This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: h6/qm7nm1aRZJt3CSHQt5NflsetcYhhOZoEXPrvqXhs= Subject key identifier: 72:BC:05:F7:F1:CC:A2:50:60:D1:EF:4F:65:F8:92:AD:3C:FF:B7:E1 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: BC Signing time: Fri 05 Dec 2025 03:57:45 +0000 Manifest this update: Fri 05 Dec 2025 03:57:44 +0000 Manifest next update: Fri 12 Dec 2025 03:57:44 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: 73h3OGmFAdGw4JUsgMg4oSdVFhlQeC7f3QOOMn6WBlo=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Dec 5 03:57:44 2025 GMT Not After : Dec 12 03:57:44 2025 GMT Subject: CN=69325839-45db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d9:2d:d2:4b:15:83:d3:67:d1:3d:a0:04:12: 1f:09:9c:6b:29:6a:d6:a4:6a:79:ec:26:99:de:bf: 18:77:67:42:0e:c9:03:44:9f:56:06:4f:61:a5:4b: fb:fd:69:e9:c2:bf:48:8c:6b:49:cb:81:a3:0d:d1: f8:e0:25:b6:11:ac:52:9b:00:6d:57:43:05:7d:53: ec:5c:2a:24:f4:39:20:55:c1:d8:d5:2e:eb:26:ea: 72:51:2a:58:0e:03:c7:56:41:41:eb:18:67:eb:7b: 0e:15:64:c2:d2:c4:60:e7:4a:76:ca:91:a4:84:4a: 17:88:d5:27:0a:9a:61:ac:9c:16:d8:b0:93:47:8a: 46:da:12:f8:b7:2b:b6:c2:a7:f3:5e:88:7d:cf:bb: cf:a8:65:75:8a:aa:2c:b2:0a:b7:1f:49:54:4b:9c: d9:e7:27:c4:32:04:52:cd:03:9a:95:a7:44:64:ed: 3b:0a:be:06:44:50:49:3b:f9:d6:d7:f0:c9:b5:33: a4:fe:1c:b2:64:b8:b6:6b:b6:d1:f9:2e:b9:2b:2b: b4:a3:29:b3:4c:ee:4a:6b:99:e7:01:7f:b1:b9:c8: 51:5b:42:3e:c3:35:bd:62:81:30:68:22:d1:a5:10: 0f:ae:8e:3a:09:bf:f9:1a:51:7c:33:03:a0:d0:8d: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BC:05:F7:F1:CC:A2:50:60:D1:EF:4F:65:F8:92:AD:3C:FF:B7:E1 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0f:b8:6f:92:f4:df:d4:6c:9e:f9:a9:5b:1e:52:25:0f:a1: 4f:6e:b0:3d:98:dc:90:67:53:80:1c:e5:24:49:ee:3d:81:6c: 3f:81:18:d6:d8:72:1c:f4:0e:38:83:ad:e3:47:31:0f:84:76: 06:92:07:01:b6:bc:8c:81:e6:83:e5:ed:a3:f7:4a:25:b4:15: 15:d7:28:6d:a7:ad:75:54:28:90:95:d2:39:bf:b0:e3:65:fd: f3:e6:dc:08:ae:49:53:b7:6c:3d:40:31:b8:2b:5d:21:cc:93: b7:6a:59:9c:65:0f:e6:87:5b:69:4d:86:c2:ff:23:07:c0:ae: 36:bb:15:4c:5a:1a:8f:57:82:6b:a6:6a:8c:16:45:dd:51:98: a6:4a:9b:76:6b:63:39:31:c1:97:a9:74:53:fc:3f:6d:c5:26: a3:eb:38:5d:fe:c6:43:5c:62:0f:f2:ba:f6:de:97:c9:3c:ba: fd:5f:ef:cd:e1:51:70:39:3a:38:91:90:eb:18:e8:bb:6b:b8: 59:8a:05:53:77:a7:a3:35:2c:f3:cf:ba:8a:50:4e:11:9c:76: 7c:1f:89:89:17:0a:fa:5c:2e:74:54:41:34:8c:22:c0:82:29: 24:bb:36:8e:4d:3d:eb:38:ae:a8:3a:5d:9f:37:11:62:8e:24: 35:cf:83:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjUxMjA1MDM1NzQ0WhcNMjUxMjEyMDM1NzQ0WjAYMRYwFAYD VQQDEw02OTMyNTgzOS00NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19kt0ksVg9Nn0T2gBBIfCZxrKWrWpGp57CaZ3r8Yd2dCDskDRJ9WBk9hpUv7 /Wnpwr9IjGtJy4GjDdH44CW2EaxSmwBtV0MFfVPsXCok9DkgVcHY1S7rJupyUSpY DgPHVkFB6xhn63sOFWTC0sRg50p2ypGkhEoXiNUnCpphrJwW2LCTR4pG2hL4tyu2 wqfzXoh9z7vPqGV1iqossgq3H0lUS5zZ5yfEMgRSzQOaladEZO07Cr4GRFBJO/nW 1/DJtTOk/hyyZLi2a7bR+S65Kyu0oymzTO5Ka5nnAX+xuchRW0I+wzW9YoEwaCLR pRAPro46Cb/5GlF8MwOg0I326QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK8Bffx zKJQYNHvT2X4kq08/7fhMB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZD7hvkvTf1Gye+albHlIlD6FPbrA9mNyQZ1OAHOUkSe49gWw/gRjW 2HIc9A44g63jRzEPhHYGkgcBtryMgeaD5e2j90oltBUV1yhtp611VCiQldI5v7Dj Zf3z5twIrklTt2w9QDG4K10hzJO3almcZQ/mh1tpTYbC/yMHwK42uxVMWhqPV4Jr pmqMFkXdUZimSpt2a2M5McGXqXRT/D9txSaj6zhd/sZDXGIP8rr23pfJPLr9X+/N 4VFwOTo4kZDrGOi7a7hZigVTd6ejNSzzz7qKUE4RnHZ8H4mJFwr6XC50VEE0jCLA gikkuzaOTT3rOK6oOl2fNxFijiQ1z4Nj -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:54 2025 by rpki-client