This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: JD3Q4AmbuESX2dbIrr/Ei3OVq2jkp5Ee8X7VmewGsG8= Subject key identifier: 12:46:01:34:1B:9E:75:14:B3:FC:31:F6:BD:67:08:EC:44:3A:B3:AA Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E37 Signing time: Sun 28 Dec 2025 17:28:10 +0000 Manifest this update: Sun 28 Dec 2025 17:28:10 +0000 Manifest next update: Sun 04 Jan 2026 17:28:10 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: PHtMveIHeS5Y7HC4eDSMrFT44iCYXOInm6+Hr6Ws6Tw=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3649 (0xe41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Dec 28 17:28:10 2025 GMT Not After : Jan 4 17:28:10 2026 GMT Subject: CN=695168aa-de48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:13:34:8f:92:f9:8e:da:ce:3d:72:9c:dd: 64:6e:74:31:d3:bd:b1:16:64:15:c9:72:b7:64:37: 30:6a:8b:94:5c:8f:b7:78:68:19:01:24:77:8f:b8: e6:4a:81:64:93:70:08:ee:1a:2a:97:7e:47:17:3a: 36:2c:e7:40:6d:b3:c3:41:f8:21:51:5f:19:73:3d: cc:c7:46:94:90:a7:5a:78:83:f0:32:77:09:4d:df: 09:2d:3d:29:eb:93:e7:ca:42:a4:8f:dd:ba:a2:72: 1a:46:61:46:d6:f4:fc:db:77:08:36:c8:f6:2a:94: cb:ed:0c:b9:20:1d:51:e6:7b:1d:65:3e:d9:b6:da: 6f:50:5e:d3:8e:3e:f8:d7:89:5a:d1:99:f2:54:ab: 24:f6:77:3a:23:15:23:a8:e3:64:15:b4:2f:df:94: fb:57:db:f7:1c:c5:e4:87:ae:b1:45:c7:37:84:71: 98:84:2d:8c:aa:a3:e2:dd:42:bb:fd:65:cd:4d:7d: 17:30:d5:ca:50:c3:de:86:39:ad:c6:46:51:d3:bb: 7b:af:dd:1c:b1:1c:ce:0d:8e:48:d7:14:eb:ff:0a: 56:25:0c:88:3d:22:d2:74:85:64:86:ec:d6:55:2b: 52:8a:94:81:14:51:12:28:8a:fd:9f:0a:2b:a3:90: 0a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:46:01:34:1B:9E:75:14:B3:FC:31:F6:BD:67:08:EC:44:3A:B3:AA X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:3c:3a:67:97:e6:37:f9:23:47:f4:62:b4:42:aa:2d:e0:83: 20:88:b2:49:9d:6a:2c:a3:74:6b:f0:c5:db:9d:d7:0b:c0:bc: 86:9a:b9:76:55:7f:f4:51:c3:0e:6e:32:c8:c7:d0:48:3c:a7: e3:27:94:62:49:a4:f9:b0:e8:e3:a3:9e:8e:30:02:1c:8a:41: 23:cb:80:4e:20:70:94:fd:47:85:6a:7f:ac:73:09:37:d2:e5: 8e:64:f4:c6:93:84:1c:41:ff:3c:51:28:dc:18:a8:12:24:ec: 76:08:68:ff:68:6e:01:d1:84:14:ea:d3:b6:ee:f5:f2:25:9a: 02:cf:ca:b1:f4:60:98:12:96:34:83:4e:21:2a:ee:9d:dc:2f: c1:94:52:09:91:c1:f4:51:28:f5:e6:50:8f:17:86:d5:f3:ff: ba:0d:46:be:38:80:2e:24:5c:7a:1b:f3:fb:99:ee:2b:d0:a1: c6:01:1b:bc:19:9f:05:80:97:76:98:3e:57:a9:e6:4b:25:ec: 24:62:ef:ab:1b:4b:41:18:f7:cf:b5:55:58:c4:db:f7:fc:03: 89:dd:bd:d0:9c:75:0c:98:0e:25:b4:fe:b1:5e:0f:d2:9d:e7: 95:30:13:43:51:42:74:c1:51:90:b0:2a:1d:3a:77:89:9c:39: 97:8b:f3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUxMjI4MTcyODEwWhcNMjYwMTA0MTcyODEwWjAYMRYwFAYD VQQDDA02OTUxNjhhYS1kZTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZMTNI+S+Y7azj1ynN1kbnQx072xFmQVyXK3ZDcwaouUXI+3eGgZASR3j7jm SoFkk3AI7hoql35HFzo2LOdAbbPDQfghUV8Zcz3Mx0aUkKdaeIPwMncJTd8JLT0p 65PnykKkj926onIaRmFG1vT823cINsj2KpTL7Qy5IB1R5nsdZT7ZttpvUF7Tjj74 14la0ZnyVKsk9nc6IxUjqONkFbQv35T7V9v3HMXkh66xRcc3hHGYhC2MqqPi3UK7 /WXNTX0XMNXKUMPehjmtxkZR07t7r90csRzODY5I1xTr/wpWJQyIPSLSdIVkhuzW VStSipSBFFESKIr9nworo5AK6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJGATQb nnUUs/wx9r1nCOxEOrOqMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnPDpnl+Y3+SNH9GK0Qqot4IMgiLJJnWoso3Rr8MXbndcLwLyGmrl2 VX/0UcMObjLIx9BIPKfjJ5RiSaT5sOjjo56OMAIcikEjy4BOIHCU/UeFan+scwk3 0uWOZPTGk4QcQf88USjcGKgSJOx2CGj/aG4B0YQU6tO27vXyJZoCz8qx9GCYEpY0 g04hKu6d3C/BlFIJkcH0USj15lCPF4bV8/+6DUa+OIAuJFx6G/P7me4r0KHGARu8 GZ8FgJd2mD5XqeZLJewkYu+rG0tBGPfPtVVYxNv3/AOJ3b3QnHUMmA4ltP6xXg/S neeVMBNDUUJ0wVGQsCodOneJnDmXi/MQ -----END CERTIFICATE-----Generated at Tue Dec 30 07:15:19 2025 by rpki-client