This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: apZj43XFSF6u7NeDBop4rTER8IRSCQ2dvDjNR69XTII= Subject key identifier: 00:8B:F4:AA:6E:D5:0F:13:77:AA:94:4D:9F:35:DE:80:92:D1:03:FE Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A36 Signing time: Thu 04 Dec 2025 19:02:34 +0000 Manifest this update: Thu 04 Dec 2025 19:02:33 +0000 Manifest next update: Thu 11 Dec 2025 19:02:33 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: /l91OhXNdF1+ts3+L3z/rrFwo4qBsHG/WvumOYjOtlw=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: ySqzG3zuhFyXYAB2Xvo/Kh6V5F+Kgf+Nm0xewmIwrC0=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: +4sh+kkJlvofIvhDoAc4FYEyHszuJnLGQWpeb3RoKWE=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: 2q8AYDfxOWLoT2+AfymL8bwLlmcQOfxdk8eBjQ1Y2sU=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: oieioWnzirmBWxUqlI6Ul54vXPOVVivDpWtM1tLxmFQ=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: s2nUxCRuLuGEazR6JBSUwlKRD9YIJ5lbB/8C9TPhUEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2661 (0xa65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Dec 4 19:02:33 2025 GMT Not After : Dec 11 19:02:33 2025 GMT Subject: CN=6931daca-060f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:b7:4b:16:ee:4c:e9:1b:28:1b:8b:c2:20: 6c:3e:b8:4c:01:00:cf:5e:eb:fe:1d:3c:67:5c:cc: 50:f6:6e:00:a3:12:92:8b:9f:6b:77:d6:f9:4c:22: 72:77:ef:29:52:1f:ac:92:22:3b:45:06:4e:06:4d: 1e:b1:e0:49:08:58:1c:d5:3a:06:7b:74:6b:7d:6c: ba:11:2f:84:b5:44:63:9b:ec:4e:84:2c:14:e7:d6: d6:aa:34:b1:f1:95:de:05:6a:c7:30:07:bd:42:5e: 1c:02:94:3a:64:95:25:bd:92:41:dd:0f:e7:77:4e: 1e:cd:57:11:23:79:8b:63:1a:1a:53:62:9d:b1:fe: 25:7e:13:88:1b:79:15:50:f7:60:10:95:e9:2e:86: a3:60:ea:8a:78:d8:be:a6:4d:50:39:b3:1b:78:2e: 99:a6:ff:61:73:99:57:0d:62:ef:d6:1a:b9:a1:46: ad:c7:83:22:3d:dc:d0:88:cc:0f:6c:70:e9:20:78: 96:b2:0c:6e:90:59:59:79:06:9a:ed:c1:5c:b4:34: 76:89:a8:36:26:70:6e:67:83:a2:a1:6e:f4:d1:a7: b5:a2:5c:e5:fc:bf:7d:87:75:d5:c0:2a:db:78:3c: 86:20:54:d5:9c:43:ca:9c:c2:9d:23:28:d6:75:62: 79:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8B:F4:AA:6E:D5:0F:13:77:AA:94:4D:9F:35:DE:80:92:D1:03:FE X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:dc:1d:8f:05:7a:33:9e:17:8a:af:b8:b9:4e:ce:85:9e:76: d4:63:c3:7d:0d:8b:69:58:1d:ea:e6:fa:76:25:62:cc:72:93: 73:b8:6e:e3:91:fe:cd:36:0e:30:61:5c:7b:23:dc:3a:e9:81: 3a:33:e2:72:59:84:15:f0:ff:c1:65:4a:12:c9:a0:31:3e:3e: bf:6e:f7:0a:4f:9d:9a:3b:16:61:37:73:66:20:6b:5f:ee:9d: 00:39:9d:7d:5c:1d:16:03:3c:31:8a:66:4e:01:98:67:70:26: 3e:cf:73:bb:11:2f:1a:5a:29:97:29:bf:77:9a:c3:55:88:b5: b2:52:20:00:95:ad:f1:70:49:d5:9f:ba:e0:54:ec:74:82:13: c8:e2:e3:db:60:77:3a:a2:df:b2:cb:da:91:90:7c:3e:e4:3d: 97:1c:3a:96:07:3c:43:6f:f5:44:c6:fa:4d:f5:a1:71:63:58: 75:66:7d:2e:e7:7f:d8:77:86:2f:16:e1:0f:40:6a:8c:f6:45: 5e:70:14:3e:6b:e0:59:75:87:47:fb:f1:40:04:2e:27:55:52: fa:bc:00:6d:a1:15:2b:bd:3c:64:e7:0f:2b:a5:73:67:5f:fa: 96:27:5f:1f:bb:6c:cc:67:ad:17:fc:c0:9e:c2:fe:cb:7b:85: f2:15:25:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMjA0MTkwMjMzWhcNMjUxMjExMTkwMjMzWjAYMRYwFAYD VQQDEw02OTMxZGFjYS0wNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPO3SxbuTOkbKBuLwiBsPrhMAQDPXuv+HTxnXMxQ9m4AoxKSi59rd9b5TCJy d+8pUh+skiI7RQZOBk0eseBJCFgc1ToGe3RrfWy6ES+EtURjm+xOhCwU59bWqjSx 8ZXeBWrHMAe9Ql4cApQ6ZJUlvZJB3Q/nd04ezVcRI3mLYxoaU2Kdsf4lfhOIG3kV UPdgEJXpLoajYOqKeNi+pk1QObMbeC6Zpv9hc5lXDWLv1hq5oUatx4MiPdzQiMwP bHDpIHiWsgxukFlZeQaa7cFctDR2iag2JnBuZ4OioW700ae1olzl/L99h3XVwCrb eDyGIFTVnEPKnMKdIyjWdWJ5yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACL9Kpu 1Q8Td6qUTZ813oCS0QP+MB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl3B2PBXoznheKr7i5Ts6FnnbUY8N9DYtpWB3q5vp2JWLMcpNzuG7j kf7NNg4wYVx7I9w66YE6M+JyWYQV8P/BZUoSyaAxPj6/bvcKT52aOxZhN3NmIGtf 7p0AOZ19XB0WAzwximZOAZhncCY+z3O7ES8aWimXKb93msNViLWyUiAAla3xcEnV n7rgVOx0ghPI4uPbYHc6ot+yy9qRkHw+5D2XHDqWBzxDb/VExvpN9aFxY1h1Zn0u 53/Yd4YvFuEPQGqM9kVecBQ+a+BZdYdH+/FABC4nVVL6vABtoRUrvTxk5w8rpXNn X/qWJ18fu2zMZ60X/MCewv7Le4XyFSU7 -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:59 2025 by rpki-client