This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: aqcqftcVIyk3pWjadj84oKRVfKbrFAhHoyPd5jH/jkY= Subject key identifier: 4E:11:E3:89:5B:C9:95:BA:AD:10:B5:10:59:60:AF:73:AC:8F:A9:06 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0D04 Signing time: Thu 04 Dec 2025 19:41:02 +0000 Manifest this update: Thu 04 Dec 2025 19:41:02 +0000 Manifest next update: Thu 11 Dec 2025 19:41:02 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: qANw9BsLVG+HciKPwsd0oaIrKkn1NThc1aiz5DUDsk0=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Dec 4 19:41:02 2025 GMT Not After : Dec 11 19:41:02 2025 GMT Subject: CN=6931e3ce-2f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b4:48:98:b3:de:34:3d:b7:ee:96:e1:32:03: 95:53:6a:d7:c9:ed:1c:7c:01:45:4a:3c:f0:e0:d6: f9:36:65:cb:e1:15:76:2c:f6:bd:91:0d:d7:ff:41: c5:8d:00:83:43:7a:79:17:e7:f4:98:11:17:d0:3c: 13:37:9f:93:e7:43:0c:cd:0e:ac:85:aa:56:02:2b: 8b:e5:d1:72:4c:da:29:64:3c:00:f7:48:6b:4c:fa: 11:e8:ee:ee:6f:70:66:45:5a:d1:b8:9e:14:f0:1b: 87:5e:be:53:15:34:e8:f8:2f:49:28:d8:fc:bf:1f: bf:27:71:9f:c8:dd:19:a7:c3:65:ee:0e:1c:3f:d8: 81:90:0c:1c:0b:20:14:1e:b1:38:86:27:3c:bd:f6: e2:24:dc:1b:15:31:ba:74:6f:0e:e3:c7:7d:0e:96: 84:e6:bd:7f:70:9f:aa:55:c9:be:94:5e:12:0a:c9: 59:70:2a:c3:2e:e1:55:5b:36:56:c0:25:88:c0:7e: 6d:a7:39:12:33:42:aa:3b:60:db:9b:58:f1:7e:8b: 47:9a:18:3a:78:01:83:d3:34:36:35:ea:48:86:74: 5b:af:81:8d:c8:d3:09:b1:bc:bd:94:dc:02:07:6c: e6:31:6f:cb:73:33:06:bd:13:6f:aa:74:63:04:c7: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:11:E3:89:5B:C9:95:BA:AD:10:B5:10:59:60:AF:73:AC:8F:A9:06 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:5a:99:3a:dd:39:b2:1c:d1:ef:c8:fe:4f:d9:8f:52:61:39: 94:93:38:ad:84:ad:6b:f4:16:ea:83:2b:72:18:31:d7:ea:3d: cf:48:d9:74:45:a3:3b:74:9b:b5:a2:02:c9:ba:1e:c6:b7:0d: c4:a3:28:68:46:be:a8:df:07:c3:e8:db:d9:7f:c0:68:34:79: 8e:d1:f7:4b:7d:62:db:ab:c5:fd:40:ca:00:69:3b:63:08:95: 8b:06:4c:05:b8:15:f1:bf:78:ae:17:ca:ea:bb:17:d9:97:f0: 05:3a:8f:19:57:de:25:42:8c:5a:45:2b:09:f3:9a:71:b5:f9: 3c:e4:6b:5e:bb:fb:3f:be:a3:ad:af:62:e9:bf:93:52:c4:7f: 59:64:3f:61:2d:ae:47:c5:90:bf:dd:50:77:bf:dc:14:0b:37: d8:79:c0:4d:2e:cf:7c:a2:6c:df:a1:d6:71:5e:49:4f:53:17: 09:a1:44:5d:ef:a7:d6:65:fe:66:95:00:ce:e2:19:b9:bf:8a: f6:58:0a:30:ba:80:ab:b6:4f:ba:96:bc:d7:8d:87:36:91:78: bc:5a:8c:58:32:13:ec:ce:60:34:6b:70:4f:88:08:48:9a:02: 3f:72:df:0f:b8:9d:9c:01:fa:e0:01:41:d3:3d:ec:1f:03:a1: 36:1f:76:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUxMjA0MTk0MTAyWhcNMjUxMjExMTk0MTAyWjAYMRYwFAYD VQQDEw02OTMxZTNjZS0yZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7RImLPeND237pbhMgOVU2rXye0cfAFFSjzw4Nb5NmXL4RV2LPa9kQ3X/0HF jQCDQ3p5F+f0mBEX0DwTN5+T50MMzQ6shapWAiuL5dFyTNopZDwA90hrTPoR6O7u b3BmRVrRuJ4U8BuHXr5TFTTo+C9JKNj8vx+/J3GfyN0Zp8Nl7g4cP9iBkAwcCyAU HrE4hic8vfbiJNwbFTG6dG8O48d9DpaE5r1/cJ+qVcm+lF4SCslZcCrDLuFVWzZW wCWIwH5tpzkSM0KqO2Dbm1jxfotHmhg6eAGD0zQ2NepIhnRbr4GNyNMJsby9lNwC B2zmMW/LczMGvRNvqnRjBMd8QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4R44lb yZW6rRC1EFlgr3Osj6kGMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Wpk63TmyHNHvyP5P2Y9SYTmUkzithK1r9BbqgytyGDHX6j3PSNl0 RaM7dJu1ogLJuh7Gtw3EoyhoRr6o3wfD6NvZf8BoNHmO0fdLfWLbq8X9QMoAaTtj CJWLBkwFuBXxv3iuF8rquxfZl/AFOo8ZV94lQoxaRSsJ85pxtfk85Gteu/s/vqOt r2Lpv5NSxH9ZZD9hLa5HxZC/3VB3v9wUCzfYecBNLs98omzfodZxXklPUxcJoURd 76fWZf5mlQDO4hm5v4r2WAowuoCrtk+6lrzXjYc2kXi8WoxYMhPszmA0a3BPiAhI mgI/ct8PuJ2cAfrgAUHTPewfA6E2H3YT -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:42 2025 by rpki-client