This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: c9WmsWpvtcaA/TmHSFlf3pNO8ONv3F0lQY9+hwPKsCo= Subject key identifier: 23:15:8B:4D:39:28:EC:87:F2:8B:FA:69:60:10:EF:64:00:A9:99:37 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A37 Signing time: Sat 06 Dec 2025 18:59:35 +0000 Manifest this update: Sat 06 Dec 2025 18:59:35 +0000 Manifest next update: Sat 13 Dec 2025 18:59:35 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: gNLC3nGs+ebCzyQ1h1Ysm2vsapguIdyl+2yNo52rGVk=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: ySqzG3zuhFyXYAB2Xvo/Kh6V5F+Kgf+Nm0xewmIwrC0=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: +4sh+kkJlvofIvhDoAc4FYEyHszuJnLGQWpeb3RoKWE=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: 2q8AYDfxOWLoT2+AfymL8bwLlmcQOfxdk8eBjQ1Y2sU=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: oieioWnzirmBWxUqlI6Ul54vXPOVVivDpWtM1tLxmFQ=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: s2nUxCRuLuGEazR6JBSUwlKRD9YIJ5lbB/8C9TPhUEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Dec 6 18:59:35 2025 GMT Not After : Dec 13 18:59:35 2025 GMT Subject: CN=69347d17-66a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e3:5c:82:aa:c7:d1:2e:ab:01:9e:ce:ca:91: a0:eb:86:bd:5b:0d:70:e4:5a:4b:21:c9:d4:ab:d6: e9:cc:85:d0:d8:77:8c:1a:79:49:bb:bf:9f:5d:49: 37:cd:0c:63:b0:fb:69:72:b6:51:bf:fa:69:bd:f2: b8:b7:63:5f:c3:36:12:44:b2:2d:2e:8b:bd:7c:8f: 56:b2:2f:31:b5:99:b5:b0:19:de:32:53:42:8d:72: 00:c4:1d:4d:60:4b:37:2e:11:9a:af:c8:3d:8a:5e: aa:a9:8d:f8:4d:2b:dd:59:6a:32:8b:c6:24:ab:c1: 73:f6:7e:b0:89:f5:f2:81:f4:0e:4c:3f:b6:6c:59: 88:7a:0a:20:8e:46:c5:f6:bf:0d:ad:2d:63:1a:01: f2:28:74:63:4c:7c:9b:bb:35:7b:ba:6e:ed:9c:56: 3d:92:c6:25:be:d2:0c:80:db:ed:53:9c:39:71:71: 8f:5b:bf:1f:3b:6e:1d:1d:b8:8a:f4:da:98:e7:1a: e2:ff:05:62:44:d7:5f:29:d8:31:f1:da:c6:29:9f: 02:57:7c:87:56:1b:5d:01:47:ce:54:d7:97:59:9e: eb:c6:40:a9:d6:f4:bc:16:d1:a3:95:f6:25:cf:9e: 02:0f:5c:26:21:22:50:ed:ab:e2:d0:ac:f1:92:9b: 03:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:15:8B:4D:39:28:EC:87:F2:8B:FA:69:60:10:EF:64:00:A9:99:37 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:75:b8:15:a4:c7:26:73:d8:53:78:b5:26:f1:34:2e:23:9a: 9c:38:89:f3:16:62:cb:a3:0b:8f:ee:8b:d3:29:88:6e:e1:b5: 94:1b:4f:69:1d:27:a2:0a:33:dc:46:c3:5b:6b:9e:72:e1:81: 91:9a:3e:fb:54:49:bb:b7:51:31:d9:53:52:47:5c:48:36:46: 16:08:20:e8:0c:e5:f2:21:24:84:fb:87:d7:fc:fc:c9:1d:52: 9b:f3:0d:ee:5c:4b:d4:20:fd:f4:51:40:ec:06:2b:f8:f4:bf: b1:0a:7d:b7:6c:2e:df:0d:53:fe:ee:60:f4:07:08:fd:42:03: 73:0e:92:b9:fe:d7:bc:b7:24:95:e1:15:78:e7:c8:36:33:ea: 17:2d:de:d4:71:00:3b:cd:31:d8:15:5c:70:81:e1:5b:a7:b6: 9a:04:bd:65:62:2f:88:9c:77:18:ee:b7:32:36:ef:a5:e7:c7: 59:0a:3f:6d:d8:77:56:e9:51:c4:b6:3a:52:c3:44:2f:3c:cd: 3b:07:e6:eb:c1:21:d6:a6:31:83:39:2c:ea:38:c3:47:f2:e5: 53:32:96:9d:a3:fa:49:07:35:b2:0f:1a:0d:fb:9f:cb:b5:52: cd:23:95:c1:38:06:54:22:ed:ea:99:7a:b2:53:50:d9:8a:68: ac:33:d0:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMjA2MTg1OTM1WhcNMjUxMjEzMTg1OTM1WjAYMRYwFAYD VQQDEw02OTM0N2QxNy02NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+NcgqrH0S6rAZ7OypGg64a9Ww1w5FpLIcnUq9bpzIXQ2HeMGnlJu7+fXUk3 zQxjsPtpcrZRv/ppvfK4t2NfwzYSRLItLou9fI9Wsi8xtZm1sBneMlNCjXIAxB1N YEs3LhGar8g9il6qqY34TSvdWWoyi8Ykq8Fz9n6wifXygfQOTD+2bFmIegogjkbF 9r8NrS1jGgHyKHRjTHybuzV7um7tnFY9ksYlvtIMgNvtU5w5cXGPW78fO24dHbiK 9NqY5xri/wViRNdfKdgx8drGKZ8CV3yHVhtdAUfOVNeXWZ7rxkCp1vS8FtGjlfYl z54CD1wmISJQ7avi0KzxkpsDgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMVi005 KOyH8ov6aWAQ72QAqZk3MB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAndbgVpMcmc9hTeLUm8TQuI5qcOInzFmLLowuP7ovTKYhu4bWUG09p HSeiCjPcRsNba55y4YGRmj77VEm7t1Ex2VNSR1xINkYWCCDoDOXyISSE+4fX/PzJ HVKb8w3uXEvUIP30UUDsBiv49L+xCn23bC7fDVP+7mD0Bwj9QgNzDpK5/te8tySV 4RV458g2M+oXLd7UcQA7zTHYFVxwgeFbp7aaBL1lYi+InHcY7rcyNu+l58dZCj9t 2HdW6VHEtjpSw0QvPM07B+brwSHWpjGDOSzqOMNH8uVTMpado/pJBzWyDxoN+5/L tVLNI5XBOAZUIu3qmXqyU1DZimisM9DN -----END CERTIFICATE-----Generated at Sun Dec 7 01:37:11 2025 by rpki-client