This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft File: TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft (raw, json) Hash identifier: cw1p32WGv7R+IsJxyYY9lgJ91QZzpCHxIrFnPMa30gM= Subject key identifier: DE:7F:10:42:FD:D8:CE:97:85:BD:24:CF:AD:95:53:02:66:22:36:92 Authority key identifier: 4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 Certificate issuer: /CN=A915203C/serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Certificate serial: 0A6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft Manifest number: 0A68 Signing time: Sat 06 Dec 2025 18:52:29 +0000 Manifest this update: Sat 06 Dec 2025 18:52:29 +0000 Manifest next update: Sat 13 Dec 2025 18:52:29 +0000 Files and hashes: 1: TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl (hash: 3dpYdiStOmzs7S1HXtrsUy2vOi+bjz35pEMTwTAnw9w=) 2: 4A7F0102747811EAB3C2634EC4F9AE02.roa (hash: 1nP7wgiAU6ogCq9MB/uivojHlNVu46xfBAf9/7vfcJE=) 3: 039A4408614511F0B95C3C38C4F9AE02.roa (hash: oDjyKM5SNuLjv6Hcd551F4doAQus0w8X4mHseINWIyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915203C, serialNumber=4E4460CF63B24B7C35B9EDAEC97E63A72C4BDE23 Validity Not Before: Dec 6 18:52:29 2025 GMT Not After : Dec 13 18:52:29 2025 GMT Subject: CN=69347b6d-4272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:25:ca:62:0d:95:53:f6:48:65:09:05:7e:0a: 5b:4f:1f:3e:06:c7:59:2e:0a:9b:1b:47:d0:1a:b7: 64:13:97:0f:4d:00:bb:b7:bf:e3:f7:c4:86:1d:91: 6c:ec:14:ea:1d:af:5b:38:55:40:7f:27:5c:96:46: a2:be:15:df:1a:f3:3c:e2:7d:fd:ed:c3:18:97:bc: cf:9a:29:69:da:8c:12:9e:60:fa:3f:6f:75:01:30: dd:90:04:37:12:3b:38:84:5f:bd:a7:40:58:13:35: fc:d8:4c:00:49:1c:7f:67:5b:99:be:4a:b9:c2:05: 1e:ce:d8:e6:1b:53:61:f1:59:8a:20:cd:46:c7:9e: eb:2f:49:23:ad:44:5b:55:fd:46:47:cd:8c:53:94: 9c:02:02:c4:cd:b4:0e:bc:8f:2b:51:52:26:bf:08: 4a:de:73:e7:08:f5:bc:79:84:d2:56:25:b2:b3:32: 05:18:ab:76:97:6f:fe:0d:ea:97:9f:c6:2c:e6:08: 87:4b:ae:11:1d:b3:70:36:21:8f:12:12:12:b0:3f: 2b:e0:7a:4f:9c:18:9f:8e:57:6d:3e:3a:1e:d0:35: 64:40:30:c2:40:0e:33:2b:c6:16:e8:e6:49:d7:0a: ed:4e:99:a4:3a:b8:25:52:bb:8a:5b:ef:27:08:af: c2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7F:10:42:FD:D8:CE:97:85:BD:24:CF:AD:95:53:02:66:22:36:92 X509v3 Authority Key Identifier: keyid:4E:44:60:CF:63:B2:4B:7C:35:B9:ED:AE:C9:7E:63:A7:2C:4B:DE:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TkRgz2OyS3w1ue2uyX5jpyxL3iM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915203C/46C88C82747711EA83654F4DC4F9AE02/TkRgz2OyS3w1ue2uyX5jpyxL3iM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d4:95:c3:e1:d8:a9:69:a5:65:f8:69:bf:b6:d1:cb:5f:35: