This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft File: 4190GdVyqG920uv3gpq22dA0CQU.mft (raw, json) Hash identifier: i686lkbjn0L5MSyN9za8Jbk9jtiQ1NQfmaKkGyzAdKg= Subject key identifier: E7:9A:DA:95:C9:BE:34:83:4F:32:35:54:BB:35:5A:73:B7:E1:71:3C Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft Manifest number: 01C4 Signing time: Sat 27 Dec 2025 01:59:18 +0000 Manifest this update: Sat 27 Dec 2025 01:59:18 +0000 Manifest next update: Sat 03 Jan 2026 01:59:18 +0000 Files and hashes: 1: 4190GdVyqG920uv3gpq22dA0CQU.crl (hash: Q2TTWXZc+FkLUT2OBGF4WTwCm058uWq5e4E32Wgc5Vk=) 2: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (hash: gPmbtMjtLenMFEAnNmFzzGl8ckVYYI4uHTkTnXpU64U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Dec 27 01:59:18 2025 GMT Not After : Jan 3 01:59:18 2026 GMT Subject: CN=694f3d76-0a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7d:27:80:54:f8:0d:e6:45:52:b3:96:b4:51: 82:e1:4e:14:44:c4:b5:7d:b2:b6:44:87:0c:4a:40: 6f:70:c0:aa:50:c3:a2:1d:e7:eb:6d:35:57:ac:15: f6:1e:20:8d:0e:b8:e1:2c:86:50:9d:20:c9:57:46: d1:6f:6f:93:6f:cc:41:05:a6:16:34:bd:5c:29:b7: c4:ec:b1:67:4d:d1:1a:ac:b1:37:5d:f2:40:5d:9e: 0c:57:68:2e:3b:65:30:35:32:35:b4:e7:3f:01:a4: 58:2e:51:1f:9f:50:a1:cd:25:d3:d4:c2:5c:df:2d: 3d:fa:36:31:8f:ab:b8:b0:cc:44:30:17:8c:42:8c: 02:44:85:66:e9:bf:5c:32:3f:91:78:30:5b:0e:4a: 12:d7:b9:60:6c:96:1f:14:d2:43:9f:15:50:e7:18: 47:a8:25:47:df:5c:1f:39:69:4e:f4:20:45:4d:bd: e0:3d:3e:ef:b4:7d:19:92:e1:2d:97:90:0c:dc:70: 3f:aa:7e:5f:d3:cf:a0:51:a1:48:87:13:9e:d5:f8: 04:44:bc:e4:cd:2c:68:20:01:55:8a:b2:3e:68:9e: 2b:e1:61:a5:68:31:3d:44:a8:a3:1a:71:ea:01:31: 89:37:86:36:61:4c:9b:0d:4c:6f:8c:97:b6:9d:6c: ba:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9A:DA:95:C9:BE:34:83:4F:32:35:54:BB:35:5A:73:B7:E1:71:3C X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1e:23:1a:04:c8:20:df:e2:0b:7b:37:65:e4:76:e5:ff:26: b2:6e:90:ca:82:e0:64:82:67:80:24:4d:ae:f2:7d:66:c7:ed: 4e:78:94:9f:6f:bf:97:b5:4f:e8:30:a7:cb:8b:42:1e:ab:c3: de:2a:f2:fd:33:41:fd:06:54:49:df:f6:f1:71:0b:49:50:4a: d4:6a:30:6d:ab:66:c3:21:a6:3c:ef:4d:c0:2b:71:e5:3a:28: 87:4e:21:85:2a:6f:79:2d:48:d6:20:64:b7:1d:30:c8:9a:94: d0:10:6d:67:ad:c2:45:3e:22:cb:0e:7d:5e:92:4a:13:90:b9: 3b:81:79:f5:b9:de:a8:98:3a:81:db:a1:bf:ad:65:bd:98:d4: f8:67:a6:ec:42:1e:07:71:f0:ce:64:6b:ff:c5:e5:ad:92:74: 5e:c6:3e:60:72:50:ef:84:2d:11:f5:6a:6a:ca:1b:b1:03:52: 77:55:06:d1:44:3f:b3:89:3a:38:cf:ce:43:21:36:40:48:be: 3e:6d:9d:68:db:3b:b8:1b:0c:2c:ad:c0:03:55:c4:b2:d4:b4: 0e:51:c4:2b:e1:0e:0e:9a:37:12:8f:35:16:d5:d8:0e:80:01: 2b:ed:01:23:10:45:7a:ac:c1:b8:82:91:bd:c3:8c:4c:5c:5d: 18:a8:61:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUxMjI3MDE1OTE4WhcNMjYwMTAzMDE1OTE4WjAYMRYwFAYD VQQDDA02OTRmM2Q3Ni0wYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA330ngFT4DeZFUrOWtFGC4U4URMS1fbK2RIcMSkBvcMCqUMOiHefrbTVXrBX2 HiCNDrjhLIZQnSDJV0bRb2+Tb8xBBaYWNL1cKbfE7LFnTdEarLE3XfJAXZ4MV2gu O2UwNTI1tOc/AaRYLlEfn1ChzSXT1MJc3y09+jYxj6u4sMxEMBeMQowCRIVm6b9c Mj+ReDBbDkoS17lgbJYfFNJDnxVQ5xhHqCVH31wfOWlO9CBFTb3gPT7vtH0ZkuEt l5AM3HA/qn5f08+gUaFIhxOe1fgERLzkzSxoIAFVirI+aJ4r4WGlaDE9RKijGnHq ATGJN4Y2YUybDUxvjJe2nWy6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOea2pXJ vjSDTzI1VLs1WnO34XE8MB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGNS8zM0Y3MjU4NjJEMTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFH OTIwdXYzZ3BxMjJkQTBDUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOHiMaBMgg3+ILezdl5Hbl/yaybpDKguBkgmeAJE2u8n1mx+1OeJSf b7+XtU/oMKfLi0Ieq8PeKvL9M0H9BlRJ3/bxcQtJUErUajBtq2bDIaY8703AK3Hl OiiHTiGFKm95LUjWIGS3HTDImpTQEG1nrcJFPiLLDn1ekkoTkLk7gXn1ud6omDqB 26G/rWW9mNT4Z6bsQh4HcfDOZGv/xeWtknRexj5gclDvhC0R9WpqyhuxA1J3VQbR RD+ziTo4z85DITZASL4+bZ1o2zu4GwwsrcADVcSy1LQOUcQr4Q4OmjcSjzUW1dgO gAEr7QEjEEV6rMG4gpG9w4xMXF0YqGGJ -----END CERTIFICATE-----Generated at Sun Dec 28 20:25:01 2025 by rpki-client