This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft File: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft (raw, json) Hash identifier: /kzYUm2CamRtcWEyHoSWDIcIwbNcd1ytuU5D7TiPkL0= Subject key identifier: D6:14:B9:AC:58:D7:9A:0C:05:3F:11:91:F0:66:B9:91:A3:6E:32:5E Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 08DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft Manifest number: 08D4 Signing time: Thu 04 Dec 2025 19:35:43 +0000 Manifest this update: Thu 04 Dec 2025 19:35:42 +0000 Manifest next update: Thu 11 Dec 2025 19:35:42 +0000 Files and hashes: 1: TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl (hash: SfFHnsIJF9VtVbklBhPFOQLk9Ei3n64zjbf7Mkz2eNE=) 2: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (hash: opv4DBbLy0U1nxAJSQ/FW4lgkGanCqSRXcsssLo5kGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Dec 4 19:35:42 2025 GMT Not After : Dec 11 19:35:42 2025 GMT Subject: CN=6931e28f-f0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:0c:79:7b:a7:b0:99:1a:a9:f8:fe:da:b3: f5:7b:61:ca:be:df:da:4f:a5:a0:6c:74:4c:0f:4f: d0:34:ac:ee:93:28:c6:52:c3:2e:44:e3:f1:19:aa: a2:eb:37:b5:e2:d7:6f:ee:8f:53:ff:57:7d:93:61: 6e:68:f5:dc:f5:e2:c6:7d:9e:b5:54:40:9f:ac:03: 13:6c:af:72:ae:e1:b5:5d:60:24:d1:42:fb:9e:f9: f1:9b:b1:0f:07:e7:13:32:85:27:f6:f5:05:18:4c: 11:af:df:e8:13:d6:8c:65:f4:52:5e:23:e3:8d:43: b8:5c:78:ce:9f:64:a5:77:6b:c7:1c:8f:14:46:7f: 6f:50:1f:82:0d:69:8b:db:53:1f:25:7d:ec:66:b9: 94:d4:de:bc:08:45:6b:04:e5:d0:c5:e1:37:8e:dd: ce:64:0b:c8:0d:83:49:ac:54:38:7c:95:c0:48:8c: b5:dd:1e:13:6f:73:24:85:5a:7e:96:74:84:84:50: 9d:de:00:32:6d:e9:c1:17:e7:13:97:35:06:34:07: 10:a9:a9:67:1c:a0:d5:88:cc:15:93:33:a0:0b:93: 1b:ba:26:dc:18:79:0f:b7:68:da:6d:04:c9:e4:9d: 9e:1b:a2:3f:80:a6:0f:83:56:ce:34:00:c8:6f:fc: 3a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:14:B9:AC:58:D7:9A:0C:05:3F:11:91:F0:66:B9:91:A3:6E:32:5E X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f9:68:57:10:29:72:60:49:53:21:65:7c:22:9a:91:cf:6a: 84:1b:0e:8c:b0:7f:4e:d7:bb:1d:e3:fe:6f:18:81:cb:4a:a5: bd:e3:4c:34:45:fb:c9:25:55:a9:d2:c6:1c:08:cf:62:48:11: 9b:c7:bc:33:a5:ac:e1:72:93:e9:03:4f:9d:e0:58:11:6a:18: ab:22:fd:67:ca:9b:3d:ad:44:ca:81:05:8d:9f:50:04:a2:b0: 38:85:a7:14:f6:c1:ac:c0:30:64:03:3a:59:4b:3e:29:c4:4d: dc:6c:53:6a:c0:f0:6a:bf:96:4e:f8:5a:82:a5:dc:3a:d5:11: ab:1f:c7:68:84:da:bc:57:17:8e:55:f7:a8:c5:8d:15:41:c0: e9:68:6f:09:90:28:c6:e3:1d:e5:de:47:b2:70:b2:c9:c5:74: f8:e8:f4:ed:52:d0:4c:b3:85:be:e6:93:f9:c9:ba:fe:88:e1: b2:81:2d:77:7e:c1:4c:12:ed:97:e4:74:b8:f1:20:57:44:b4: 2e:a5:52:d5:8c:7a:ab:30:5d:31:b6:3a:97:f1:a8:43:60:91: 80:a0:27:c9:e4:4b:55:da:9c:aa:7b:da:6f:75:96:45:ff:2a: 41:2e:a9:68:ef:8b:1d:5c:3f:0f:77:3a:b3:f2:6f:6b:ea:28: 77:dd:df:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUxMjA0MTkzNTQyWhcNMjUxMjExMTkzNTQyWjAYMRYwFAYD VQQDEw02OTMxZTI4Zi1mMGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjUMeXunsJkaqfj+2rP1e2HKvt/aT6WgbHRMD0/QNKzukyjGUsMuROPxGaqi 6ze14tdv7o9T/1d9k2FuaPXc9eLGfZ61VECfrAMTbK9yruG1XWAk0UL7nvnxm7EP B+cTMoUn9vUFGEwRr9/oE9aMZfRSXiPjjUO4XHjOn2Sld2vHHI8URn9vUB+CDWmL 21MfJX3sZrmU1N68CEVrBOXQxeE3jt3OZAvIDYNJrFQ4fJXASIy13R4Tb3MkhVp+ lnSEhFCd3gAybenBF+cTlzUGNAcQqalnHKDViMwVkzOgC5MbuibcGHkPt2jabQTJ 5J2eG6I/gKYPg1bONADIb/w6HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYUuaxY 15oMBT8RkfBmuZGjbjJeMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5MS83QzdCMUY2NkMzNUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhW bWJEc0RrWTdsSVQ5c2k5Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK+WhXEClyYElTIWV8IpqRz2qEGw6MsH9O17sd4/5vGIHLSqW940w0 RfvJJVWp0sYcCM9iSBGbx7wzpazhcpPpA0+d4FgRahirIv1nyps9rUTKgQWNn1AE orA4hacU9sGswDBkAzpZSz4pxE3cbFNqwPBqv5ZO+FqCpdw61RGrH8dohNq8VxeO VfeoxY0VQcDpaG8JkCjG4x3l3keycLLJxXT46PTtUtBMs4W+5pP5ybr+iOGygS13 fsFMEu2X5HS48SBXRLQupVLVjHqrMF0xtjqX8ahDYJGAoCfJ5EtV2pyqe9pvdZZF /ypBLqlo74sdXD8Pdzqz8m9r6ih33d/C -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:52 2025 by rpki-client