This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: 5GC8VT8zJIQ79bN9wIsHAs56zF4pvewzlRlWuBvNkrk= Subject key identifier: 49:14:5A:39:1D:ED:63:5A:78:DC:4B:31:07:92:B3:74:5A:4F:FD:CE Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 0126 Signing time: Fri 05 Dec 2025 02:44:50 +0000 Manifest this update: Fri 05 Dec 2025 02:44:50 +0000 Manifest next update: Fri 12 Dec 2025 02:44:50 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: tBbszcMqBq+l8kcyE4gaUMf2KjN2WSH13AEPhUpM0Pw=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Dec 5 02:44:50 2025 GMT Not After : Dec 12 02:44:50 2025 GMT Subject: CN=69324722-404f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:75:18:01:10:87:bc:a8:a2:e4:69:91:71: 9e:e1:b9:5c:f0:d8:02:1d:77:a7:c2:5c:b7:e3:b2: ca:d3:1d:5e:68:47:19:8b:ae:71:bf:11:8b:f4:a2: 8d:33:89:83:18:78:4d:68:de:02:62:db:08:06:c1: 8a:b3:20:97:22:d2:57:64:8c:60:7a:a6:fa:ce:7a: 19:ec:81:1e:3f:cb:08:f6:d5:68:0b:bf:3f:11:ab: 75:a6:cf:06:72:ca:15:29:cb:f5:70:4e:d8:00:fe: 95:ae:13:3e:20:cc:57:c2:da:9c:68:a7:0a:37:16: 22:e8:26:6d:ea:4c:72:c5:17:0e:6d:5b:35:c2:43: 9a:75:cc:ab:ae:ae:b2:f3:a1:4a:25:00:9f:02:51: d6:2e:dc:4f:80:6b:c3:51:94:6a:9b:c6:ea:bb:22: 30:e3:04:e9:f8:7c:6d:e7:2b:16:7d:c0:98:71:76: c8:a5:7f:d9:06:68:88:d5:dd:d7:c7:a1:f7:82:44: fc:c7:23:0b:cf:3f:39:cd:32:95:53:5b:1e:33:a8: a5:1c:4b:55:cb:cd:6c:e3:2e:65:35:88:d7:f7:f5: 43:10:73:d0:82:67:59:ae:43:c8:7d:e8:d5:02:64: 1d:1b:fe:a1:5a:56:fc:85:9b:37:45:e7:f7:c5:dc: a0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:14:5A:39:1D:ED:63:5A:78:DC:4B:31:07:92:B3:74:5A:4F:FD:CE X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:41:6c:09:3c:41:6e:6a:5c:0f:71:07:7e:82:ba:2c:c0:64: 87:fd:0c:e7:f3:f8:2f:30:c4:a5:09:9c:45:b8:49:b4:66:39: 64:7c:ed:f2:27:ff:8b:bd:4f:90:3b:24:e9:a8:69:13:7f:0d: b7:b3:e3:57:00:a0:77:3f:01:08:3f:f5:0d:1d:84:7e:25:fa: 0b:be:fb:68:a1:3a:a6:0f:49:22:10:ba:c6:aa:2f:83:7f:c4: 4a:08:6a:5f:26:ec:fc:b2:f3:29:8b:8a:c1:a0:4d:d6:70:3e: ca:30:0a:fb:38:88:61:6f:c2:4c:97:be:fc:bb:c0:13:84:78: d8:be:cb:e3:38:d4:44:d8:24:57:27:fb:a6:74:f1:ae:0c:00: 74:29:44:29:85:14:b8:41:14:8a:6b:10:0b:4c:d4:23:b6:d5: cd:43:6d:ca:15:f4:d5:97:0a:b6:56:0b:89:b5:64:19:f8:96: f7:3b:33:99:02:95:93:5c:32:a6:aa:d0:76:dc:b1:55:08:f7: e4:0d:4a:47:c2:b2:d6:95:9e:4c:42:09:b7:b1:f5:0d:90:00: 6e:c8:9e:80:65:88:5c:05:0a:14:02:25:74:93:af:87:a9:78: 97:f1:40:f1:86:80:d0:23:54:bd:83:1f:52:0d:34:55:8a:a8: c9:fa:c7:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUxMjA1MDI0NDUwWhcNMjUxMjEyMDI0NDUwWjAYMRYwFAYD VQQDEw02OTMyNDcyMi00MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEZ1GAEQh7yoouRpkXGe4blc8NgCHXenwly347LK0x1eaEcZi65xvxGL9KKN M4mDGHhNaN4CYtsIBsGKsyCXItJXZIxgeqb6znoZ7IEeP8sI9tVoC78/Eat1ps8G csoVKcv1cE7YAP6VrhM+IMxXwtqcaKcKNxYi6CZt6kxyxRcObVs1wkOadcyrrq6y 86FKJQCfAlHWLtxPgGvDUZRqm8bquyIw4wTp+Hxt5ysWfcCYcXbIpX/ZBmiI1d3X x6H3gkT8xyMLzz85zTKVU1seM6ilHEtVy81s4y5lNYjX9/VDEHPQgmdZrkPIfejV AmQdG/6hWlb8hZs3Ref3xdygwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkUWjkd 7WNaeNxLMQeSs3RaT/3OMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1QWwJPEFualwPcQd+groswGSH/Qzn8/gvMMSlCZxFuEm0ZjlkfO3y J/+LvU+QOyTpqGkTfw23s+NXAKB3PwEIP/UNHYR+JfoLvvtooTqmD0kiELrGqi+D f8RKCGpfJuz8svMpi4rBoE3WcD7KMAr7OIhhb8JMl778u8AThHjYvsvjONRE2CRX J/umdPGuDAB0KUQphRS4QRSKaxALTNQjttXNQ23KFfTVlwq2VguJtWQZ+Jb3OzOZ ApWTXDKmqtB23LFVCPfkDUpHwrLWlZ5MQgm3sfUNkABuyJ6AZYhcBQoUAiV0k6+H qXiX8UDxhoDQI1S9gx9SDTRViqjJ+sdB -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:53 2025 by rpki-client