This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: s2glszZpNp5mU0yWzLhTChNiKZxZ/yT6rkc0A0cqH2Y= Subject key identifier: A1:07:1E:B2:46:92:00:C8:FC:92:92:20:CB:D0:33:28:D6:0B:D2:A4 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 010A Signing time: Fri 05 Dec 2025 03:03:35 +0000 Manifest this update: Fri 05 Dec 2025 03:03:34 +0000 Manifest next update: Fri 12 Dec 2025 03:03:34 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: CA55jQZxcnTTMU9zi/J0JyX8fQoTA+0jFabmv3v7Vgg=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Dec 5 03:03:34 2025 GMT Not After : Dec 12 03:03:34 2025 GMT Subject: CN=69324b87-726a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5b:e9:a7:1b:00:42:0f:ae:1e:84:1f:5d:ea: ed:d1:8a:f9:b8:ba:df:b8:73:a1:d2:52:7f:fc:c7: 09:b3:46:2c:2a:33:20:60:bf:3d:cd:bc:2c:9c:f6: 69:31:99:c3:08:bc:a2:16:f5:65:48:fa:51:b6:a9: c3:58:28:ad:12:96:a3:9d:fd:fa:57:af:53:b5:1f: ff:bc:c6:57:3e:5d:98:d0:75:23:1a:ff:e3:54:98: 06:00:62:10:4b:04:c3:04:39:28:68:05:92:db:44: 50:95:b6:db:f2:51:5a:e9:fd:ee:d9:b9:53:87:2d: f6:fd:71:3a:88:0b:25:4f:57:24:77:ab:24:db:3d: d2:eb:b9:39:0d:8c:07:03:db:45:5c:5c:52:71:e4: d7:d9:f1:6b:c1:a4:24:ae:da:5c:42:e2:dd:48:c6: 2d:74:a6:3e:dd:fa:af:08:b1:32:2e:7a:ef:ad:ee: f5:7b:5e:a8:69:fc:a6:78:65:1e:a3:eb:d2:39:3a: dc:14:13:0c:30:20:81:50:fb:69:21:c5:cd:af:86: 72:cc:98:b5:ce:35:ae:c1:b3:ba:71:81:91:d4:bc: 13:71:05:64:38:cd:b4:f5:36:19:df:3c:e6:5e:85: 73:2c:69:69:35:d7:ae:9a:cb:01:b2:d5:dd:70:3f: 91:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:07:1E:B2:46:92:00:C8:FC:92:92:20:CB:D0:33:28:D6:0B:D2:A4 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4f:71:b5:ad:25:ff:00:e4:71:27:a3:ac:72:89:fe:4f:fa: 01:e4:ba:e8:85:bc:50:a4:26:d2:fd:27:63:dc:55:f1:18:2f: 89:e4:1a:7b:ff:3c:ec:04:bc:e2:f8:17:c9:cb:e8:e8:44:b1: ca:ca:72:67:83:e5:0a:bc:d8:0b:c2:5d:17:ef:5c:24:87:2a: af:53:2a:14:f5:82:35:25:5a:b1:99:a6:10:b6:b1:a9:4e:ed: 77:db:8e:b8:5e:87:12:3f:a9:e7:fa:dd:bb:aa:13:7f:c1:f7: f4:66:84:17:58:b0:f4:c6:e6:04:f4:de:e1:d7:6b:3a:45:87: ce:4e:4e:c6:7b:4b:11:dc:d3:9e:0c:98:f8:02:80:23:a9:d7: 54:ec:2f:6d:2e:37:7d:2f:ec:f3:21:5e:ba:5d:bd:12:1d:f3: fd:ac:b1:99:85:ac:6f:af:61:d5:f8:04:d4:5c:d7:a9:6b:66: fa:aa:cc:81:80:20:7b:70:c5:cc:17:2d:75:ed:00:95:af:50: 84:f9:b3:a5:36:d2:c4:d2:9b:f5:a5:e2:f1:e3:50:d4:53:5a: e4:8c:d4:52:72:ca:a0:53:61:d4:f5:4d:0e:50:07:af:23:ae: a0:5c:48:d3:5b:b8:b4:0f:39:ab:79:74:77:c4:f0:de:ac:5c: 85:8a:97:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUxMjA1MDMwMzM0WhcNMjUxMjEyMDMwMzM0WjAYMRYwFAYD VQQDEw02OTMyNGI4Ny03MjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61vppxsAQg+uHoQfXert0Yr5uLrfuHOh0lJ//McJs0YsKjMgYL89zbwsnPZp MZnDCLyiFvVlSPpRtqnDWCitEpajnf36V69TtR//vMZXPl2Y0HUjGv/jVJgGAGIQ SwTDBDkoaAWS20RQlbbb8lFa6f3u2blThy32/XE6iAslT1ckd6sk2z3S67k5DYwH A9tFXFxSceTX2fFrwaQkrtpcQuLdSMYtdKY+3fqvCLEyLnrvre71e16oafymeGUe o+vSOTrcFBMMMCCBUPtpIcXNr4ZyzJi1zjWuwbO6cYGR1LwTcQVkOM209TYZ3zzm XoVzLGlpNdeumssBstXdcD+RIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEHHrJG kgDI/JKSIMvQMyjWC9KkMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdT3G1rSX/AORxJ6Oscon+T/oB5LrohbxQpCbS/Sdj3FXxGC+J5Bp7 /zzsBLzi+BfJy+joRLHKynJng+UKvNgLwl0X71wkhyqvUyoU9YI1JVqxmaYQtrGp Tu132464XocSP6nn+t27qhN/wff0ZoQXWLD0xuYE9N7h12s6RYfOTk7Ge0sR3NOe DJj4AoAjqddU7C9tLjd9L+zzIV66Xb0SHfP9rLGZhaxvr2HV+ATUXNepa2b6qsyB gCB7cMXMFy117QCVr1CE+bOlNtLE0pv1peLx41DUU1rkjNRScsqgU2HU9U0OUAev I66gXEjTW7i0DzmreXR3xPDerFyFipf3 -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:39 2025 by rpki-client