This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft File: TZRPMLjG5pGYjTAvumwvnFdMBLA.mft (raw, json) Hash identifier: 01tg5s2360bhgjaBWXPA3lfYWSFct8N3MaHJXqC98js= Subject key identifier: F8:E3:32:42:2B:24:B2:00:24:59:4B:F4:12:7C:4A:71:33:A6:2F:9B Authority key identifier: 4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 Certificate issuer: /CN=A914F349/serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft Manifest number: 032C Signing time: Sat 06 Dec 2025 23:39:03 +0000 Manifest this update: Sat 06 Dec 2025 23:39:03 +0000 Manifest next update: Sat 13 Dec 2025 23:39:03 +0000 Files and hashes: 1: TZRPMLjG5pGYjTAvumwvnFdMBLA.crl (hash: 9P99yLupkSdpEd7fFiSdbn7R9QWag7fdXl+YGM/fyzM=) 2: E5A22A7CEDB811ECB7BDFF0AC4F9AE02.roa (hash: pBwxys1yivtkEToGBFIFFmXXN52OvE5FFgRhewDkeko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F349, serialNumber=4D944F30B8C6E691988D302FBA6C2F9C574C04B0 Validity Not Before: Dec 6 23:39:03 2025 GMT Not After : Dec 13 23:39:03 2025 GMT Subject: CN=6934be97-378e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:41:0c:c3:98:38:69:d6:53:45:9c:dd:88:9c: 3a:46:a0:21:4c:4e:05:97:3a:26:8e:32:13:d1:41: 22:e8:7f:9c:d1:06:cc:20:ac:4d:6c:88:c6:69:bf: df:13:85:66:09:2c:e0:73:6b:7c:c1:30:e6:bc:67: 8b:43:cb:1b:ca:e9:ad:7e:ed:a2:fc:cd:83:6a:5b: 5b:29:97:7f:b9:c1:bc:fa:db:30:7f:0a:96:5e:af: 84:d0:d2:16:b4:e8:49:23:06:7f:3d:57:ea:26:e0: 9d:aa:94:2d:8d:88:98:ae:5b:c5:75:66:50:14:d8: af:ae:8e:0f:53:f4:66:9a:43:0f:05:1e:84:87:ac: 6f:aa:a3:c6:89:64:1c:91:85:bc:fa:a1:5b:ba:68: ad:cb:b8:d3:c4:e3:3a:33:92:5c:f2:f4:a0:3b:87: ae:8f:a3:f9:e6:0a:ad:41:20:5d:7e:9b:a2:d5:2b: 6c:c5:45:11:8e:58:ff:f3:0e:5a:19:fa:b3:ae:38: e9:63:51:6a:04:77:e6:cc:57:01:ff:16:0a:a1:41: 3f:6c:2a:fd:f1:4c:0b:a4:15:fe:e0:f1:78:86:6e: f6:01:98:2f:c1:cf:71:d1:9a:7e:da:4c:32:12:ad: bd:64:e2:18:dd:1b:0d:c0:42:df:78:fb:ca:49:42: 94:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E3:32:42:2B:24:B2:00:24:59:4B:F4:12:7C:4A:71:33:A6:2F:9B X509v3 Authority Key Identifier: keyid:4D:94:4F:30:B8:C6:E6:91:98:8D:30:2F:BA:6C:2F:9C:57:4C:04:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZRPMLjG5pGYjTAvumwvnFdMBLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F349/C6F5001AEDB111ECAF435C5DC4F9AE02/TZRPMLjG5pGYjTAvumwvnFdMBLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:1a:a2:05:d6:47:b5:79:89:0e:c4:7c:f0:3d:77:6b:2e:cc: 