This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft File: tgQSzpgJwQxn3eq7oOM1462k_hA.mft (raw, json) Hash identifier: DhkIncYf4jPtMffLUplZglhhIdp5GxH++RK/i3PdW8U= Subject key identifier: 5A:97:1D:27:CD:24:69:CA:49:B4:4D:99:93:A6:2C:13:3A:B0:95:D9 Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft Manifest number: 018D Signing time: Fri 05 Dec 2025 01:45:08 +0000 Manifest this update: Fri 05 Dec 2025 01:45:08 +0000 Manifest next update: Fri 12 Dec 2025 01:45:08 +0000 Files and hashes: 1: tgQSzpgJwQxn3eq7oOM1462k_hA.crl (hash: YhA9x2wGzzNC6JFf/Ewn9Ge6N4eTWkKuGWhUe5s8dfo=) 2: 3CED465E8E0811EE8450D961C4F9AE02.roa (hash: cZSiy4bCwDyhfeb/EZhFsCoqJYnevtXYXbg2+tmKMXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306, serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: Dec 5 01:45:08 2025 GMT Not After : Dec 12 01:45:08 2025 GMT Subject: CN=69323924-de13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:e1:95:df:5d:88:a0:87:2b:50:96:df:58: e8:ec:dd:22:69:29:74:1c:90:4d:1a:64:93:dd:62: 6d:bf:15:c2:79:6a:73:1a:73:ab:dd:e6:4b:99:5f: 2b:a3:6e:28:34:c7:e8:a7:51:c9:12:1c:d1:a9:7c: b6:8b:38:4f:10:8a:05:a6:c3:ee:bc:d9:b9:26:e9: 8e:06:38:47:0d:89:c5:85:d4:b5:65:46:10:6e:e4: e0:63:e1:f8:6f:a7:65:66:ea:1d:91:a5:f6:91:7e: 56:4e:cd:b8:91:f7:ae:a3:fa:bc:d4:1f:86:fe:78: 3c:ff:05:cf:80:40:35:b6:12:7e:b8:77:e6:e6:83: 18:7a:87:3c:16:cf:9f:bd:2d:5b:81:9f:33:c6:16: 83:f8:49:30:87:7a:c6:6d:4b:f5:b2:64:27:9a:ce: 10:ee:f2:62:87:e4:da:e4:57:e2:79:c5:a9:a7:27: 88:eb:78:9c:3a:e8:be:6c:08:e6:0d:97:25:f8:2a: 1c:34:0d:a4:02:2b:d0:a5:92:28:ac:19:68:c0:3d: ec:df:63:ea:2a:b2:7c:e5:bd:ec:d7:83:ff:1e:15: 8b:3f:4e:10:37:d8:cc:81:17:3c:3e:95:b5:73:ae: 5c:ab:15:7a:d4:f7:44:4a:c7:e7:e4:7b:77:67:65: d3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:97:1D:27:CD:24:69:CA:49:B4:4D:99:93:A6:2C:13:3A:B0:95:D9 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:87:58:af:a2:47:55:0d:6d:46:1e:ef:92:22:9f:1b:e5:d3: 5a:c2:7c:35:70:fd:20:21:db:91:cb:5f:7a:66:1d:65:05:dc: f7:a8:ae:bc:6b:86:d8:60:02:23:99:f5:a1:02:32:3a:14:98: 49:f8:6e:7f:17:fe:da:86:e5:a0:4c:8c:79:eb:05:1f:0a:d7: 1b:2a:57:7a:9c:9f:13:8b:78:f3:f3:67:78:65:42:14:47:0c: e0:aa:33:2f:58:45:36:87:00:d5:35:89:d6:d9:60:d2:2a:ec: c8:47:0c:30:0f:e4:02:6d:ea:33:67:0a:64:9a:27:99:6e:d8: 7c:c3:b6:a5:fb:7a:3e:d8:c9:7a:af:95:c1:65:1f:c4:86:8c: 8f:37:40:22:c7:f8:bb:21:33:7a:e6:c7:55:b1:f4:15:dc:00: c5:94:a2:13:29:7c:31:ee:92:b5:46:8a:99:29:50:6b:3e:b9: 84:f3:0d:47:b5:f6:f0:9c:06:8a:7c:5b:2e:dc:5b:ca:05:b7: 0f:8e:a5:e7:56:be:c4:e7:da:1d:29:30:16:ab:95:0a:39:56: 65:21:e7:d4:14:bc:72:c5:37:6d:a9:fa:de:9a:8f:95:10:9e: a9:88:18:38:10:8f:56:d2:8d:d4:97:39:96:d9:b7:76:2d:4d: d1:28:77:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMDYxMTAvBgNVBAUTKEI2MDQxMkNFOTgwOUMxMEM2N0RERUFCQkEwRTMzNUUz QURBNEZFMTAwHhcNMjUxMjA1MDE0NTA4WhcNMjUxMjEyMDE0NTA4WjAYMRYwFAYD VQQDEw02OTMyMzkyNC1kZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPzhld9diKCHK1CW31jo7N0iaSl0HJBNGmST3WJtvxXCeWpzGnOr3eZLmV8r o24oNMfop1HJEhzRqXy2izhPEIoFpsPuvNm5JumOBjhHDYnFhdS1ZUYQbuTgY+H4 b6dlZuodkaX2kX5WTs24kfeuo/q81B+G/ng8/wXPgEA1thJ+uHfm5oMYeoc8Fs+f vS1bgZ8zxhaD+Ekwh3rGbUv1smQnms4Q7vJih+Ta5FfiecWppyeI63icOui+bAjm DZcl+CocNA2kAivQpZIorBlowD3s32PqKrJ85b3s14P/HhWLP04QN9jMgRc8PpW1 c65cqxV61PdESsfn5Ht3Z2XTawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqXHSfN JGnKSbRNmZOmLBM6sJXZMB8GA1UdIwQYMBaAFLYEEs6YCcEMZ93qu6DjNeOtpP4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMwNi8xNzE3OTIwRTcx NkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndReG4zZXE3b09NMTQ2Mmtf aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMwNi8xNzE3OTIwRTcxNkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndR eG4zZXE3b09NMTQ2MmtfaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdh1ivokdVDW1GHu+SIp8b5dNawnw1cP0gIduRy196Zh1lBdz3qK68 a4bYYAIjmfWhAjI6FJhJ+G5/F/7ahuWgTIx56wUfCtcbKld6nJ8Ti3jz82d4ZUIU RwzgqjMvWEU2hwDVNYnW2WDSKuzIRwwwD+QCbeozZwpkmieZbth8w7al+3o+2Ml6 r5XBZR/EhoyPN0Aix/i7ITN65sdVsfQV3ADFlKITKXwx7pK1RoqZKVBrPrmE8w1H tfbwnAaKfFsu3FvKBbcPjqXnVr7E59odKTAWq5UKOVZlIefUFLxyxTdtqfremo+V EJ6piBg4EI9W0o3UlzmW2bd2LU3RKHe0 -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:33 2025 by rpki-client