This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: rP3QCj5wXQKgunsPlIW8zAXfQrC5DgSrLWeY2UeB7VU= Subject key identifier: 04:67:8F:C6:63:18:8A:69:1B:9B:14:C8:9E:44:F1:44:B4:8C:1F:CC Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 021D Signing time: Sun 07 Dec 2025 00:40:49 +0000 Manifest this update: Sun 07 Dec 2025 00:40:48 +0000 Manifest next update: Sun 14 Dec 2025 00:40:48 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: Mu82MfJw9pqeAxdCub8fmVbWoAjBgxfXH6E/sTxxq3k=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: CAQTwJ95TZU81HKb4Y7lVQbfnRcyYnVzCOwyM749MwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Dec 7 00:40:48 2025 GMT Not After : Dec 14 00:40:48 2025 GMT Subject: CN=6934cd11-caa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:3f:6f:72:53:45:2c:f1:36:94:66:89:b9: 53:9d:f8:a7:ac:ad:a1:59:9d:17:a6:96:df:3b:90: de:63:b4:81:45:b7:6c:88:d1:f1:66:23:e7:e9:57: 91:10:fe:f1:a6:8f:de:7c:ce:4c:db:7e:7e:0a:df: 80:03:2c:99:29:99:0e:a3:65:74:77:84:5b:a3:92: 7b:de:74:58:d3:9a:0a:e1:f0:1e:b1:3b:f9:33:d2: 7e:b4:c3:85:dd:ac:47:69:9b:13:20:a6:e1:45:07: 94:df:81:40:22:d0:1c:24:f5:a1:19:20:11:16:0a: 79:02:ad:52:6d:89:4e:d8:0c:90:3f:a2:3f:2d:ce: 9f:b5:fb:77:6b:e8:b7:56:3e:b0:ed:67:37:9c:ec: e5:ba:62:ad:19:75:bb:c5:c5:d4:d5:ac:e8:c1:13: 46:ab:0a:f0:6c:35:96:dd:3a:39:24:dd:6a:f1:6a: 6f:d5:3b:b6:56:8d:6d:b1:fc:83:e2:17:d6:62:e8: f9:1c:79:f3:bd:83:a5:2b:5e:68:d4:22:f9:a4:d7: fc:6b:af:df:22:41:62:3c:14:bb:83:44:45:67:9f: 4e:5f:21:90:a5:82:f4:f8:4c:6f:cc:d3:19:d8:95: 23:ec:e3:28:1c:a0:3a:21:f0:43:d9:d4:1c:7d:63: 76:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:67:8F:C6:63:18:8A:69:1B:9B:14:C8:9E:44:F1:44:B4:8C:1F:CC X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:4a:6b:1b:d8:0a:0c:ad:21:d5:04:e6:6d:d2:62:5e:dd:c2: 6f:a7:58:28:2a:48:a1:a1:6d:07:56:88:85:9d:9e:e2:7d:96: 6e:32:af:70:0c:74:78:f8:7b:47:4f:47:bf:de:2a:f6:ee:0f: 24:a6:b1:7d:bd:e4:e3:ad:54:f2:d3:8c:ef:4a:1f:61:68:1a: 85:94:df:be:a2:a3:0a:b5:85:8f:52:cc:23:61:38:8a:48:4a: 8a:29:9c:2a:c9:aa:77:9b:74:c0:18:e0:2e:e7:be:e6:66:63: 06:c1:99:94:41:72:59:fe:fe:bc:ce:b3:20:e4:e1:36:9b:c0: db:7e:88:47:4e:83:b7:ea:1e:ff:32:b2:09:47:eb:7f:93:2e: a2:ed:c9:ae:e5:76:bf:23:d7:99:56:e0:c0:90:39:90:df:3e: bd:dd:7d:e7:c1:30:fe:ae:bd:53:ae:bf:ca:1e:de:69:8c:87: 0e:ca:6e:86:95:49:7f:bc:b3:62:c5:a2:cb:ca:5a:49:06:7e: c8:4f:ea:90:ce:80:c2:ca:e2:d7:8d:fc:bf:9e:66:62:05:ec: 07:1e:03:74:1f:20:dd:02:20:49:25:53:fa:77:41:9c:b9:84: fa:9e:01:dc:29:49:76:4e:35:4b:4e:99:e9:11:b3:74:c0:49: cd:89:09:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjUxMjA3MDA0MDQ4WhcNMjUxMjE0MDA0MDQ4WjAYMRYwFAYD VQQDEw02OTM0Y2QxMS1jYWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxck/b3JTRSzxNpRmiblTnfinrK2hWZ0XppbfO5DeY7SBRbdsiNHxZiPn6VeR EP7xpo/efM5M235+Ct+AAyyZKZkOo2V0d4Rbo5J73nRY05oK4fAesTv5M9J+tMOF 3axHaZsTIKbhRQeU34FAItAcJPWhGSARFgp5Aq1SbYlO2AyQP6I/Lc6ftft3a+i3 Vj6w7Wc3nOzlumKtGXW7xcXU1azowRNGqwrwbDWW3To5JN1q8Wpv1Tu2Vo1tsfyD 4hfWYuj5HHnzvYOlK15o1CL5pNf8a6/fIkFiPBS7g0RFZ59OXyGQpYL0+ExvzNMZ 2JUj7OMoHKA6IfBD2dQcfWN2OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARnj8Zj GIppG5sUyJ5E8US0jB/MMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZSmsb2AoMrSHVBOZt0mJe3cJvp1goKkihoW0HVoiFnZ7ifZZuMq9w DHR4+HtHT0e/3ir27g8kprF9veTjrVTy04zvSh9haBqFlN++oqMKtYWPUswjYTiK SEqKKZwqyap3m3TAGOAu577mZmMGwZmUQXJZ/v68zrMg5OE2m8DbfohHToO36h7/ MrIJR+t/ky6i7cmu5Xa/I9eZVuDAkDmQ3z693X3nwTD+rr1Trr/KHt5pjIcOym6G lUl/vLNixaLLylpJBn7IT+qQzoDCyuLXjfy/nmZiBewHHgN0HyDdAiBJJVP6d0Gc uYT6ngHcKUl2TjVLTpnpEbN0wEnNiQkb -----END CERTIFICATE-----Generated at Sun Dec 7 06:52:57 2025 by rpki-client