9d:ea:ae:b0:e4:96:25:0e:6d:cd:4d:a0:c9:7c:90:9d:48:ea: 6f:47:ad:27:ce:8b:f8:6c:7f:40:80:9d:20:de:4d:fc:31:22: 0a:b2:fa:22:d7:7e:5e:54:53:a4:03:14:68:90:61:b1:5d:7a: 57:29:f1:3e:4e:97:4d:67:31:4a:da:56:de:d8:84:57:b3:41: 6f:d4:e1:65:53:fe:03:cc:2c:e5:30:7b:6a:90:45:2c:ea:6f: 16:f6:93:fc:07:75:01:fc:88:38:ad:78:23:1e:e6:56:46:67: 38:15:93:5c:4c:61:06:2c:4d:1f:26:21:50:00:d1:56:67:b9: b1:63:90:95:bc:a6:db:fe:64:9b:31:12:6f:08:49:b2:9a:e7: 60:c8:49:47:33:d9:3a:e6:ed:88:e1:31:9d:e5:7d:da:2b:e7: 90:f1:2d:f7:15:96:4b:fc:ed:c0:71:53:4f:76:8e:bc:5b:d5: 17:a4:1f:0f:10:06:3b:2b:60:36:8a:2e:78:d1:d7:91:8c:22: ec:f9:bb:5c:1a:4a:44:7d:87:19:f9:26:2f:2f:cb:1c:11:72: c8:c2:84:29:99:4b:dc:36:67:67:9e:b1:24:b5:01:be:9b:78: e4:7b:b0:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzNDkxMTAvBgNVBAUTKDREOTQ0RjMwQjhDNkU2OTE5ODhEMzAyRkJBNkMyRjlD NTc0QzA0QjAwHhcNMjUxMjA2MjMzOTAzWhcNMjUxMjEzMjMzOTAzWjAYMRYwFAYD VQQDEw02OTM0YmU5Ny0zNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EEMw5g4adZTRZzdiJw6RqAhTE4FlzomjjIT0UEi6H+c0QbMIKxNbIjGab/f E4VmCSzgc2t8wTDmvGeLQ8sbyumtfu2i/M2DaltbKZd/ucG8+tswfwqWXq+E0NIW tOhJIwZ/PVfqJuCdqpQtjYiYrlvFdWZQFNivro4PU/RmmkMPBR6Eh6xvqqPGiWQc kYW8+qFbumity7jTxOM6M5Jc8vSgO4euj6P55gqtQSBdfpui1StsxUURjlj/8w5a GfqzrjjpY1FqBHfmzFcB/xYKoUE/bCr98UwLpBX+4PF4hm72AZgvwc9x0Zp+2kwy Eq29ZOIY3RsNwELfePvKSUKU4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjjMkIr JLIAJFlL9BJ8SnEzpi+bMB8GA1UdIwQYMBaAFE2UTzC4xuaRmI0wL7psL5xXTASw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjM0OS9DNkY1MDAxQUVE QjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVwR1lqVEF2dW13dm5GZE1C TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaUlBNTGpHNXBHWWpUQXZ1bXd2bkZkTUJMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjM0OS9DNkY1MDAxQUVEQjExMUVDQUY0MzVDNURDNEY5QUUwMi9UWlJQTUxqRzVw R1lqVEF2dW13dm5GZE1CTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuGqIF1ke1eYkOxHzwPXdrLsyd6q6w5JYlDm3NTaDJfJCdSOpvR60n zov4bH9AgJ0g3k38MSIKsvoi135eVFOkAxRokGGxXXpXKfE+TpdNZzFK2lbe2IRX s0Fv1OFlU/4DzCzlMHtqkEUs6m8W9pP8B3UB/Ig4rXgjHuZWRmc4FZNcTGEGLE0f JiFQANFWZ7mxY5CVvKbb/mSbMRJvCEmymudgyElHM9k65u2I4TGd5X3aK+eQ8S33 FZZL/O3AcVNPdo68W9UXpB8PEAY7K2A2ii540deRjCLs+btcGkpEfYcZ+SYvL8sc EXLIwoQpmUvcNmdnnrEktQG+m3jke7C1 -----END CERTIFICATE-----Generated at Sun Dec 7 10:50:56 2025 by rpki-client