This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: Bah9hUPKLltYMSZYxgupZIZu6VFMG7ZF/SsX9kt00GQ= Subject key identifier: FF:90:DF:1D:FE:DD:FB:3D:8F:99:DF:B7:2A:64:EE:2A:14:CA:25:5E Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 0166 Signing time: Fri 05 Dec 2025 02:09:15 +0000 Manifest this update: Fri 05 Dec 2025 02:09:15 +0000 Manifest next update: Fri 12 Dec 2025 02:09:15 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: iTravMB4O4acD4r1ax9bC1snV0sLRYsxRol0Zjm1kTM=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Dec 5 02:09:15 2025 GMT Not After : Dec 12 02:09:15 2025 GMT Subject: CN=69323ecb-9d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:01:53:b2:55:52:d0:be:b8:1f:7a:8d:4e:a3: f2:db:b4:82:d6:0e:bc:e5:cc:09:b2:ec:ec:01:ab: c9:c2:a7:fe:95:fd:a7:dc:bf:21:a0:e5:df:0d:30: 18:ec:f9:ad:55:79:5a:c8:dd:18:1d:8f:eb:1b:7b: 35:9a:03:3a:af:7d:e4:e3:a5:c9:7b:d9:bb:26:45: 77:2e:b2:c3:84:12:a7:75:d7:de:c7:78:1e:27:e1: 56:52:0b:19:15:98:04:54:04:1f:26:a4:ab:18:bd: a3:62:72:04:42:a2:ed:2a:34:e8:b2:1f:28:9b:f0: 74:eb:07:f7:a5:c4:08:d1:f6:19:3f:6a:37:66:30: 27:9a:53:c1:5f:fa:1e:2b:3a:b5:26:f7:98:e9:ee: cd:db:d0:39:43:b6:78:45:25:b6:e4:37:e6:62:bb: 10:50:dc:fb:0e:9a:b2:18:2c:29:a0:b4:7e:de:16: 8e:9d:69:bb:7d:89:71:da:e7:a4:d6:63:88:5f:a8: c4:13:4b:33:5b:1d:a0:31:8d:3f:4d:1e:e7:a7:98: e1:8c:4b:8b:51:5a:f4:8a:10:49:6f:20:e9:b3:7d: 68:14:6b:70:69:1f:69:9e:06:45:91:01:d7:7f:55: 30:77:a5:5d:a4:61:88:02:6a:b7:49:98:60:cd:0f: 00:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:90:DF:1D:FE:DD:FB:3D:8F:99:DF:B7:2A:64:EE:2A:14:CA:25:5E X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:82:eb:b2:b0:21:40:cb:da:95:b7:67:08:ff:d7:da:f1:5a: 9c:3d:d7:18:e3:2a:f7:dc:30:7b:a5:3b:33:ea:f5:b6:01:96: 20:cc:03:f2:4c:14:50:24:89:98:d0:be:f2:0d:51:1f:81:98: 90:c2:61:7f:0d:95:80:24:3c:c1:af:c0:8e:f1:29:06:63:65: a2:83:e4:6e:6e:fb:0e:d3:6c:4b:14:da:86:73:c6:2a:db:80: c9:ce:c4:a3:31:38:35:5c:8c:eb:ee:ea:6b:e0:0e:7e:be:3f: ae:a4:46:06:eb:4e:68:88:50:5b:46:a7:e3:0e:28:6f:2a:77: 8b:ab:6d:7f:10:1e:04:1d:86:20:8c:67:41:60:a8:68:2d:65: 8e:cd:fe:d0:2f:35:9d:49:d5:17:ff:46:be:f9:24:34:d3:0a: 14:84:63:87:3c:1c:dc:1f:51:7c:e8:28:d3:a7:6e:69:ea:50: ce:51:bb:46:84:83:ce:36:44:ec:54:15:80:28:70:f7:99:fe: a7:7a:8e:2f:95:fd:57:e7:48:35:9d:86:dc:12:c4:0e:cd:dc: 09:ae:03:43:db:cd:10:3a:82:91:02:49:48:88:fb:51:6a:0b: 8e:da:75:e5:ee:8b:7f:c2:d3:26:ed:18:51:5d:26:fb:fa:7e: 63:f4:96:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUxMjA1MDIwOTE1WhcNMjUxMjEyMDIwOTE1WjAYMRYwFAYD VQQDEw02OTMyM2VjYi05ZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AFTslVS0L64H3qNTqPy27SC1g685cwJsuzsAavJwqf+lf2n3L8hoOXfDTAY 7PmtVXlayN0YHY/rG3s1mgM6r33k46XJe9m7JkV3LrLDhBKnddfex3geJ+FWUgsZ FZgEVAQfJqSrGL2jYnIEQqLtKjTosh8om/B06wf3pcQI0fYZP2o3ZjAnmlPBX/oe Kzq1JveY6e7N29A5Q7Z4RSW25DfmYrsQUNz7DpqyGCwpoLR+3haOnWm7fYlx2uek 1mOIX6jEE0szWx2gMY0/TR7np5jhjEuLUVr0ihBJbyDps31oFGtwaR9pngZFkQHX f1Uwd6VdpGGIAmq3SZhgzQ8AOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+Q3x3+ 3fs9j5nftypk7ioUyiVeMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPguuysCFAy9qVt2cI/9fa8VqcPdcY4yr33DB7pTsz6vW2AZYgzAPy TBRQJImY0L7yDVEfgZiQwmF/DZWAJDzBr8CO8SkGY2Wig+RubvsO02xLFNqGc8Yq 24DJzsSjMTg1XIzr7upr4A5+vj+upEYG605oiFBbRqfjDihvKneLq21/EB4EHYYg jGdBYKhoLWWOzf7QLzWdSdUX/0a++SQ00woUhGOHPBzcH1F86CjTp25p6lDOUbtG hIPONkTsVBWAKHD3mf6neo4vlf1X50g1nYbcEsQOzdwJrgND280QOoKRAklIiPtR aguO2nXl7ot/wtMm7RhRXSb7+n5j9JYd -----END CERTIFICATE-----Generated at Sat Dec 6 15:30:56 2025 by rpki-client