This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: Gnopt14GpBL0g3AnI3PuIY582MC1nBhgjUlT9rj9Dts= Subject key identifier: BF:AB:D4:A3:14:A4:E5:6E:A5:C2:C5:F6:87:FB:05:B5:F8:E3:31:78 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: 0111 Signing time: Sun 21 Dec 2025 04:04:12 +0000 Manifest this update: Sun 21 Dec 2025 04:04:11 +0000 Manifest next update: Sun 28 Dec 2025 04:04:11 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: ZJbNUAcSQ03M9zzqnIz6y8dfPnXHbzO0DIngrKfnhB4=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Dec 21 04:04:11 2025 GMT Not After : Dec 28 04:04:11 2025 GMT Subject: CN=694771bc-3b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:44:89:a4:87:64:12:69:84:46:44:cb:6f:d6: fa:f4:63:c2:ef:19:38:e1:05:76:5b:0e:02:91:9c: 11:a9:4d:87:f9:6a:0d:da:ae:54:27:c1:70:2a:a2: 28:b6:e8:82:16:ee:e1:71:63:c2:71:05:95:a2:1e: 2f:8b:8d:aa:c4:f3:d4:c9:79:c7:25:c0:f0:d6:96: 8a:4a:ba:11:25:9e:db:f0:77:62:4f:18:db:7c:51: 92:fc:02:f2:86:7d:a2:2c:2d:51:0b:e1:31:3c:0c: f6:9f:e3:8f:89:77:51:ce:a1:ab:cc:54:eb:9f:00: d6:ea:0d:5b:d8:09:16:24:88:ba:44:40:65:8b:84: 84:b7:c2:b9:ea:18:18:d3:06:06:b0:de:d7:c9:7c: d3:72:f1:2f:53:84:cd:06:2a:3e:2d:d6:56:b4:18: ea:72:f2:f8:4a:43:9a:34:41:72:f7:01:de:4c:4a: 80:c8:3a:cf:3b:b6:62:25:7f:79:6a:9d:52:00:d2: 8f:53:ad:74:da:d0:80:6f:c4:f9:c5:0e:c2:b4:aa: f0:5e:de:66:47:28:ec:fe:7e:0c:96:b7:21:f1:aa: c6:16:06:1b:6b:8c:01:7e:80:d1:a3:e6:cb:7c:f3: 47:14:c3:a1:89:24:56:b4:42:ff:3f:de:6f:ab:10: 9d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:AB:D4:A3:14:A4:E5:6E:A5:C2:C5:F6:87:FB:05:B5:F8:E3:31:78 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3d:a6:03:54:2a:7e:99:fb:12:e4:ef:0c:50:99:ef:fb:dd: 9c:ff:e5:1c:20:73:4e:87:2a:6f:81:88:a3:60:e1:e0:c7:9e: 27:55:5b:5e:c4:25:28:bc:18:6a:0e:93:80:c6:bb:4a:7b:1f: d1:ea:ae:b2:79:dd:6b:b4:fd:68:8e:48:aa:31:c2:f6:d8:42: 7f:8e:56:b2:d6:ce:b0:22:cb:08:ef:c7:f5:3f:07:57:13:c6: be:b3:f2:c1:b4:ad:0d:8e:cd:e1:aa:35:9b:57:7a:a2:49:92: 4a:c8:d2:05:f0:89:c8:42:7f:9c:6d:08:f0:8b:75:3e:fb:4a: c2:a8:be:52:78:fc:13:c2:4a:e0:64:d8:5c:3c:73:fa:28:73: 55:5d:12:de:8e:54:55:87:61:bd:5c:d7:b4:70:43:6a:10:f1: 38:3d:94:e3:be:4a:0a:87:04:1b:bd:81:6a:07:ff:f9:cd:c8: 18:92:4b:5a:b7:63:09:31:1c:0a:c8:16:e3:80:90:0c:96:46: 3a:c9:b6:99:a5:14:f3:f4:f8:b2:1a:17:0a:85:fe:ee:ab:05: 89:b4:b6:cb:0f:83:25:6f:6e:fb:cc:85:e8:3f:94:e3:6b:ba: f8:d6:e4:16:87:1a:07:7e:05:d2:91:61:e6:5e:ea:d5:95:68: 51:65:fe:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUxMjIxMDQwNDExWhcNMjUxMjI4MDQwNDExWjAYMRYwFAYD VQQDDA02OTQ3NzFiYy0zYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkSJpIdkEmmERkTLb9b69GPC7xk44QV2Ww4CkZwRqU2H+WoN2q5UJ8FwKqIo tuiCFu7hcWPCcQWVoh4vi42qxPPUyXnHJcDw1paKSroRJZ7b8HdiTxjbfFGS/ALy hn2iLC1RC+ExPAz2n+OPiXdRzqGrzFTrnwDW6g1b2AkWJIi6REBli4SEt8K56hgY 0wYGsN7XyXzTcvEvU4TNBio+LdZWtBjqcvL4SkOaNEFy9wHeTEqAyDrPO7ZiJX95 ap1SANKPU6102tCAb8T5xQ7CtKrwXt5mRyjs/n4Mlrch8arGFgYba4wBfoDRo+bL fPNHFMOhiSRWtEL/P95vqxCdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+r1KMU pOVupcLF9of7BbX44zF4MB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWPaYDVCp+mfsS5O8MUJnv+92c/+UcIHNOhypvgYijYOHgx54nVVte xCUovBhqDpOAxrtKex/R6q6yed1rtP1ojkiqMcL22EJ/jlay1s6wIssI78f1PwdX E8a+s/LBtK0Njs3hqjWbV3qiSZJKyNIF8InIQn+cbQjwi3U++0rCqL5SePwTwkrg ZNhcPHP6KHNVXRLejlRVh2G9XNe0cENqEPE4PZTjvkoKhwQbvYFqB//5zcgYkkta t2MJMRwKyBbjgJAMlkY6ybaZpRTz9PiyGhcKhf7uqwWJtLbLD4Mlb277zIXoP5Tj a7r41uQWhxoHfgXSkWHmXurVlWhRZf7X -----END CERTIFICATE-----Generated at Mon Dec 22 09:58:22 2025 by rpki-client