This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft File: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft (raw, json) Hash identifier: t3vdqxD4StfDXFoETL1v3MuXYqzD0pO5P3i4bxiWgTs= Subject key identifier: BC:D8:23:74:20:64:B3:51:D4:56:6D:0E:19:36:AA:1B:FE:61:B6:1F Authority key identifier: E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E Certificate issuer: /CN=A917336A/serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft Manifest number: 0105 Signing time: Thu 01 Jan 2026 04:36:43 +0000 Manifest this update: Thu 01 Jan 2026 04:36:43 +0000 Manifest next update: Thu 08 Jan 2026 04:36:43 +0000 Files and hashes: 1: 4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl (hash: mY46GcxvKRhATcL/Az0mMFWzFhm7Qd2CVh/p0T6PP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 04:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917336A, serialNumber=E0B608AF53414B6F597D18CAE7A214483E8A659E Validity Not Before: Jan 1 04:36:43 2026 GMT Not After : Jan 8 04:36:43 2026 GMT Subject: CN=6955f9db-4359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:18:b0:cf:12:e3:9d:4c:57:f0:71:1b:4d:ad: d5:b0:f5:6e:0f:15:b1:e5:69:47:47:8c:7c:b9:67: 69:fe:4f:19:7b:a8:ba:ec:31:0b:62:ec:57:17:f9: cc:08:cf:8f:f0:bf:1f:0d:67:e2:6e:c7:36:fb:77: 26:64:f4:52:b8:fb:63:6f:e4:cc:68:21:cf:a1:6e: 1a:f1:8a:1b:1f:dd:52:66:f3:b7:66:9e:e2:30:1c: d0:f8:cd:a7:45:d3:6f:3c:bd:8f:b0:cf:15:e0:ea: 74:6a:5e:7c:3c:6f:85:7f:4d:55:b8:d3:d8:2d:c1: 31:0b:1c:f6:3a:3a:5d:ff:88:c5:f9:9e:79:ce:3d: ad:89:bb:e9:f4:4a:a3:c7:32:c5:3e:49:88:0f:d9: 4f:30:0f:f8:d8:44:42:88:c5:f5:76:1c:c0:25:68: 73:24:7e:1f:bf:1f:bf:56:d7:0c:37:7c:9d:03:48: 22:fe:4b:b4:0a:6e:9e:12:4b:ae:d1:d6:31:cb:06: e0:20:c7:c9:8d:42:22:60:2d:4a:64:04:8f:44:48: 7f:9c:5d:fa:ac:a4:46:a8:b0:9c:f1:20:ea:8b:43: 79:35:5b:8e:b1:a3:71:da:96:d3:2e:0c:38:79:e6: ec:83:86:9b:5a:58:a3:b1:d8:54:92:d7:5c:25:49: ca:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D8:23:74:20:64:B3:51:D4:56:6D:0E:19:36:AA:1B:FE:61:B6:1F X509v3 Authority Key Identifier: keyid:E0:B6:08:AF:53:41:4B:6F:59:7D:18:CA:E7:A2:14:48:3E:8A:65:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LYIr1NBS29ZfRjK56IUSD6KZZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917336A/86D7B8625AEA11EF94E93D6EC4F9AE02/4LYIr1NBS29ZfRjK56IUSD6KZZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:bb:d7:c6:32:a8:3a:26:9c:68:ad:2d:87:4e:d8:db:bf:1d: ba:fe:b7:7f:07:ff:f1:e1:88:de:4f:bb:1e:9d:38:52:60:48: 67:de:fe:b1:c2:dc:6e:b8:5a:cc:3e:b3:c5:97:dd:55:4a:8e: 2f:34:df:b0:5a:9b:ef:12:50:47:dd:20:3b:f1:fa:36:54:df: c1:9d:b9:d9:e0:72:55:36:a0:8a:9c:43:04:6f:05:13:84:30: 5a:90:d4:61:b2:8a:47:ec:65:91:64:b5:fe:a2:a8:36:ff:7c: af:a1:e5:66:70:16:dd:69:d7:39:e9:c3:94:75:bb:f2:76:79: de:cd:08:5a:3b:1c:75:06:68:c5:4f:d5:b6:70:f8:c2:d8:ff: 95:a6:bd:9f:56:bc:65:9f:7d:bf:5a:97:c6:22:c0:2a:75:b5: 10:d0:6c:ce:7b:b5:0f:e2:91:cc:35:2d:05:91:d1:46:d7:9a: 12:3e:c8:7b:48:56:84:af:e0:5d:19:ec:29:9e:29:2b:c8:33: 4b:fc:68:c1:03:98:cf:4c:ff:15:b3:aa:96:9d:c8:10:98:f3: 30:91:c7:ff:68:82:0b:1e:13:1a:ca:40:59:fc:f1:42:d4:fb: 97:e6:d4:3c:13:b2:aa:1a:35:a9:3b:93:fc:74:e0:e9:e5:03: 98:09:bb:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMzNkExMTAvBgNVBAUTKEUwQjYwOEFGNTM0MTRCNkY1OTdEMThDQUU3QTIxNDQ4 M0U4QTY1OUUwHhcNMjYwMTAxMDQzNjQzWhcNMjYwMTA4MDQzNjQzWjAYMRYwFAYD VQQDDA02OTU1ZjlkYi00MzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxiwzxLjnUxX8HEbTa3VsPVuDxWx5WlHR4x8uWdp/k8Ze6i67DELYuxXF/nM CM+P8L8fDWfibsc2+3cmZPRSuPtjb+TMaCHPoW4a8YobH91SZvO3Zp7iMBzQ+M2n RdNvPL2PsM8V4Op0al58PG+Ff01VuNPYLcExCxz2Ojpd/4jF+Z55zj2tibvp9Eqj xzLFPkmID9lPMA/42ERCiMX1dhzAJWhzJH4fvx+/VtcMN3ydA0gi/ku0Cm6eEkuu 0dYxywbgIMfJjUIiYC1KZASPREh/nF36rKRGqLCc8SDqi0N5NVuOsaNx2pbTLgw4 eebsg4abWlijsdhUktdcJUnK8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzYI3Qg ZLNR1FZtDhk2qhv+YbYfMB8GA1UdIwQYMBaAFOC2CK9TQUtvWX0YyueiFEg+imWe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzM2QS84NkQ3Qjg2MjVB RUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMyOVpmUmpLNTZJVVNENkta WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMWUlyMU5CUzI5WmZSaks1NklVU0Q2S1paNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzM2QS84NkQ3Qjg2MjVBRUExMUVGOTRFOTNENkVDNEY5QUUwMi80TFlJcjFOQlMy OVpmUmpLNTZJVVNENktaWjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1u9fGMqg6JpxorS2HTtjbvx26/rd/B//x4YjeT7senThSYEhn3v6x wtxuuFrMPrPFl91VSo4vNN+wWpvvElBH3SA78fo2VN/BnbnZ4HJVNqCKnEMEbwUT hDBakNRhsopH7GWRZLX+oqg2/3yvoeVmcBbdadc56cOUdbvydnnezQhaOxx1BmjF T9W2cPjC2P+Vpr2fVrxln32/WpfGIsAqdbUQ0GzOe7UP4pHMNS0FkdFG15oSPsh7 SFaEr+BdGewpnikryDNL/GjBA5jPTP8Vs6qWncgQmPMwkcf/aIILHhMaykBZ/PFC 1PuX5tQ8E7KqGjWpO5P8dODp5QOYCbu3 -----END CERTIFICATE-----Generated at Fri Jan 2 13:07:49 2026 by rpki-client