e5:96:1d:a9:e4:6b:6b:8b:89:e9:e8:f8:a2:6b:6d:a6:4f:48: 33:b4:5d:f8:0e:0d:22:af:cb:ec:6d:38:98:50:18:2c:fe:bb: 06:b2:de:98:6f:04:fd:c3:98:5c:57:b1:4b:98:d4:42:41:8c: b3:a0:51:66:75:73:f3:f7:29:03:ac:e2:19:26:81:c4:93:ed: e2:6d:b0:9b:5f:e6:d6:0d:91:dc:6d:c6:89:ea:06:57:78:ff: 9d:07:34:94:06:a3:d7:fd:0c:ce:2e:7c:c1:ef:96:dc:89:5a: 9b:ba:5c:1c:2b:c1:a7:1c:a0:32:21:08:a0:d3:92:99:5c:21: b2:3f:ad:87:03:73:66:5c:c2:22:cf:34:18:f6:71:58:91:e3: 02:4d:de:78:e3:1b:b8:d7:be:48:8f:30:6b:e8:50:7b:88:db: b7:5d:54:c6:cf:af:52:69:aa:6f:a6:26:1d:73:b6:14:7f:81: 99:4f:c0:27:10:f2:0c:d4:0e:3c:0c:55:73:07:a8:8e:3e:68: 86:3f:ff:28:2b:48:d4:ce:b4:19:4e:21:1d:59:e9:f3:c6:55: 56:09:63:6c:2b:97:de:34:b8:49:05:81:93:93:02:4e:f5:ca: 64:d7:d1:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIwM0MxMTAvBgNVBAUTKDRFNDQ2MENGNjNCMjRCN0MzNUI5RURBRUM5N0U2M0E3 MkM0QkRFMjMwHhcNMjUxMjA2MTg1MjI5WhcNMjUxMjEzMTg1MjI5WjAYMRYwFAYD VQQDEw02OTM0N2I2ZC00MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiXKYg2VU/ZIZQkFfgpbTx8+BsdZLgqbG0fQGrdkE5cPTQC7t7/j98SGHZFs 7BTqHa9bOFVAfydclkaivhXfGvM84n397cMYl7zPmilp2owSnmD6P291ATDdkAQ3 Ejs4hF+9p0BYEzX82EwASRx/Z1uZvkq5wgUeztjmG1Nh8VmKIM1Gx57rL0kjrURb Vf1GR82MU5ScAgLEzbQOvI8rUVImvwhK3nPnCPW8eYTSViWyszIFGKt2l2/+DeqX n8Ys5giHS64RHbNwNiGPEhISsD8r4HpPnBifjldtPjoe0DVkQDDCQA4zK8YW6OZJ 1wrtTpmkOrglUruKW+8nCK/C1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5/EEL9 2M6Xhb0kz62VUwJmIjaSMB8GA1UdIwQYMBaAFE5EYM9jskt8Nbntrsl+Y6csS94j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjAzQy80NkM4OEM4Mjc0 NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMzdzF1ZTJ1eVg1anB5eEwz aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RrUmd6Mk95UzN3MXVlMnV5WDVqcHl4TDNpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAzQy80NkM4OEM4Mjc0NzcxMUVBODM2NTRGNERDNEY5QUUwMi9Ua1JnejJPeVMz dzF1ZTJ1eVg1anB5eEwzaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt1JXD4dipaaVl+Gm/ttHLXzXllh2p5Gtri4np6Piia22mT0gztF34 Dg0ir8vsbTiYUBgs/rsGst6YbwT9w5hcV7FLmNRCQYyzoFFmdXPz9ykDrOIZJoHE k+3ibbCbX+bWDZHcbcaJ6gZXeP+dBzSUBqPX/QzOLnzB75bciVqbulwcK8GnHKAy IQig05KZXCGyP62HA3NmXMIizzQY9nFYkeMCTd544xu4175IjzBr6FB7iNu3XVTG z69SaapvpiYdc7YUf4GZT8AnEPIM1A48DFVzB6iOPmiGP/8oK0jUzrQZTiEdWenz xlVWCWNsK5feNLhJBYGTkwJO9cpk19EZ -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:33 2025 by rpki-client