This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: 6JAo3rj0whXzXTD65mEOVWIiYDqaRJg0eRIgErtZXiQ= Subject key identifier: D9:8F:D6:A7:4A:8B:1A:AB:B1:8B:F2:C3:E6:AB:D7:B6:D7:71:49:75 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E32 Signing time: Thu 18 Dec 2025 17:36:51 +0000 Manifest this update: Thu 18 Dec 2025 17:36:51 +0000 Manifest next update: Thu 25 Dec 2025 17:36:51 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: jDjpRbbIDPgabfOwh9QH90U0ZtcjxaEkQFlYgaW6gUI=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Dec 18 17:36:51 2025 GMT Not After : Dec 25 17:36:51 2025 GMT Subject: CN=69443bb3-e10c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:91:a1:66:36:e6:99:38:5c:93:bb:0d:14:f5: c0:07:2a:9b:1e:b5:09:22:b5:96:35:08:14:4c:a6: a1:ea:f3:9f:8b:1b:58:ed:9c:3c:76:0c:30:5d:73: 7c:d7:3e:59:44:55:91:2e:6a:84:6b:7e:5c:eb:e8: 3a:29:60:ee:c3:10:06:0d:51:75:d5:0f:97:59:2f: c2:d5:5c:e2:2b:c3:4d:53:de:cf:c7:89:e0:02:78: 31:2c:7e:23:aa:4c:c7:61:89:14:25:1b:8d:e5:38: 99:8a:33:0e:a7:0d:d6:10:e1:9c:c3:06:67:18:6e: 1e:f8:8b:2b:7b:b9:d2:63:81:4e:3c:7e:d7:88:b3: f3:a1:4f:cc:b2:3f:20:fa:68:04:f5:f4:31:86:41: 6b:36:c7:d0:23:89:4b:80:fc:40:83:04:b7:74:77: 29:b5:29:63:c8:fb:f1:7a:5f:2b:01:ea:f1:8e:f9: b4:67:82:6f:2e:2b:ac:d9:68:bd:b3:df:cc:1a:58: 28:6b:82:64:e1:8c:31:7a:d8:7a:b8:d0:65:ae:37: 78:2a:68:8b:ce:33:d3:9d:1e:82:7b:01:f7:bd:7a: 2c:7c:52:07:bb:28:1e:57:f2:64:b6:34:2b:c1:7c: ad:05:fd:3f:1d:4f:38:65:1b:af:45:ec:94:be:c6: 54:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8F:D6:A7:4A:8B:1A:AB:B1:8B:F2:C3:E6:AB:D7:B6:D7:71:49:75 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:f6:3b:55:45:71:45:98:ab:1d:32:e7:25:35:f2:59:00:10: d5:da:fa:4a:6a:96:7b:91:7d:03:0d:a3:32:42:c0:1c:03:b1: 1f:ad:64:3c:3a:6d:21:6d:95:36:36:b7:e8:f0:7c:33:e2:14: 0a:09:b4:d7:63:83:e0:e4:f1:12:da:ff:36:1c:1d:ee:4c:7e: 89:95:c4:a9:7b:5e:3b:3b:99:dd:bc:1e:8b:66:33:4f:03:0a: 4e:eb:fa:ae:0b:8a:eb:74:0a:7d:59:14:dc:9c:7d:68:94:b7: 74:a3:4a:64:db:f8:7c:0d:38:d8:bd:b0:20:7e:48:42:d4:54: 93:8a:48:c4:bf:02:86:59:81:ff:8a:72:5b:7a:a0:4d:61:ea: b8:51:1e:cd:de:e0:82:ce:11:9a:81:d7:67:c6:2a:16:f0:6c: 1d:f7:b6:75:b7:37:cf:9b:15:86:d9:da:5a:d8:0c:13:42:6f: 00:ee:c9:29:11:1f:84:97:9b:69:7d:0f:15:1a:e0:f0:fd:f8: 51:4e:eb:3b:13:71:8f:54:9b:2d:83:35:24:3e:52:56:e4:e5: 1c:b9:96:53:fc:dd:3a:f4:74:38:d6:56:ae:2a:66:9f:f5:45: 83:8c:20:6c:e2:37:53:2a:02:ce:ad:59:44:fb:00:c1:77:9c: d6:1b:9b:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUxMjE4MTczNjUxWhcNMjUxMjI1MTczNjUxWjAYMRYwFAYD VQQDDA02OTQ0M2JiMy1lMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pGhZjbmmThck7sNFPXAByqbHrUJIrWWNQgUTKah6vOfixtY7Zw8dgwwXXN8 1z5ZRFWRLmqEa35c6+g6KWDuwxAGDVF11Q+XWS/C1VziK8NNU97Px4ngAngxLH4j qkzHYYkUJRuN5TiZijMOpw3WEOGcwwZnGG4e+Isre7nSY4FOPH7XiLPzoU/Msj8g +mgE9fQxhkFrNsfQI4lLgPxAgwS3dHcptSljyPvxel8rAerxjvm0Z4JvLius2Wi9 s9/MGlgoa4Jk4Ywxeth6uNBlrjd4KmiLzjPTnR6CewH3vXosfFIHuygeV/JktjQr wXytBf0/HU84ZRuvReyUvsZUXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmP1qdK ixqrsYvyw+ar17bXcUl1MB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb9jtVRXFFmKsdMuclNfJZABDV2vpKapZ7kX0DDaMyQsAcA7EfrWQ8 Om0hbZU2Nrfo8Hwz4hQKCbTXY4Pg5PES2v82HB3uTH6JlcSpe147O5ndvB6LZjNP AwpO6/quC4rrdAp9WRTcnH1olLd0o0pk2/h8DTjYvbAgfkhC1FSTikjEvwKGWYH/ inJbeqBNYeq4UR7N3uCCzhGagddnxioW8Gwd97Z1tzfPmxWG2dpa2AwTQm8A7skp ER+El5tpfQ8VGuDw/fhRTus7E3GPVJstgzUkPlJW5OUcuZZT/N069HQ41lauKmaf 9UWDjCBs4jdTKgLOrVlE+wDBd5zWG5s0 -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:24 2025 by rpki-client