This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft File: 4z23k7vv5Gy8912zTnCUJ6cu8PM.mft (raw, json) Hash identifier: 8psgzmg6AMHrUE76plqVtTcGfM3pmEWgASVFKYNMa/E= Subject key identifier: C7:7F:94:60:74:75:A3:E4:D8:AE:66:9B:57:55:D8:97:E5:9B:AF:23 Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft Manifest number: 0233 Signing time: Sun 21 Dec 2025 01:14:50 +0000 Manifest this update: Sun 21 Dec 2025 01:14:49 +0000 Manifest next update: Sun 28 Dec 2025 01:14:49 +0000 Files and hashes: 1: 4z23k7vv5Gy8912zTnCUJ6cu8PM.crl (hash: M+f2cQ00sdtwe3uxZW5Kphy/ChmytgwJiOxPlkd4RNw=) 2: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (hash: Hy6T8zhOl3f+SHukkt0PutGPxcTAN5g9mi9bO48HFgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A, serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Dec 21 01:14:49 2025 GMT Not After : Dec 28 01:14:49 2025 GMT Subject: CN=69474a0a-921a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e2:a8:80:f4:ae:c5:36:0a:8c:20:e3:ed:50: de:43:a2:0b:db:8f:4d:25:6d:b1:73:ea:bb:b7:80: a6:46:9f:0c:b1:94:22:b2:32:de:49:0a:fb:03:fa: 8c:ec:68:2c:42:d7:bc:39:0c:74:29:f2:9a:8c:ad: 3f:38:c5:83:bf:5d:5e:4d:8f:85:9e:23:d9:c5:fc: 19:e8:d3:b2:78:1d:e1:9b:ca:68:7d:df:c0:63:84: 1f:ce:8e:41:14:4f:5d:38:b7:27:e8:db:1d:e4:cf: 18:de:a0:89:3e:e1:b0:b6:19:88:23:3a:74:9a:08: 6c:de:8a:48:7e:f2:8f:c1:7f:17:24:6a:b9:1a:31: 46:fd:1c:70:5a:c0:89:18:72:42:26:72:18:b4:32: 50:7e:b4:ca:ca:ed:2d:74:e5:23:99:2a:5a:dd:e8: 88:d2:14:51:07:66:0a:45:32:3d:c1:bc:f2:d0:04: e6:9c:7e:7b:8c:cc:9a:18:0f:b8:b8:a8:7e:74:13: 4a:53:7a:4c:27:77:93:63:e6:ce:0f:db:80:76:bc: ff:0a:50:ed:b7:be:d8:22:54:a6:ed:4b:b3:34:09: a8:4f:82:0f:99:f3:0f:6f:e7:0c:ff:67:00:49:ca: 4f:24:0d:5b:23:97:64:1f:97:16:5a:a8:aa:fa:3f: 52:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7F:94:60:74:75:A3:E4:D8:AE:66:9B:57:55:D8:97:E5:9B:AF:23 X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:a1:85:7e:be:01:04:c1:2c:20:3e:14:55:7f:3d:42:b3:58: 77:96:eb:7d:95:8e:eb:46:a7:79:52:8c:e9:0a:cd:c1:cb:58: 91:17:6d:e2:4d:69:25:2f:0f:78:84:72:4b:00:18:40:eb:45: 61:9c:c9:18:8b:21:ff:bf:34:d6:69:34:98:c4:53:7c:12:67: 01:ea:61:2d:cd:55:35:ff:fa:f1:aa:dd:68:f6:41:8c:fc:b5: 70:0b:86:51:d9:28:b4:45:ff:f5:39:37:96:83:e1:71:38:2a: 4a:bb:25:a6:38:80:e3:c4:32:e0:93:18:a9:0a:a0:3a:d3:a8: b0:2d:9d:86:30:a8:1f:12:73:5a:36:3b:12:bc:78:f4:38:e9: a0:32:83:9c:ed:9a:d5:fe:8f:22:d6:62:26:d0:69:f4:89:f3: 9c:fa:6f:b7:69:18:73:5d:43:2a:e5:ad:b9:8e:fd:84:55:75: aa:41:fb:39:e5:63:32:64:23:85:89:96:d4:43:b6:1e:83:5d: 3d:d7:b2:f8:37:82:44:38:61:3e:5e:40:fe:c5:98:cd:23:5d: 3a:68:51:4f:0b:d6:46:62:cb:b6:26:e6:2c:2c:81:24:16:7d: b2:ba:a3:3d:00:38:9f:1e:23:e7:56:66:70:a9:ac:3e:a6:80: 36:60:32:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjUxMjIxMDExNDQ5WhcNMjUxMjI4MDExNDQ5WjAYMRYwFAYD VQQDDA02OTQ3NGEwYS05MjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjuKogPSuxTYKjCDj7VDeQ6IL249NJW2xc+q7t4CmRp8MsZQisjLeSQr7A/qM 7GgsQte8OQx0KfKajK0/OMWDv11eTY+FniPZxfwZ6NOyeB3hm8pofd/AY4Qfzo5B FE9dOLcn6Nsd5M8Y3qCJPuGwthmIIzp0mghs3opIfvKPwX8XJGq5GjFG/RxwWsCJ GHJCJnIYtDJQfrTKyu0tdOUjmSpa3eiI0hRRB2YKRTI9wbzy0ATmnH57jMyaGA+4 uKh+dBNKU3pMJ3eTY+bOD9uAdrz/ClDtt77YIlSm7UuzNAmoT4IPmfMPb+cM/2cA ScpPJA1bI5dkH5cWWqiq+j9SawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMd/lGB0 daPk2K5mm1dV2Jflm68jMB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0Y2QS8wNjc5MjUwMDdGNDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVH eTg5MTJ6VG5DVUo2Y3U4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3oYV+vgEEwSwgPhRVfz1Cs1h3lut9lY7rRqd5UozpCs3By1iRF23i TWklLw94hHJLABhA60VhnMkYiyH/vzTWaTSYxFN8EmcB6mEtzVU1//rxqt1o9kGM /LVwC4ZR2Si0Rf/1OTeWg+FxOCpKuyWmOIDjxDLgkxipCqA606iwLZ2GMKgfEnNa NjsSvHj0OOmgMoOc7ZrV/o8i1mIm0Gn0ifOc+m+3aRhzXUMq5a25jv2EVXWqQfs5 5WMyZCOFiZbUQ7Yeg10917L4N4JEOGE+XkD+xZjNI106aFFPC9ZGYsu2JuYsLIEk Fn2yuqM9ADifHiPnVmZwqaw+poA2YDL0 -----END CERTIFICATE-----Generated at Sun Dec 21 13:03:52 2025 by rpki-client