This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: L32sgwBPkUOaVQQT4JHgWn/ym4o10eW0nQD+VmJVY28= Subject key identifier: 69:68:66:7D:5B:81:A8:F5:03:CB:6B:D6:A3:12:C2:E3:3D:2A:AC:D5 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 04BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 04B7 Signing time: Thu 04 Dec 2025 22:25:43 +0000 Manifest this update: Thu 04 Dec 2025 22:25:43 +0000 Manifest next update: Thu 11 Dec 2025 22:25:43 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: EPhpoCV0sfgjOqWVhgnrFgQC7ejvisBW2ipaRw7ZGc8=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1211 (0x4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Dec 4 22:25:43 2025 GMT Not After : Dec 11 22:25:43 2025 GMT Subject: CN=69320a67-4924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:73:c4:1c:4e:33:80:8f:28:af:9a:5d:29:77: 2a:48:cd:25:c4:39:7a:0b:5b:1d:3a:43:7f:5d:53: c4:55:e8:1d:6e:be:b8:95:43:2b:a4:b4:ad:1f:03: dd:a4:35:fa:21:28:1c:c7:e7:24:b6:27:89:7b:12: 24:de:d1:96:51:21:e6:a7:3a:90:30:11:5e:c5:b2: a7:d8:de:54:5b:86:4b:a7:e8:82:f0:7c:49:63:20: 0b:16:b1:12:53:c3:a1:3f:15:dd:0d:c3:d4:7e:05: bc:11:d0:c2:50:22:08:85:cb:dd:36:7b:e7:da:13: ea:72:b9:58:0b:dc:5b:ca:cc:37:76:e8:30:c7:2b: 40:e6:74:60:24:45:ba:ec:96:fb:97:42:c6:2a:8a: 24:af:60:71:e5:20:05:71:f7:3f:5c:6c:2e:82:50: ec:6e:93:71:86:8a:4b:78:ec:65:2a:c4:3a:e8:be: 8b:23:4e:87:10:74:f6:1f:9c:57:b4:82:2b:2b:cc: 61:b2:6a:90:c4:80:37:14:20:01:f8:08:62:eb:e6: ae:19:f9:dd:49:f8:cf:fd:2c:35:9d:33:a2:75:90: 71:b1:55:c8:85:8e:7e:e1:68:69:40:44:59:73:06: 05:ba:45:45:c2:7d:69:f2:16:94:09:19:08:0c:96: 69:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:68:66:7D:5B:81:A8:F5:03:CB:6B:D6:A3:12:C2:E3:3D:2A:AC:D5 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:9e:de:3b:3b:39:de:dc:07:da:fb:b6:ec:88:33:a7:c8:aa: 41:05:c6:4d:5a:29:bd:96:26:af:65:5a:a6:5c:df:74:d5:8d: 21:e2:24:04:2e:d6:77:d5:d7:4b:90:18:3c:7d:8b:f5:54:ab: bd:ac:4f:8e:55:ba:c8:5f:f6:9d:78:63:65:fa:0e:4b:a9:67: 58:4c:6c:ca:e5:10:eb:f7:72:f5:0b:4b:b1:80:0e:49:88:f3: 5d:24:50:f1:b9:c1:5c:6e:7b:33:f8:13:07:99:c5:cf:b9:a3: c4:63:a0:92:45:27:43:30:23:8c:f2:a5:c5:21:3b:24:67:3b: fd:33:bf:72:a7:dc:f7:69:ca:e6:28:05:5b:db:b6:64:44:86: 17:1c:33:10:9d:e6:65:b6:7d:4d:46:f9:28:f9:58:55:0e:7f: 22:42:2a:90:a3:79:08:e9:30:39:fd:c7:d3:39:50:54:76:aa: 84:c2:f9:61:dd:46:32:0e:b4:91:9f:eb:b4:bf:1f:c9:e7:02: 84:69:12:0c:c4:58:ce:bd:d6:01:8a:7e:7b:80:71:4d:a4:8d: c0:99:30:75:08:5d:83:0f:d3:52:f2:c9:56:de:1a:de:80:b8: 03:eb:0b:c5:df:fa:ed:ba:8b:59:12:b4:e0:69:6e:d2:a4:0b: e5:0d:11:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUxMjA0MjIyNTQzWhcNMjUxMjExMjIyNTQzWjAYMRYwFAYD VQQDEw02OTMyMGE2Ny00OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXPEHE4zgI8or5pdKXcqSM0lxDl6C1sdOkN/XVPEVegdbr64lUMrpLStHwPd pDX6ISgcx+cktieJexIk3tGWUSHmpzqQMBFexbKn2N5UW4ZLp+iC8HxJYyALFrES U8OhPxXdDcPUfgW8EdDCUCIIhcvdNnvn2hPqcrlYC9xbysw3dugwxytA5nRgJEW6 7Jb7l0LGKookr2Bx5SAFcfc/XGwuglDsbpNxhopLeOxlKsQ66L6LI06HEHT2H5xX tIIrK8xhsmqQxIA3FCAB+Ahi6+auGfndSfjP/Sw1nTOidZBxsVXIhY5+4WhpQERZ cwYFukVFwn1p8haUCRkIDJZpsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGloZn1b gaj1A8tr1qMSwuM9KqzVMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANnt47Ozne3Afa+7bsiDOnyKpBBcZNWim9liavZVqmXN901Y0h4iQE LtZ31ddLkBg8fYv1VKu9rE+OVbrIX/adeGNl+g5LqWdYTGzK5RDr93L1C0uxgA5J iPNdJFDxucFcbnsz+BMHmcXPuaPEY6CSRSdDMCOM8qXFITskZzv9M79yp9z3acrm KAVb27ZkRIYXHDMQneZltn1NRvko+VhVDn8iQiqQo3kI6TA5/cfTOVBUdqqEwvlh 3UYyDrSRn+u0vx/J5wKEaRIMxFjOvdYBin57gHFNpI3AmTB1CF2DD9NS8slW3hre gLgD6wvF3/rtuotZErTgaW7SpAvlDRHh -----END CERTIFICATE-----Generated at Sat Dec 6 17:21:04 2025 by rpki-client