This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: Se4omG9EKf6vF9uh3BQj+T/G+LF4JT7GwHdPbIzhbAM= Subject key identifier: 90:69:83:1A:50:B1:88:34:48:4E:A3:12:83:B5:D2:CC:D1:3D:4A:79 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0786 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 077F Signing time: Thu 18 Dec 2025 21:00:40 +0000 Manifest this update: Thu 18 Dec 2025 21:00:40 +0000 Manifest next update: Thu 25 Dec 2025 21:00:40 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: hvI7nh6MJO5abT+sHwO3C7Vorwa3zsK90Glv2Xa2TYk=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1926 (0x786) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Dec 18 21:00:40 2025 GMT Not After : Dec 25 21:00:40 2025 GMT Subject: CN=69446b78-d025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5b:88:e6:d1:2a:f8:df:0a:d0:3c:9d:e7:83: 47:f7:2e:5e:7a:52:f9:ac:67:a9:81:c6:19:e5:13: 69:da:b6:79:9b:8e:4f:7a:13:85:52:b4:c4:d1:18: 13:71:9c:d2:cc:5d:73:41:a6:bd:9b:9d:b0:72:89: 6f:1e:ab:2b:d0:6a:16:d1:9d:51:e5:ce:ac:97:6a: 7e:58:fe:bc:0c:d3:0e:59:aa:62:d0:53:ba:79:42: 02:7d:30:3d:d7:df:cc:2e:c7:97:db:19:9e:6d:74: 65:29:0f:ff:7b:40:15:f9:0b:7a:17:ea:ee:9d:57: c4:f4:4f:db:b2:ce:44:9c:68:32:da:d9:80:01:1d: 0b:22:3a:06:b9:79:be:ab:5e:c0:03:80:d6:f5:4d: a1:c3:be:5a:7c:36:85:d8:6e:d3:f9:f1:14:99:04: fc:f9:b2:20:19:bc:9e:43:59:5d:47:68:f8:05:ca: 3d:dc:f9:80:e9:82:bf:86:7a:d1:0e:c5:c2:bf:1e: 42:26:1f:36:61:15:36:00:df:13:c4:5a:ff:e7:b4: 1c:82:47:5d:b5:f8:8c:b7:8c:ce:a9:96:c0:be:bd: bd:7f:b4:98:45:78:87:72:85:0e:9d:91:51:12:2c: c9:4a:19:21:89:65:87:58:43:a4:f8:53:df:ae:8e: ff:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:69:83:1A:50:B1:88:34:48:4E:A3:12:83:B5:D2:CC:D1:3D:4A:79 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:83:e4:40:58:31:65:20:9e:93:8e:e9:42:89:1f:f1:91:48: 4c:9e:98:97:72:1f:b6:c2:b3:53:6a:6f:88:01:77:79:c0:9f: d1:19:43:0d:13:9b:bb:17:90:bb:30:ad:57:d5:ad:8e:47:f2: fa:f1:d6:d0:a7:b5:86:e3:f1:6f:5d:87:7b:5c:6b:81:b8:af: 0d:25:ce:46:d0:16:38:12:cb:64:80:86:80:cf:c6:39:36:59: 87:e3:ba:27:0a:89:51:c6:f6:e3:bb:a6:7c:8b:72:b3:a3:5a: 7f:da:cb:aa:dc:09:31:cb:dc:a1:c3:3d:07:e8:36:ba:db:27: c9:fe:64:14:18:70:3b:92:9e:32:c9:03:66:24:43:40:03:06: be:44:10:4a:e8:12:bd:6f:d2:3b:c6:6f:fe:fe:de:1a:6e:d5: bd:63:59:ce:02:ef:d0:a8:dd:e4:f6:ea:54:a3:6d:48:3d:75: d9:43:ab:45:7f:7e:33:bc:d0:46:18:f4:44:56:4b:91:2b:52: 13:fd:22:b5:c9:32:6c:3f:a0:0a:1d:d5:c2:29:53:91:30:60: 81:ed:d6:79:3c:bb:89:5f:f8:80:1f:ab:30:a6:c9:89:05:46: 25:25:6c:2d:98:5a:67:78:99:68:81:17:52:a1:c9:f3:ab:ad: 5f:6a:1f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUxMjE4MjEwMDQwWhcNMjUxMjI1MjEwMDQwWjAYMRYwFAYD VQQDDA02OTQ0NmI3OC1kMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FuI5tEq+N8K0Dyd54NH9y5eelL5rGepgcYZ5RNp2rZ5m45PehOFUrTE0RgT cZzSzF1zQaa9m52wcolvHqsr0GoW0Z1R5c6sl2p+WP68DNMOWapi0FO6eUICfTA9 19/MLseX2xmebXRlKQ//e0AV+Qt6F+runVfE9E/bss5EnGgy2tmAAR0LIjoGuXm+ q17AA4DW9U2hw75afDaF2G7T+fEUmQT8+bIgGbyeQ1ldR2j4Bco93PmA6YK/hnrR DsXCvx5CJh82YRU2AN8TxFr/57QcgkddtfiMt4zOqZbAvr29f7SYRXiHcoUOnZFR EizJShkhiWWHWEOk+FPfro7/VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBpgxpQ sYg0SE6jEoO10szRPUp5MB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcg+RAWDFlIJ6TjulCiR/xkUhMnpiXch+2wrNTam+IAXd5wJ/RGUMN E5u7F5C7MK1X1a2OR/L68dbQp7WG4/FvXYd7XGuBuK8NJc5G0BY4EstkgIaAz8Y5 NlmH47onColRxvbju6Z8i3Kzo1p/2suq3Akxy9yhwz0H6Da62yfJ/mQUGHA7kp4y yQNmJENAAwa+RBBK6BK9b9I7xm/+/t4abtW9Y1nOAu/QqN3k9upUo21IPXXZQ6tF f34zvNBGGPREVkuRK1IT/SK1yTJsP6AKHdXCKVORMGCB7dZ5PLuJX/iAH6swpsmJ BUYlJWwtmFpneJlogRdSocnzq61fah9r -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:27 2025 by rpki-client