This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: UW99QusERzqgSp5WRMob7aAbabhjfsBC3Icvy03zyK4= Subject key identifier: 9B:C2:A6:B0:A6:76:F1:F9:F5:B3:94:7E:DE:3B:3A:3B:6D:66:19:F8 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1334 Signing time: Wed 31 Dec 2025 16:47:29 +0000 Manifest this update: Wed 31 Dec 2025 16:47:28 +0000 Manifest next update: Wed 07 Jan 2026 16:47:28 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: An4S15remneC5zM3zGJwRGJzlgY4qHE4KAMxeCBAXXk=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 0/XyD86MMGDFZWji3u5g4rHGi/klL7pxbtniJ4b3GEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4934 (0x1346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Dec 31 16:47:28 2025 GMT Not After : Jan 7 16:47:28 2026 GMT Subject: CN=695553a1-c25c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f4:a7:e9:11:e3:fe:3e:28:cd:1f:ba:4b:1c: 2d:bf:97:a7:f0:a2:60:76:4e:4b:2e:c7:d5:3f:c5: d2:67:42:60:20:4e:73:9c:df:a3:e6:de:e8:db:e1: f3:cb:d2:61:81:64:dd:aa:f7:64:93:41:3f:0f:fb: c8:7e:35:a2:98:d1:4e:be:11:b9:99:3e:94:f0:46: 57:d0:22:fb:f7:22:ea:40:8b:51:dd:21:c0:c9:40: f0:82:c5:b4:f5:9f:bb:29:cc:9f:da:15:8e:b4:1d: b9:b5:31:8b:57:f0:43:94:e9:94:3d:80:88:fc:6d: 83:41:f6:a4:17:49:02:c9:ca:63:1c:0d:24:02:2d: aa:04:d0:83:68:15:40:1e:ee:6e:cb:11:4a:8f:6c: c0:f0:0b:fb:22:7e:ae:1f:7d:80:8a:6d:86:c5:c1: 0d:e9:7f:c9:43:c3:04:3c:7d:7f:b4:95:e9:b9:b0: e9:ee:b1:ec:f0:44:62:99:92:6f:c4:b0:2e:ea:45: 18:5c:56:d8:7b:4a:85:77:66:61:9c:f3:c2:14:93: 10:c4:45:f7:41:25:67:2c:4a:c9:b1:a8:c7:83:33: 4f:d4:b6:ec:32:57:0e:d1:79:05:16:ed:c2:6c:80: ae:dc:62:13:d4:36:bb:e4:28:5b:ca:fa:ac:f3:69: 8f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C2:A6:B0:A6:76:F1:F9:F5:B3:94:7E:DE:3B:3A:3B:6D:66:19:F8 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e7:1f:59:60:90:11:6b:f1:5d:de:fd:7a:2d:30:5b:32:f4: 5f:20:db:4f:a8:e6:70:b0:f8:92:6d:09:18:89:58:ba:19:50: 94:35:bb:56:a6:b4:a7:af:35:a7:83:b8:e9:21:a1:a9:56:a1: 2f:4f:79:92:1c:a5:33:b6:9e:86:93:c3:80:4e:85:b7:d8:ce: f2:b7:d7:c3:4f:54:ab:14:44:89:6d:82:0f:11:e8:5b:db:26: c8:38:1b:73:81:f7:19:fd:c1:27:87:03:b3:0f:33:4a:6b:8a: ca:4d:cf:53:23:f4:00:71:73:e2:a9:f4:af:88:d0:bc:41:bb: 42:9b:f6:6f:a2:39:bf:1c:81:ee:4f:b6:33:23:f0:20:bc:2d: a6:34:89:b8:c1:fb:40:ca:70:9b:e3:01:de:b5:36:a0:5d:b8: 5e:9e:b1:35:b8:23:9a:83:e3:14:16:ef:07:bb:51:10:54:97: 9b:91:bf:80:1a:3f:0a:b7:5c:d0:72:45:48:87:36:2c:75:76: 5a:3e:e6:70:78:6e:e9:ac:d8:70:a3:52:a6:3a:b0:85:37:f1: 4e:e1:e3:a7:5b:bb:07:1b:39:a3:d4:12:75:c5:f5:dc:f5:1c: d2:5d:ea:d1:85:70:8f:cf:02:fd:63:1f:95:0a:01:4d:a6:46: 8e:d2:aa:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjUxMjMxMTY0NzI4WhcNMjYwMTA3MTY0NzI4WjAYMRYwFAYD VQQDDA02OTU1NTNhMS1jMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fSn6RHj/j4ozR+6Sxwtv5en8KJgdk5LLsfVP8XSZ0JgIE5znN+j5t7o2+Hz y9JhgWTdqvdkk0E/D/vIfjWimNFOvhG5mT6U8EZX0CL79yLqQItR3SHAyUDwgsW0 9Z+7Kcyf2hWOtB25tTGLV/BDlOmUPYCI/G2DQfakF0kCycpjHA0kAi2qBNCDaBVA Hu5uyxFKj2zA8Av7In6uH32Aim2GxcEN6X/JQ8MEPH1/tJXpubDp7rHs8ERimZJv xLAu6kUYXFbYe0qFd2ZhnPPCFJMQxEX3QSVnLErJsajHgzNP1LbsMlcO0XkFFu3C bICu3GIT1Da75Chbyvqs82mPSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvCprCm dvH59bOUft47OjttZhn4MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf5x9ZYJARa/Fd3v16LTBbMvRfINtPqOZwsPiSbQkYiVi6GVCUNbtW prSnrzWng7jpIaGpVqEvT3mSHKUztp6Gk8OAToW32M7yt9fDT1SrFESJbYIPEehb 2ybIOBtzgfcZ/cEnhwOzDzNKa4rKTc9TI/QAcXPiqfSviNC8QbtCm/Zvojm/HIHu T7YzI/AgvC2mNIm4wftAynCb4wHetTagXbhenrE1uCOag+MUFu8Hu1EQVJebkb+A Gj8Kt1zQckVIhzYsdXZaPuZweG7prNhwo1KmOrCFN/FO4eOnW7sHGzmj1BJ1xfXc 9RzSXerRhXCPzwL9Yx+VCgFNpkaO0qo8 -----END CERTIFICATE-----Generated at Thu Jan 1 21:22:11 2026 by rpki-client