This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: SEqDvldOlPQshPKi+1/YuSK5nfvcIpABmkAujgWYTwc= Subject key identifier: 40:35:30:B5:E2:1E:8B:FC:F6:F7:2C:9F:60:3F:75:47:44:73:D3:82 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 94 Signing time: Fri 05 Dec 2025 04:26:29 +0000 Manifest this update: Fri 05 Dec 2025 04:26:28 +0000 Manifest next update: Fri 12 Dec 2025 04:26:28 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: tQFLXYZt2UXlOkLHcZtLhw+N/RjT1CB3sDg4OGFm82Q=) 2: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) 3: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Dec 5 04:26:28 2025 GMT Not After : Dec 12 04:26:28 2025 GMT Subject: CN=69325ef4-e2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bf:64:fd:99:5d:f7:c5:b1:6c:94:d8:b8:9f: 6e:b7:91:c3:ac:dd:40:1b:39:4c:f0:0c:9f:09:0c: c0:92:4c:43:72:f7:e8:32:58:c1:35:4f:ba:41:a9: de:89:82:39:64:61:f9:c1:17:2a:fc:7b:1f:2b:9e: 5e:e6:50:b5:83:10:71:97:5b:24:95:f3:cf:c0:e4: ee:c9:59:82:12:68:45:bf:a3:ce:62:06:31:b3:3b: d4:20:3a:e0:1f:a5:63:a2:a3:b2:01:5c:5c:33:d3: a8:4e:ba:de:dd:b7:67:7d:ed:98:d2:c2:93:c7:92: 34:e8:7f:26:a7:1d:eb:e6:84:ab:51:39:23:e2:10: 10:29:50:ab:cf:1f:16:d9:d6:a4:2c:fd:ec:6f:3f: d4:3c:5e:81:c6:af:02:74:65:71:4f:f9:84:e8:67: db:dd:69:da:ef:9d:58:6c:ca:aa:cb:87:31:a7:85: e7:c9:b3:4f:4a:3e:6c:fe:44:7f:d1:fe:ed:d7:86: ec:d3:9f:65:dd:b6:c2:3b:dc:ea:0a:1e:ce:11:aa: a3:eb:06:4a:5d:4a:f8:a5:14:fa:79:94:17:05:c8: e4:2f:f1:9b:f9:bb:1a:8a:4c:3c:37:45:31:93:c3: 71:9e:66:91:30:f1:ef:0f:dd:be:bd:7b:f6:9d:c7: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:35:30:B5:E2:1E:8B:FC:F6:F7:2C:9F:60:3F:75:47:44:73:D3:82 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:9e:3a:67:2d:bb:d2:2e:42:68:a0:49:69:a2:9d:80:4d:58: ac:c4:67:20:e3:30:32:bb:ae:ac:01:19:39:cc:b0:6a:0d:e5: 7a:fc:32:e7:0d:b2:64:3f:84:92:f6:09:c7:4c:56:d5:3a:58: 86:50:a7:1b:8b:3c:d7:b6:2b:f1:26:ef:f2:da:cf:dc:30:20: 6c:85:4d:8e:86:7b:fc:13:fe:c2:04:86:da:d3:61:87:f4:a9: 79:1f:e0:f0:53:77:fc:a9:e0:e3:85:01:c8:36:26:ed:8c:1e: 0a:4c:d4:88:22:6d:93:42:40:78:62:b8:52:fd:33:7f:81:96: a0:5a:a4:55:a0:74:45:9b:1f:c9:25:e4:ee:4f:bd:a4:30:2f: 74:7d:cf:a1:19:8f:c6:05:4a:56:6b:24:85:a1:f3:ec:bd:88: ce:76:b8:f3:58:fe:6e:11:62:f3:a8:c5:79:69:0e:ae:b1:58: 60:78:d9:92:26:0d:2a:b7:bc:95:ed:6c:95:83:23:ef:0a:04: eb:38:4f:14:91:e2:41:6b:3b:f1:3e:24:bc:8f:98:8d:0a:4b: d3:09:cd:ae:a6:a9:1e:43:e6:ec:7c:29:61:7a:91:45:f0:1d: 1c:2a:13:17:08:1f:dc:07:af:81:13:0a:ec:bd:2f:e4:03:67: 95:ae:0f:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMjA1MDQyNjI4WhcNMjUxMjEyMDQyNjI4WjAYMRYwFAYD VQQDEw02OTMyNWVmNC1lMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyr9k/Zld98WxbJTYuJ9ut5HDrN1AGzlM8AyfCQzAkkxDcvfoMljBNU+6Qane iYI5ZGH5wRcq/HsfK55e5lC1gxBxl1sklfPPwOTuyVmCEmhFv6POYgYxszvUIDrg H6VjoqOyAVxcM9OoTrre3bdnfe2Y0sKTx5I06H8mpx3r5oSrUTkj4hAQKVCrzx8W 2dakLP3sbz/UPF6Bxq8CdGVxT/mE6Gfb3Wna751YbMqqy4cxp4XnybNPSj5s/kR/ 0f7t14bs059l3bbCO9zqCh7OEaqj6wZKXUr4pRT6eZQXBcjkL/Gb+bsaikw8N0Ux k8NxnmaRMPHvD92+vXv2ncdFYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEA1MLXi Hov89vcsn2A/dUdEc9OCMB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHnjpnLbvSLkJooElpop2ATVisxGcg4zAyu66sARk5zLBqDeV6/DLn DbJkP4SS9gnHTFbVOliGUKcbizzXtivxJu/y2s/cMCBshU2Ohnv8E/7CBIba02GH 9Kl5H+DwU3f8qeDjhQHINibtjB4KTNSIIm2TQkB4YrhS/TN/gZagWqRVoHRFmx/J JeTuT72kMC90fc+hGY/GBUpWaySFofPsvYjOdrjzWP5uEWLzqMV5aQ6usVhgeNmS Jg0qt7yV7WyVgyPvCgTrOE8UkeJBazvxPiS8j5iNCkvTCc2upqkeQ+bsfClhepFF 8B0cKhMXCB/cB6+BEwrsvS/kA2eVrg8w -----END CERTIFICATE-----Generated at Sat Dec 6 17:29:16 2025 by rpki-client