This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: MRCgHM/xitVyfK+vNMPXfpZi34H/kGLlcjXwEtBtTbo= Subject key identifier: DF:FD:7B:3B:1F:C3:D2:52:31:46:93:44:15:92:CB:46:B3:0C:77:63 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 078A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0783 Signing time: Fri 26 Dec 2025 20:50:31 +0000 Manifest this update: Fri 26 Dec 2025 20:50:31 +0000 Manifest next update: Fri 02 Jan 2026 20:50:31 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: IKTQEVUiRG45V0dFBXtVy6yhgNLxqh1xhCC8cvyW9TA=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 20:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1930 (0x78a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Dec 26 20:50:31 2025 GMT Not After : Jan 2 20:50:31 2026 GMT Subject: CN=694ef517-c0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6b:cf:b4:46:36:dc:ac:23:dd:1a:9e:e7:7e: c3:63:2e:c0:15:75:a9:fd:f3:88:d4:5c:9c:1f:e4: cb:c3:97:4f:c5:01:a7:9c:2f:f2:ea:e0:ad:48:eb: 61:e1:d9:8e:14:dc:6c:6f:9e:85:bf:b6:a7:13:20: fc:f0:37:bf:58:0a:1e:eb:16:02:de:b0:96:40:47: ae:5e:52:70:53:8f:94:94:bb:02:f0:18:85:fa:e4: ea:67:b7:da:60:2c:c2:e3:ec:84:5a:25:a0:0b:2f: fe:8b:5e:88:1d:20:c2:3c:b5:2e:e3:17:a0:b5:56: ee:95:91:6a:c6:0c:af:b3:94:c2:73:bb:dd:44:3c: 98:94:66:e0:36:d9:df:7f:0f:b4:b4:e2:fe:8e:af: b4:8e:3c:bc:99:93:c9:0e:1b:0c:ad:13:b1:83:cb: d7:96:b2:44:58:24:0c:95:ba:11:1c:ee:45:19:6f: 67:10:11:ff:94:5a:ff:d1:2a:96:4f:14:40:01:33: 0f:f0:3c:07:04:63:ae:65:d5:6f:f3:02:ce:a1:f8: 22:52:d9:6e:22:75:2a:41:c7:10:98:11:ac:d7:dd: 43:18:0b:87:04:59:8a:a9:2f:44:1f:fe:56:0d:6f: a3:db:39:58:7a:75:5c:93:e3:0b:d9:17:90:4b:52: 3a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FD:7B:3B:1F:C3:D2:52:31:46:93:44:15:92:CB:46:B3:0C:77:63 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:90:b7:e5:9c:37:24:a8:15:85:92:3f:9a:dc:10:b1:a3:5a: ae:8c:d9:71:c8:2b:13:56:33:a0:97:b8:95:e0:0a:50:f3:1a: f7:19:26:8e:03:13:be:6b:06:43:6c:76:e5:05:0b:83:df:2f: 15:44:e5:aa:e9:8f:e8:a6:4f:69:ed:d3:64:24:89:97:ec:b7: 01:dd:97:0d:5a:e6:1c:2c:21:33:e0:95:69:05:00:69:9b:94: e6:4b:04:ca:c3:7c:74:80:28:07:69:29:22:00:61:b0:61:86: 64:a3:d5:b7:4a:35:92:20:07:cb:b1:0e:6e:1e:3b:3c:59:6b: 7c:25:8e:4d:a1:08:62:b8:ad:60:92:22:b6:58:ee:c7:4b:95: df:20:d6:d9:2e:e1:7b:77:ae:2b:2d:51:66:6b:cc:dc:62:fc: ef:9b:ab:69:d7:24:88:2e:16:2b:e8:cd:b3:79:a2:5a:4d:df: b1:fd:40:d1:5c:5e:fc:e4:15:fc:cf:06:40:4a:48:90:33:10: 46:a5:61:ce:a5:8b:64:a6:e1:d2:f2:81:e0:24:f8:18:4b:59: f3:e2:8e:86:68:2b:de:14:c7:28:6d:e7:91:f0:06:76:90:0d: db:aa:ac:8c:e3:8c:6d:ef:54:46:8c:09:b2:d7:9a:74:fd:08: c2:f9:77:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUxMjI2MjA1MDMxWhcNMjYwMTAyMjA1MDMxWjAYMRYwFAYD VQQDDA02OTRlZjUxNy1jMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GvPtEY23Kwj3Rqe537DYy7AFXWp/fOI1FycH+TLw5dPxQGnnC/y6uCtSOth 4dmOFNxsb56Fv7anEyD88De/WAoe6xYC3rCWQEeuXlJwU4+UlLsC8BiF+uTqZ7fa YCzC4+yEWiWgCy/+i16IHSDCPLUu4xegtVbulZFqxgyvs5TCc7vdRDyYlGbgNtnf fw+0tOL+jq+0jjy8mZPJDhsMrROxg8vXlrJEWCQMlboRHO5FGW9nEBH/lFr/0SqW TxRAATMP8DwHBGOuZdVv8wLOofgiUtluInUqQccQmBGs191DGAuHBFmKqS9EH/5W DW+j2zlYenVck+ML2ReQS1I6QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/9ezsf w9JSMUaTRBWSy0azDHdjMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPkLflnDckqBWFkj+a3BCxo1qujNlxyCsTVjOgl7iV4ApQ8xr3GSaO AxO+awZDbHblBQuD3y8VROWq6Y/opk9p7dNkJImX7LcB3ZcNWuYcLCEz4JVpBQBp m5TmSwTKw3x0gCgHaSkiAGGwYYZko9W3SjWSIAfLsQ5uHjs8WWt8JY5NoQhiuK1g kiK2WO7HS5XfINbZLuF7d64rLVFma8zcYvzvm6tp1ySILhYr6M2zeaJaTd+x/UDR XF785BX8zwZASkiQMxBGpWHOpYtkpuHS8oHgJPgYS1nz4o6GaCveFMcobeeR8AZ2 kA3bqqyM44xt71RGjAmy15p0/QjC+Xdr -----END CERTIFICATE-----Generated at Sun Dec 28 07:30:05 2025 by rpki-client