This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: 1I2cPTI2fU9Hy1W1J2sJVt515wFkdGOfufkikNihXJ0= Subject key identifier: 70:8B:96:25:41:EA:A7:5E:8B:52:49:A2:7E:1F:61:EC:BF:FE:73:B7 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0157 Signing time: Fri 05 Dec 2025 02:19:48 +0000 Manifest this update: Fri 05 Dec 2025 02:19:48 +0000 Manifest next update: Fri 12 Dec 2025 02:19:48 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: N4uUGMvPYaC6PNwLSllx8sjeyCXwPVs50bQv9vTPxik=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Dec 5 02:19:48 2025 GMT Not After : Dec 12 02:19:48 2025 GMT Subject: CN=69324144-e0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:d6:39:c7:4b:13:20:73:bf:e3:ea:28:95: 80:18:08:23:4b:0c:54:df:84:5a:5c:21:6c:0a:ef: 0c:02:22:95:3b:e9:a3:a6:29:ea:2a:68:05:ac:bd: 4d:f4:f4:73:30:c9:87:27:6b:b7:17:de:ab:b7:a7: e0:61:87:f2:94:10:cf:6b:a5:1b:68:56:95:e5:34: f7:69:45:cc:12:91:4c:c0:a7:c4:ce:b2:1a:3b:09: fe:83:11:85:78:5e:9c:22:ad:a6:b6:b2:f6:da:3f: 93:ec:76:67:a1:6a:e1:1e:f9:bf:a7:f8:a0:24:09: b0:46:5d:d4:2a:cf:8b:b6:10:1d:83:c0:04:88:8d: 54:85:da:29:f0:34:81:fa:0c:a6:af:b9:d2:3a:71: a7:39:74:0b:ea:74:f6:16:3c:db:69:68:d6:cc:26: 35:07:f2:8f:6a:67:6f:00:ea:5e:c3:e9:ca:89:64: 6d:d2:26:b7:45:64:5a:fe:9c:d5:18:49:e6:21:98: 2f:7a:76:d3:46:55:ec:fd:65:b5:c4:d0:c3:0b:b0: db:ce:7e:ff:fa:3f:83:c9:1c:9a:71:5d:ed:39:70: 9a:f0:a1:cc:38:2d:31:4a:b3:41:52:3f:50:43:52: 03:9b:8e:92:09:a9:0d:d3:4e:ee:35:eb:70:d8:64: e7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8B:96:25:41:EA:A7:5E:8B:52:49:A2:7E:1F:61:EC:BF:FE:73:B7 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:3a:2a:d8:3a:68:e5:8a:c7:ed:24:5b:94:f8:69:91:66:b0: 1d:ec:ca:cd:d9:39:70:4a:23:2d:a8:35:6a:5c:b4:7d:1d:81: 53:40:86:0e:ba:ab:83:3e:34:af:46:85:87:0f:c8:19:11:39: 5b:c8:ed:00:91:c6:e5:a8:df:4a:4b:66:45:50:2b:07:7b:65: 96:0a:c5:cc:69:ba:0c:30:89:e0:71:6e:be:9e:f2:61:9a:76: 57:fa:e5:47:81:0d:97:56:a3:ef:98:3b:a3:1d:f9:1c:77:6c: 35:00:df:03:14:18:2e:61:12:3b:79:e8:55:2c:f3:6a:5a:3e: 06:a7:46:97:63:e5:08:25:26:9d:27:36:9a:bf:28:29:b4:6a: a4:89:e2:44:9c:68:ed:f1:d7:46:c7:32:3e:b5:c8:4b:19:e4: 8b:aa:17:6d:cd:e6:c1:fa:41:54:02:58:fc:ca:31:3f:0e:49: 22:0d:4c:38:d0:bd:1c:1f:80:48:26:9d:56:1d:cd:44:2a:3c: 32:da:7d:95:0f:1c:ea:a1:7c:95:65:32:3c:f4:d4:ea:40:33: 67:db:04:8a:18:a9:03:a6:18:49:3e:a2:09:b5:39:b8:15:b3: 61:1d:ae:5a:e4:9f:89:2e:a5:c5:c1:a3:68:ab:3e:aa:e3:29: 76:11:a3:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUxMjA1MDIxOTQ4WhcNMjUxMjEyMDIxOTQ4WjAYMRYwFAYD VQQDEw02OTMyNDE0NC1lMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ/WOcdLEyBzv+PqKJWAGAgjSwxU34RaXCFsCu8MAiKVO+mjpinqKmgFrL1N 9PRzMMmHJ2u3F96rt6fgYYfylBDPa6UbaFaV5TT3aUXMEpFMwKfEzrIaOwn+gxGF eF6cIq2mtrL22j+T7HZnoWrhHvm/p/igJAmwRl3UKs+LthAdg8AEiI1Uhdop8DSB +gymr7nSOnGnOXQL6nT2FjzbaWjWzCY1B/KPamdvAOpew+nKiWRt0ia3RWRa/pzV GEnmIZgvenbTRlXs/WW1xNDDC7Dbzn7/+j+DyRyacV3tOXCa8KHMOC0xSrNBUj9Q Q1IDm46SCakN007uNetw2GTnrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCLliVB 6qdei1JJon4fYey//nO3MB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBROirYOmjlisftJFuU+GmRZrAd7MrN2TlwSiMtqDVqXLR9HYFTQIYO uquDPjSvRoWHD8gZETlbyO0AkcblqN9KS2ZFUCsHe2WWCsXMaboMMIngcW6+nvJh mnZX+uVHgQ2XVqPvmDujHfkcd2w1AN8DFBguYRI7eehVLPNqWj4Gp0aXY+UIJSad JzaavygptGqkieJEnGjt8ddGxzI+tchLGeSLqhdtzebB+kFUAlj8yjE/DkkiDUw4 0L0cH4BIJp1WHc1EKjwy2n2VDxzqoXyVZTI89NTqQDNn2wSKGKkDphhJPqIJtTm4 FbNhHa5a5J+JLqXFwaNoqz6q4yl2EaMo -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:27 2025 by rpki-client