0c:ff:43:b0:9b:39:8c:1c:5f:4b: d1:a0:cc:ff:0c:1c:41:84:f1:2c:6a:61:03:d9:af:80:bd:8e: 54:ee:0c:6a:00:d5:ec:21:03:18:3b:cb:3f:9c:bf:42:c4:18: fc:1f:05:2c:03:96:2d:16:74:c7:6e:ef:a2:63:00:b9:22:d8: 2b:15:e1:45:b9:94:f9:67:9d:a9:26:41:c3:54:e8:55:df:5d: 9e:47:63:ca:b7:69:11:f1:1e:3e:6a:d9:dd:50:82:94:3e:04: dd:9d:41:6f:f2:2d:5b:91:38:8f:e2:50:e8:7d:8c:c1:ad:5c: 76:7b:49:bd:52:e5:ca:2f:97:f4:27:d1:c2:6d:88:4d:ae:0f: ba:0d:b6:47:ba:47:c0:27:58:33:30:8d:8a:12:b5:33:a4:b3: b0:6d:2c:12:01:c2:d8:b3:c7:a3:5d:32:96:92:da:33:bf:8c: dd:6f:74:26:b8:c2:e9:b0:3c:31:3c:f0:fa:ac:9b:fa:b7:c4: e4:4c:d3:48:89:4f:f1:a9:e3:4e:b4:41:ae:db:ad:83:07:e2: f3:f2:62:30:2d:f8:49:b0:a6:6d:b4:0e:c5:25:da:42:d5:c7: a4:e1:85:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDU3WhcNMjUxMjI3MTcxNDU3WjAYMRYwFAYD VQQDDA02OTQ2ZDk5MS1kZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqshaWD78v4jpTUaqv6iz9z/wziE5aX9BIDWQwdcE2gJl3olEoRrgvHaoGTnA /EM+vAAGq5eFzYO+QCpGrCxkHNbWCgheICF5ndWTv5PuUwCwmcoDvrXQkeDA/gP5 Qk0Guw960F+VH4RaHo1EPZZ1WWNStUoyVYx+kjHuek3n7BI3lGQv45PJMPdzerO7 cmyFYYIW/XmHC8NA1/Pv3PS2QNXZ+j5q4UwEzbH02O8M3iAzMF/44Q4La2MUxdpc opYJWk1Y9Erp9nMktiZzh2fNKxE1KOw8nBdWwQF42yRVUByVTaAqt6yqunEf/1x0 jPVXxN8bRmLrDUGltfufFhtOrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqmyUCH 6zgnJVgTp/xuPIXRZZD+MB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3Z4EnICt94gQjjPjckpi43t2fbpOVIwdRAQz/Q7CbOYwcX0vRoMz/ DBxBhPEsamED2a+AvY5U7gxqANXsIQMYO8s/nL9CxBj8HwUsA5YtFnTHbu+iYwC5 ItgrFeFFuZT5Z52pJkHDVOhV312eR2PKt2kR8R4+atndUIKUPgTdnUFv8i1bkTiP 4lDofYzBrVx2e0m9UuXKL5f0J9HCbYhNrg+6DbZHukfAJ1gzMI2KErUzpLOwbSwS AcLYs8ejXTKWktozv4zdb3QmuMLpsDwxPPD6rJv6t8TkTNNIiU/xqeNOtEGu262D B+Lz8mIwLfhJsKZttA7FJdpC1cek4YWc -----END CERTIFICATE-----Generated at Sun Dec 21 00:45:37 2025 by rpki-client