This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: hV2pz4M8zNGnKT+63mGm15dBIb/6cmKZuckbsbaeOG8= Subject key identifier: F6:28:AE:94:6E:E4:2E:74:1B:C5:77:07:B6:B1:68:9D:8A:4C:23:C7 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05ED Signing time: Thu 18 Dec 2025 22:19:26 +0000 Manifest this update: Thu 18 Dec 2025 22:19:25 +0000 Manifest next update: Thu 25 Dec 2025 22:19:25 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: lTCMTFpabNgC3+fENoKF6CztTKAxZqOr3U+tobPDGJs=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Dec 18 22:19:25 2025 GMT Not After : Dec 25 22:19:25 2025 GMT Subject: CN=69447dee-19e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:57:8b:3a:02:a3:e7:b4:10:08:ae:d3:a2: d5:3a:24:6f:73:e3:54:f1:76:86:1e:6d:69:e3:25: 07:d4:e8:33:f2:fc:c1:df:d8:c5:51:a2:57:8e:ba: 6d:53:f8:49:33:49:90:3f:61:6c:87:0e:26:35:ca: de:c2:02:5f:15:32:1f:17:69:3c:f5:5d:35:ba:e5: 50:3a:21:d2:2e:25:fa:38:f6:01:a6:75:4d:bf:01: e5:65:1a:b4:d8:a4:38:f4:3f:7f:49:b9:08:9a:f0: f3:cf:67:80:cb:9e:89:aa:dc:29:82:f7:2b:80:43: b0:44:95:63:39:f9:72:3a:68:ff:13:3c:a4:e2:f1: e8:e8:70:15:fc:c9:e6:1d:33:2c:fb:10:cf:b6:96: 9d:81:9b:ba:ec:8a:7f:4b:e5:47:2f:97:12:30:f3: 27:c7:ee:8e:4b:e7:46:b9:95:cd:15:b7:c5:f5:b1: 76:2a:7e:18:17:46:fc:1d:91:d4:71:5c:3e:04:39: 83:d7:f2:10:b6:2b:3f:e0:1f:73:ea:32:11:ea:a5: 3c:c7:6c:b0:1d:2e:96:dd:57:a3:1d:c0:bc:e2:a9: f4:d0:05:82:e0:25:f1:c2:8f:da:f4:e9:6c:a9:3b: 4f:a7:60:9d:6b:35:68:fd:53:61:7f:84:0a:5d:11: c6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:28:AE:94:6E:E4:2E:74:1B:C5:77:07:B6:B1:68:9D:8A:4C:23:C7 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d0:9e:9e:e2:21:a6:a9:fe:32:1e:42:95:d8:41:00:ca:3c: da:ad:17:9d:d7:12:b8:a8:b0:f4:c4:76:4b:e0:41:1f:46:84: a0:a7:c6:eb:94:ef:5e:dd:0d:5e:3b:3d:13:97:6a:41:b9:95: 7f:ed:67:26:fc:aa:a9:f8:2e:c2:2d:b5:6b:64:7b:42:dd:7c: 02:7f:66:4b:de:42:aa:ff:3d:64:2e:f7:f3:00:88:a5:6f:8f: 38:44:0d:e6:ec:1d:66:5c:44:db:87:d9:7e:4e:60:50:34:2c: 5b:46:dc:f3:8a:66:0b:b7:0b:ed:5d:13:68:68:9e:b0:2c:2d: e1:5a:53:6e:c3:8b:b0:9c:e7:58:eb:fc:c0:c9:be:e8:0b:86: a4:9d:81:c0:05:14:fd:2e:fc:c4:cf:b4:69:85:9b:42:b6:f7: 26:80:3b:6b:15:d9:a0:14:fd:5d:82:31:a3:67:90:c0:db:ef: b1:19:ba:20:3b:1d:b2:f9:65:7e:69:c4:b3:a9:89:70:e9:8f: dd:c0:7d:e2:32:ef:3f:ea:af:65:20:b3:c2:82:15:df:ff:1d: 14:d6:7a:47:8e:78:7c:c7:4b:b3:df:23:5d:32:b6:b9:04:e2: 5f:57:66:38:0e:d8:39:f5:30:40:dc:89:d7:2e:39:6f:50:2c: 36:66:16:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUxMjE4MjIxOTI1WhcNMjUxMjI1MjIxOTI1WjAYMRYwFAYD VQQDDA02OTQ0N2RlZS0xOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthBXizoCo+e0EAiu06LVOiRvc+NU8XaGHm1p4yUH1Ogz8vzB39jFUaJXjrpt U/hJM0mQP2Fshw4mNcrewgJfFTIfF2k89V01uuVQOiHSLiX6OPYBpnVNvwHlZRq0 2KQ49D9/SbkImvDzz2eAy56JqtwpgvcrgEOwRJVjOflyOmj/Ezyk4vHo6HAV/Mnm HTMs+xDPtpadgZu67Ip/S+VHL5cSMPMnx+6OS+dGuZXNFbfF9bF2Kn4YF0b8HZHU cVw+BDmD1/IQtis/4B9z6jIR6qU8x2ywHS6W3VejHcC84qn00AWC4CXxwo/a9Ols qTtPp2CdazVo/VNhf4QKXRHGowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYorpRu 5C50G8V3B7axaJ2KTCPHMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA0J6e4iGmqf4yHkKV2EEAyjzarRed1xK4qLD0xHZL4EEfRoSgp8br lO9e3Q1eOz0Tl2pBuZV/7Wcm/Kqp+C7CLbVrZHtC3XwCf2ZL3kKq/z1kLvfzAIil b484RA3m7B1mXETbh9l+TmBQNCxbRtzzimYLtwvtXRNoaJ6wLC3hWlNuw4uwnOdY 6/zAyb7oC4aknYHABRT9LvzEz7RphZtCtvcmgDtrFdmgFP1dgjGjZ5DA2++xGbog Ox2y+WV+acSzqYlw6Y/dwH3iMu8/6q9lILPCghXf/x0U1npHjnh8x0uz3yNdMra5 BOJfV2Y4Dtg59TBA3InXLjlvUCw2Zhb6 -----END CERTIFICATE-----Generated at Fri Dec 19 17:25:38 2025 by rpki-client