This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: XVmAUpthYmrSMQRVkeA+0YlJjwPBFJu0GzrJ6lLMs2s= Subject key identifier: 64:36:41:79:2E:40:E3:79:FF:5E:32:8A:A4:C6:3E:41:B4:53:AF:EF Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A84 Signing time: Thu 04 Dec 2025 18:53:38 +0000 Manifest this update: Thu 04 Dec 2025 18:53:37 +0000 Manifest next update: Thu 11 Dec 2025 18:53:37 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: JAU+Xkkz1WZ+L1nr+RC4xc+FJigjPCdTbeMh7YjO0ss=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Dec 4 18:53:37 2025 GMT Not After : Dec 11 18:53:37 2025 GMT Subject: CN=6931d8b2-45bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:39:0d:0a:14:39:c2:de:8d:e1:6e:63:47: 69:e3:78:5e:15:b7:43:7b:63:94:6b:60:f0:66:7f: 4c:da:f3:a7:d3:b5:e2:34:e4:a4:e0:a9:70:16:a7: 78:00:2f:46:67:f8:31:41:0d:d1:67:fb:50:a7:87: 29:b6:99:96:8e:4e:ee:a7:d9:ad:db:e7:49:cd:0b: 42:41:a9:7d:30:88:c5:d1:f5:78:b4:ac:91:2e:56: 6e:58:5e:57:2e:0d:3e:a1:22:4d:c3:71:e0:fd:10: 12:b7:98:81:da:17:a5:93:f0:b1:2f:d5:d2:de:1c: 4f:05:71:15:7f:7f:e1:ea:73:32:56:87:b8:43:5b: b1:b5:9b:44:f9:28:fa:e4:e3:3e:ed:71:35:c3:96: b3:34:36:c4:26:e5:f0:f7:9c:69:ab:6d:c2:57:39: 33:4e:a1:aa:72:f9:a1:d6:99:89:dd:7a:49:d8:e3: 52:72:f1:92:c6:68:c7:38:f0:e5:f0:85:53:8a:34: a4:1c:3a:b6:73:06:07:d2:2d:53:47:3c:7b:ff:15: 5a:8d:ff:b2:1f:5f:3f:2c:8a:a3:68:06:92:62:6b: fe:b9:97:4f:11:00:16:f8:83:5f:32:23:ad:f0:bb: 94:8a:91:67:7d:3a:76:e5:76:a9:55:93:52:f8:d5: ad:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:36:41:79:2E:40:E3:79:FF:5E:32:8A:A4:C6:3E:41:B4:53:AF:EF X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:6f:6b:0f:54:cc:05:53:19:db:d1:a7:36:75:7c:e9:30:c7: 92:2c:88:2f:10:6b:10:0e:49:bd:69:58:45:6d:ad:b2:14:94: e1:55:a0:5c:a5:60:68:02:1d:67:34:d5:e2:a3:2c:50:f3:8e: 49:56:82:6e:d8:c9:eb:d9:83:78:0c:19:3e:91:84:6a:72:d8: fd:08:de:78:af:b1:31:fe:1e:66:82:93:09:d6:58:a7:45:66: 1f:46:49:d9:a2:78:5b:8c:66:5e:e7:f2:f6:b1:75:25:9c:8e: 29:f4:6b:8e:62:62:a7:71:ef:03:b2:3f:b2:33:2a:66:83:a6: c2:0a:95:c3:f6:f0:37:d3:c5:1f:14:29:1e:7a:8e:2f:f0:ed: 2f:e2:ea:57:1a:cb:7c:7c:75:7c:5d:24:e0:99:6c:22:a4:ba: ca:2e:b1:72:02:26:63:7b:8f:71:c7:77:55:6c:5b:40:0d:8a: 17:28:9b:ec:71:02:8f:2b:09:d3:1b:66:32:05:2e:84:f2:d1: 88:d0:f8:21:46:b4:3e:1a:e2:79:84:fe:cd:02:24:ab:4f:55: 2c:f5:9b:4a:62:d3:8e:3c:1c:41:4e:2d:1c:87:7a:35:92:85: 2b:43:3b:a0:8c:71:b2:0a:c8:2d:d1:65:ac:c5:76:f1:50:9f: c9:6a:14:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUxMjA0MTg1MzM3WhcNMjUxMjExMTg1MzM3WjAYMRYwFAYD VQQDEw02OTMxZDhiMi00NWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTw5DQoUOcLejeFuY0dp43heFbdDe2OUa2DwZn9M2vOn07XiNOSk4KlwFqd4 AC9GZ/gxQQ3RZ/tQp4cptpmWjk7up9mt2+dJzQtCQal9MIjF0fV4tKyRLlZuWF5X Lg0+oSJNw3Hg/RASt5iB2helk/CxL9XS3hxPBXEVf3/h6nMyVoe4Q1uxtZtE+Sj6 5OM+7XE1w5azNDbEJuXw95xpq23CVzkzTqGqcvmh1pmJ3XpJ2ONScvGSxmjHOPDl 8IVTijSkHDq2cwYH0i1TRzx7/xVajf+yH18/LIqjaAaSYmv+uZdPEQAW+INfMiOt 8LuUipFnfTp25XapVZNS+NWtBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQ2QXku QON5/14yiqTGPkG0U6/vMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9b2sPVMwFUxnb0ac2dXzpMMeSLIgvEGsQDkm9aVhFba2yFJThVaBc pWBoAh1nNNXioyxQ845JVoJu2Mnr2YN4DBk+kYRqctj9CN54r7Ex/h5mgpMJ1lin RWYfRknZonhbjGZe5/L2sXUlnI4p9GuOYmKnce8Dsj+yMypmg6bCCpXD9vA308Uf FCkeeo4v8O0v4upXGst8fHV8XSTgmWwipLrKLrFyAiZje49xx3dVbFtADYoXKJvs cQKPKwnTG2YyBS6E8tGI0PghRrQ+GuJ5hP7NAiSrT1Us9ZtKYtOOPBxBTi0ch3o1 koUrQzugjHGyCsgt0WWsxXbxUJ/JahQg -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:06 2025 by rpki-client