This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: fAHlq6H4Dg9ZmWfuDKrJa6a+YwWviDvL9B0h1K3zgoM= Subject key identifier: 2E:16:1D:69:90:2D:BA:4C:CC:1A:35:85:21:47:46:60:29:22:64:67 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0CE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0CCA Signing time: Sat 06 Dec 2025 17:38:37 +0000 Manifest this update: Sat 06 Dec 2025 17:38:37 +0000 Manifest next update: Sat 13 Dec 2025 17:38:37 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: ELF7siSU+IzF0zn2o57p5/5JfluOtpAvdrGEfuKp4YA=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Ns3EqlAuypXsdC/A5rNqIcQNoK/ntkU/96rQkctaiRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Dec 6 17:38:37 2025 GMT Not After : Dec 13 17:38:37 2025 GMT Subject: CN=69346a1d-12d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:09:bf:f4:e4:bc:1b:bf:d2:5a:79:e6:e9: 39:08:8a:56:d1:cc:93:25:8d:fb:cc:3e:58:f0:7b: b7:93:c2:01:7d:db:17:19:3c:08:fd:47:5e:89:11: 31:40:41:a7:2e:23:d6:b5:32:f3:c6:a6:24:c6:27: 01:89:32:6f:9d:c0:80:17:fa:3d:65:a2:0a:67:54: 56:7c:68:25:52:c3:42:ad:7b:8c:97:d4:c7:b3:8a: fd:2a:a0:54:59:e5:d0:18:f9:a4:9b:4d:69:7a:08: 35:05:26:d7:94:12:bd:51:8d:df:6d:2d:e4:ab:2c: 54:17:12:8c:bb:8e:6f:bc:48:fb:63:ba:da:e5:03: 4d:ff:fc:9c:b9:4e:11:53:c1:5d:05:98:a8:22:82: 29:55:44:c8:d2:9d:11:29:e1:91:3d:4f:16:71:24: 6f:a3:5b:d6:45:bd:23:d2:4c:86:4c:43:61:47:1f: a9:a1:fa:db:71:53:27:ab:13:78:46:ee:19:58:9d: 72:43:c8:c9:9e:61:6a:31:a2:e6:b4:6e:d6:43:0e: fd:44:bb:e9:70:10:b0:aa:ae:21:22:87:93:0f:59: 7f:08:2f:ef:b2:e3:d9:5c:bd:54:6a:54:c9:fe:f4: 54:61:25:a0:73:fd:c7:bc:cd:e4:38:ba:68:c4:0f: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:16:1D:69:90:2D:BA:4C:CC:1A:35:85:21:47:46:60:29:22:64:67 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:bc:73:83:5e:a5:d9:ea:61:c8:b5:e6:d8:74:26:ea:01:53: a9:71:ef:d7:2b:53:d7:8f:95:55:11:56:c0:24:d3:3f:be:fb: c7:88:df:25:17:d2:93:a7:89:64:ed:4c:6d:da:96:56:5f:7d: ce:71:33:64:ef:8b:c5:83:f4:c9:35:06:24:44:48:09:05:e6: c0:41:40:45:4e:96:67:e7:c2:47:5e:d9:ca:55:1b:46:a5:4f: 13:a6:7b:2f:71:18:0b:81:87:6e:6f:8e:5d:63:fa:fd:1a:13: cf:0a:93:6b:44:36:fb:75:d0:ba:60:f1:5a:bd:ed:2e:1a:57: 95:95:be:2a:c7:3a:be:51:8b:35:ca:ae:5c:3d:43:ad:11:2d: be:76:de:60:03:fa:2d:48:1d:13:5b:23:2a:2f:f8:77:2d:29: 62:17:d5:e7:e5:7b:95:f1:0e:12:7e:97:1d:31:e7:b8:d5:ec: 09:25:dc:48:ee:33:50:80:4a:cf:e8:85:3c:8b:65:64:37:6f: 48:e6:2b:1b:fe:85:bf:cf:71:86:35:1d:66:3d:6c:94:2a:55: 27:e8:49:42:f2:11:3c:63:e5:3e:74:e7:9e:04:96:c0:1f:f4: e5:3c:33:63:48:2e:d1:65:41:af:23:3e:c5:bd:dc:a2:b4:5b: 67:45:aa:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUxMjA2MTczODM3WhcNMjUxMjEzMTczODM3WjAYMRYwFAYD VQQDEw02OTM0NmExZC0xMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugIJv/TkvBu/0lp55uk5CIpW0cyTJY37zD5Y8Hu3k8IBfdsXGTwI/UdeiREx QEGnLiPWtTLzxqYkxicBiTJvncCAF/o9ZaIKZ1RWfGglUsNCrXuMl9THs4r9KqBU WeXQGPmkm01pegg1BSbXlBK9UY3fbS3kqyxUFxKMu45vvEj7Y7ra5QNN//ycuU4R U8FdBZioIoIpVUTI0p0RKeGRPU8WcSRvo1vWRb0j0kyGTENhRx+pofrbcVMnqxN4 Ru4ZWJ1yQ8jJnmFqMaLmtG7WQw79RLvpcBCwqq4hIoeTD1l/CC/vsuPZXL1UalTJ /vRUYSWgc/3HvM3kOLpoxA9BJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4WHWmQ LbpMzBo1hSFHRmApImRnMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3vHODXqXZ6mHItebYdCbqAVOpce/XK1PXj5VVEVbAJNM/vvvHiN8l F9KTp4lk7Uxt2pZWX33OcTNk74vFg/TJNQYkREgJBebAQUBFTpZn58JHXtnKVRtG pU8TpnsvcRgLgYdub45dY/r9GhPPCpNrRDb7ddC6YPFave0uGleVlb4qxzq+UYs1 yq5cPUOtES2+dt5gA/otSB0TWyMqL/h3LSliF9Xn5XuV8Q4SfpcdMee41ewJJdxI 7jNQgErP6IU8i2VkN29I5isb/oW/z3GGNR1mPWyUKlUn6ElC8hE8Y+U+dOeeBJbA H/TlPDNjSC7RZUGvIz7FvdyitFtnRarC -----END CERTIFICATE-----Generated at Sun Dec 7 00:05:26 2025 by rpki-client