This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: yUher2G5z9JkuliouozFp5vO9NSU3uIaJY7g0Mk/UI0= Subject key identifier: 7F:30:11:8F:36:02:D8:9E:EB:DB:EF:13:D4:CD:BE:FB:AB:6C:F4:74 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 01D4 Signing time: Fri 05 Dec 2025 01:11:03 +0000 Manifest this update: Fri 05 Dec 2025 01:11:03 +0000 Manifest next update: Fri 12 Dec 2025 01:11:03 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: 53Ltqu7D5MWWsKvW/2N8X2B1IKUFjsbB+tV1aJStXTg=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: wndMS9TntxEIvOO1y5ThBewHzkdYkTNV8U/orVegQT4=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: mvlfednBP8hH+VJF+N7b5lj86+gAiaBFLJ6OGfwQefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Dec 5 01:11:03 2025 GMT Not After : Dec 12 01:11:03 2025 GMT Subject: CN=69323127-45bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3b:8d:39:d9:ab:3a:9d:7d:90:a5:a8:d9:23: 87:c5:52:98:12:56:ec:3f:86:30:b2:b4:79:b4:63: f6:95:88:8e:97:91:5a:d1:71:7a:b0:20:ed:a5:9d: 73:8b:81:78:c7:89:44:ea:37:50:99:ee:cc:2f:8a: 4e:75:9d:9e:5d:79:cf:49:5a:b7:3b:27:ce:86:51: 39:61:c3:f0:bc:ed:86:bf:c5:3d:4b:03:1b:66:1a: bd:82:6e:45:c3:8d:4f:37:5f:8d:e8:84:38:b5:ce: 86:be:db:6e:98:7e:d0:ce:44:c0:17:c2:9e:50:e0: 3c:5a:a3:fd:7c:88:be:20:51:cb:40:94:7e:e4:18: 7f:2b:ca:bb:99:ea:d9:ce:d1:13:35:e9:58:30:f1: 20:a7:65:64:19:5a:26:ff:4e:bc:f5:cc:1d:fa:85: 9d:22:6f:48:f7:2a:6d:f4:65:49:6d:7c:0d:e5:5f: ca:c5:64:20:50:33:4e:a0:3c:62:4c:0c:ce:b0:8e: f2:04:4a:e6:be:18:11:da:70:d2:08:3f:08:5e:8b: e8:1d:a2:0b:43:c8:ed:05:85:48:be:9e:6b:6a:82: fc:f8:3b:2d:9c:b4:08:fc:3d:10:38:f1:f5:c0:a5: fe:df:d3:85:3c:ca:23:d8:a4:19:f7:9e:04:43:9f: 6e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:30:11:8F:36:02:D8:9E:EB:DB:EF:13:D4:CD:BE:FB:AB:6C:F4:74 X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:a7:5d:64:dd:b0:35:10:1b:c9:9b:e5:80:98:9b:cf:78:71: 28:15:a6:a4:b4:2d:67:83:75:f7:3f:b6:4c:44:21:36:60:38: 13:39:c2:34:b6:eb:ab:5a:62:4f:9a:38:85:d7:92:41:08:07: 8b:11:34:57:32:66:fb:19:d1:2a:56:af:12:f3:0f:bb:b0:dd: 0e:4f:d1:3a:3e:b4:ec:0f:b4:ef:df:39:b4:c0:4b:cd:16:0a: ab:82:fd:3f:7e:a3:43:dd:dc:02:e4:88:7f:0b:16:c9:ae:ed: fd:79:2e:53:c7:de:53:ea:52:cc:fb:9d:80:d7:14:70:c9:b6: e2:44:70:c2:3e:c5:ce:c1:e3:ba:ea:aa:6e:e7:a9:75:7b:90: 81:e6:c2:4e:69:19:41:9a:e0:05:47:4b:06:da:d7:14:d7:eb: 9e:c0:5a:2d:ac:54:db:91:90:4f:42:56:56:fe:81:0a:ef:93: 1b:f2:ef:4a:19:c2:60:10:1d:69:1b:06:5a:98:94:ec:c6:97: ae:1e:c7:c9:ab:36:e9:c4:67:0c:ae:11:04:af:49:36:72:f4: 41:e9:15:3e:1d:9a:e0:fc:e9:6f:0c:2e:9c:5d:2f:37:b2:c2: 36:9a:05:bd:b4:03:1f:0a:ac:96:5b:9f:cb:bd:01:00:c3:56: ec:4b:c1:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUxMjA1MDExMTAzWhcNMjUxMjEyMDExMTAzWjAYMRYwFAYD VQQDEw02OTMyMzEyNy00NWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjuNOdmrOp19kKWo2SOHxVKYElbsP4YwsrR5tGP2lYiOl5Fa0XF6sCDtpZ1z i4F4x4lE6jdQme7ML4pOdZ2eXXnPSVq3OyfOhlE5YcPwvO2Gv8U9SwMbZhq9gm5F w41PN1+N6IQ4tc6GvttumH7QzkTAF8KeUOA8WqP9fIi+IFHLQJR+5Bh/K8q7merZ ztETNelYMPEgp2VkGVom/0689cwd+oWdIm9I9ypt9GVJbXwN5V/KxWQgUDNOoDxi TAzOsI7yBErmvhgR2nDSCD8IXovoHaILQ8jtBYVIvp5raoL8+DstnLQI/D0QOPH1 wKX+39OFPMoj2KQZ954EQ59u9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8wEY82 Atie69vvE9TNvvurbPR0MB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4p11k3bA1EBvJm+WAmJvPeHEoFaaktC1ng3X3P7ZMRCE2YDgTOcI0 tuurWmJPmjiF15JBCAeLETRXMmb7GdEqVq8S8w+7sN0OT9E6PrTsD7Tv3zm0wEvN Fgqrgv0/fqND3dwC5Ih/CxbJru39eS5Tx95T6lLM+52A1xRwybbiRHDCPsXOweO6 6qpu56l1e5CB5sJOaRlBmuAFR0sG2tcU1+uewFotrFTbkZBPQlZW/oEK75Mb8u9K GcJgEB1pGwZamJTsxpeuHsfJqzbpxGcMrhEEr0k2cvRB6RU+HZrg/OlvDC6cXS83 ssI2mgW9tAMfCqyWW5/LvQEAw1bsS8Gh -----END CERTIFICATE-----Generated at Sun Dec 7 01:32:44 2025 by rpki-client