This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: GO7U+a93Wq13aRBrf6CTXnmhyZRnhBcmdTqTvvB+WiM= Subject key identifier: E9:B9:F2:BE:45:BD:E6:50:DB:7B:BA:A7:17:17:25:50:B9:2F:F8:0C Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 03EA Signing time: Thu 18 Dec 2025 23:50:10 +0000 Manifest this update: Thu 18 Dec 2025 23:50:10 +0000 Manifest next update: Thu 25 Dec 2025 23:50:10 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: JDB5PXedz3saFiq0s/nGWz+NOrhkUkx2OIfcXniDRTQ=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Dec 18 23:50:10 2025 GMT Not After : Dec 25 23:50:10 2025 GMT Subject: CN=69449332-c319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:9e:ad:82:f4:c9:cc:92:f1:62:da:31:94: 49:ab:53:d4:7f:e4:de:74:c6:90:ca:76:96:e3:83: 7e:1a:20:0d:9f:79:95:a0:09:b0:7d:43:19:dc:11: e4:5c:be:4d:29:ac:a9:e4:68:7e:fc:81:4b:32:ab: 03:2a:f0:ab:b6:0a:56:df:1f:de:23:0c:3e:d7:d6: b4:ee:3e:62:73:a0:75:42:e5:44:ad:d1:2b:8a:3f: e8:9f:08:25:b5:2c:31:20:c4:bf:7b:6f:28:4e:8f: 00:c1:ea:3d:85:bb:18:c2:d9:b4:ce:62:e5:18:77: 33:a5:ab:40:b9:02:3a:8f:50:e6:de:98:f4:c7:b8: db:ad:db:66:0a:41:32:5f:da:80:ec:fc:5b:70:1b: 9a:5f:13:64:9f:2b:6e:47:50:4b:2e:23:de:df:f0: c1:a0:d4:43:6c:2e:17:d7:ff:70:90:20:6b:db:b2: e5:ea:34:6d:55:44:78:df:4e:6e:84:4c:4f:3a:7d: 43:89:52:e2:70:9f:c8:3a:19:74:f5:ec:e6:fa:a7: f3:59:c8:6d:15:27:bd:4e:13:80:70:f8:6e:1d:67: 07:e2:51:89:6a:e9:df:ff:8f:2c:26:00:18:10:58: 88:f5:aa:77:1c:41:e9:00:7e:19:2d:07:ec:e6:b9: 6b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B9:F2:BE:45:BD:E6:50:DB:7B:BA:A7:17:17:25:50:B9:2F:F8:0C X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:0c:30:ae:08:05:2b:68:cf:37:77:32:69:3b:5d:27:72:01: 52:67:02:6e:cc:01:25:94:23:21:c3:e1:72:dc:be:ee:9d:56: a1:93:54:0c:9f:a8:44:27:4f:05:9f:2b:a5:22:b0:58:21:00: b2:06:91:cc:11:91:a4:6d:54:ea:a1:c6:95:71:d2:32:30:e6: bb:f9:a9:f1:22:27:71:4d:51:e2:cd:c1:eb:aa:c6:b0:e0:5e: 16:f1:86:d3:1c:62:cf:69:a8:24:cb:55:46:8a:c2:dc:84:9b: b9:7c:54:82:38:d7:e2:80:bd:ff:0a:d0:e3:26:c8:aa:0b:d6: 0d:e7:87:0c:05:d1:68:85:2a:a2:1f:1d:83:ea:86:9e:4e:e6: f1:05:64:22:7c:ba:51:0c:58:00:da:56:9b:ee:b2:d8:40:74: 03:22:b4:56:a6:1f:cb:37:9f:a7:ca:0c:5a:4c:02:d4:3b:e5: bf:10:ee:a4:fb:52:40:50:27:33:26:27:fd:f0:42:96:d4:49: 9e:0a:62:1f:80:66:a9:94:6e:cd:1f:ec:fe:e6:da:19:bd:10: 48:ff:f4:60:10:35:86:ff:57:e0:ce:d2:12:57:6a:4a:77:a2: 83:f0:c8:0f:4d:83:86:96:77:1b:8e:bf:50:4c:0d:90:cb:2c: 70:08:2c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUxMjE4MjM1MDEwWhcNMjUxMjI1MjM1MDEwWjAYMRYwFAYD VQQDDA02OTQ0OTMzMi1jMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIaerYL0ycyS8WLaMZRJq1PUf+TedMaQynaW44N+GiANn3mVoAmwfUMZ3BHk XL5NKayp5Gh+/IFLMqsDKvCrtgpW3x/eIww+19a07j5ic6B1QuVErdErij/onwgl tSwxIMS/e28oTo8Aweo9hbsYwtm0zmLlGHczpatAuQI6j1Dm3pj0x7jbrdtmCkEy X9qA7PxbcBuaXxNknytuR1BLLiPe3/DBoNRDbC4X1/9wkCBr27Ll6jRtVUR4305u hExPOn1DiVLicJ/IOhl09ezm+qfzWchtFSe9ThOAcPhuHWcH4lGJaunf/48sJgAY EFiI9ap3HEHpAH4ZLQfs5rlrgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOm58r5F veZQ23u6pxcXJVC5L/gMMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWDDCuCAUraM83dzJpO10ncgFSZwJuzAEllCMhw+Fy3L7unVahk1QM n6hEJ08FnyulIrBYIQCyBpHMEZGkbVTqocaVcdIyMOa7+anxIidxTVHizcHrqsaw 4F4W8YbTHGLPaagky1VGisLchJu5fFSCONfigL3/CtDjJsiqC9YN54cMBdFohSqi Hx2D6oaeTubxBWQifLpRDFgA2lab7rLYQHQDIrRWph/LN5+nygxaTALUO+W/EO6k +1JAUCczJif98EKW1EmeCmIfgGaplG7NH+z+5toZvRBI//RgEDWG/1fgztISV2pK d6KD8MgPTYOGlncbjr9QTA2QyyxwCCzY -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:52 2025 by rpki-client