This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: Y9lGZX44vfGx6oYy9pDvG/Vp06iQLOAbyQHgiCve0a0= Subject key identifier: 76:1B:1C:8C:37:FE:00:18:8B:D2:F6:52:86:99:7C:AA:4E:63:B4:8E Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BE7 Signing time: Sat 06 Dec 2025 15:20:04 +0000 Manifest this update: Sat 06 Dec 2025 15:20:04 +0000 Manifest next update: Sat 13 Dec 2025 15:20:04 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: 7ARAywzXhtz4zK1vOF8CE/oaKVJlhs8npB2aB+aNttE=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11408 (0x2c90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Dec 6 15:20:04 2025 GMT Not After : Dec 13 15:20:04 2025 GMT Subject: CN=693449a4-5b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:b9:86:a5:14:cd:c4:62:ee:5f:f5:7a:01: 33:96:1c:b2:2c:d3:24:26:82:1c:7c:65:b5:2c:f8: 03:87:7c:e3:f6:80:82:17:0f:3f:58:de:db:e3:ce: 09:c7:7e:16:e0:44:2a:0f:ba:f7:4e:ac:ab:c7:ea: 78:c2:24:e2:67:ec:53:61:06:32:6b:fb:30:42:0e: 1c:22:d2:0b:01:c0:51:f6:7f:c8:9d:43:df:bf:ab: 2b:1c:b5:d8:7c:56:bf:b7:68:86:7f:c2:02:a5:8f: d3:b1:7e:43:ef:4b:b9:c3:8b:ba:67:97:79:15:ee: 8f:04:b5:44:a1:f7:ef:6d:67:e4:91:05:35:76:98: 2b:15:8c:46:66:27:9a:32:77:1e:cb:0a:92:42:9f: 14:0b:2d:32:28:78:64:28:b0:a0:95:ad:5f:0b:b9: c4:9b:4f:30:d2:11:b1:68:58:cd:b5:bd:3a:c0:29: 3d:33:88:8a:7e:24:ea:d4:18:5e:91:ba:ca:3c:21: e4:4d:cf:c8:7a:61:21:52:c9:0f:00:db:d6:c5:42: 96:ed:04:ca:f9:06:28:b4:9b:27:4c:61:d0:e0:e8: d7:cf:8d:4e:c4:8d:b7:e8:75:0e:cf:64:7a:9b:4a: 1c:1d:3e:7f:d9:db:fd:b4:c7:c9:15:d0:12:0c:69: 78:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1B:1C:8C:37:FE:00:18:8B:D2:F6:52:86:99:7C:AA:4E:63:B4:8E X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:d5:ef:e9:67:58:e5:09:56:58:63:a8:fb:be:fa:90:ab:58: d8:65:dd:fb:c7:6f:0d:c5:ff:87:68:c9:1f:14:09:a7:1e:75: 06:c8:92:96:1e:27:75:6d:85:77:6f:6b:ae:21:0c:18:3d:72: c3:ec:e7:f7:85:26:65:0e:86:7b:a4:b2:29:08:89:74:4c:fe: 51:34:04:08:2d:76:a2:46:b6:71:bc:0c:6c:9d:12:70:b4:a9: 53:7a:de:ca:b2:40:78:f5:76:da:ac:b6:c6:cc:a0:48:0f:f5: 7c:18:8a:21:14:83:dd:07:5b:d9:c1:ff:d0:06:44:87:13:53: a5:ab:89:f0:61:94:aa:d9:9d:38:66:99:9f:33:e9:e2:63:85: 66:cf:e9:05:7b:c2:3d:c3:52:0b:7b:fc:d0:7b:bb:ca:ec:7f: 3a:8b:94:cd:92:e7:84:49:c3:cd:29:14:d1:46:27:63:8d:91: e4:b4:bc:46:2c:41:8a:92:fe:c5:54:9b:18:6d:25:7e:36:7e: 7d:fa:23:8b:84:73:a9:f3:9c:c7:3e:b4:3e:cd:9e:f5:38:cf: 22:75:a6:dd:fd:b1:35:79:e7:bc:49:85:f0:e4:3a:85:1b:bc: 56:68:1b:89:85:68:96:12:63:b4:2c:c9:3c:d4:a9:76:fa:4f: 86:97:6c:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUxMjA2MTUyMDA0WhcNMjUxMjEzMTUyMDA0WjAYMRYwFAYD VQQDEw02OTM0NDlhNC01YjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoG5hqUUzcRi7l/1egEzlhyyLNMkJoIcfGW1LPgDh3zj9oCCFw8/WN7b484J x34W4EQqD7r3Tqyrx+p4wiTiZ+xTYQYya/swQg4cItILAcBR9n/InUPfv6srHLXY fFa/t2iGf8ICpY/TsX5D70u5w4u6Z5d5Fe6PBLVEoffvbWfkkQU1dpgrFYxGZiea MnceywqSQp8UCy0yKHhkKLCgla1fC7nEm08w0hGxaFjNtb06wCk9M4iKfiTq1Bhe kbrKPCHkTc/IemEhUskPANvWxUKW7QTK+QYotJsnTGHQ4OjXz41OxI236HUOz2R6 m0ocHT5/2dv9tMfJFdASDGl4AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYbHIw3 /gAYi9L2UoaZfKpOY7SOMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB1e/pZ1jlCVZYY6j7vvqQq1jYZd37x28Nxf+HaMkfFAmnHnUGyJKW Hid1bYV3b2uuIQwYPXLD7Of3hSZlDoZ7pLIpCIl0TP5RNAQILXaiRrZxvAxsnRJw tKlTet7KskB49XbarLbGzKBID/V8GIohFIPdB1vZwf/QBkSHE1Olq4nwYZSq2Z04 ZpmfM+niY4Vmz+kFe8I9w1ILe/zQe7vK7H86i5TNkueEScPNKRTRRidjjZHktLxG LEGKkv7FVJsYbSV+Nn59+iOLhHOp85zHPrQ+zZ71OM8idabd/bE1eee8SYXw5DqF G7xWaBuJhWiWEmO0LMk81Kl2+k+Gl2yZ -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:58 2025 by rpki-client