This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: j3tBV2RLERaTbS5oqv0cO2yLKiqMHvLipc3s/QrbNJM= Subject key identifier: F4:F2:03:C0:14:50:1C:A6:D6:C3:E0:55:FF:0D:CB:62:0A:BA:64:05 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: BC Signing time: Fri 05 Dec 2025 04:14:30 +0000 Manifest this update: Fri 05 Dec 2025 04:14:29 +0000 Manifest next update: Fri 12 Dec 2025 04:14:29 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: vAB7WoxT5Dixuitxq39JfkDumwoQFuwvRO63Vp5p3Qo=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: c+aLqfbR3Fgu4NT0Rj31V85wle+td9tPpiQLLrA3X1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Dec 5 04:14:29 2025 GMT Not After : Dec 12 04:14:29 2025 GMT Subject: CN=69325c26-e966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0a:ef:82:ed:9b:fe:16:a1:86:75:39:24:ba: ae:b8:20:bd:1c:61:dc:05:29:bf:a6:15:6c:5d:d7: d7:af:a6:6d:4e:dd:0f:69:f1:ec:b6:80:2f:76:7e: fe:a6:ad:99:2f:d2:b4:b0:51:20:6d:ba:c3:04:b1: c3:e6:1e:b4:29:12:ce:54:e4:82:5a:8b:6b:19:fc: 91:f1:5d:26:56:3b:64:3a:0e:04:b9:bd:c5:d1:74: 8a:7e:6e:37:d3:12:c0:c4:80:0d:3e:5c:7f:dc:6b: b7:31:eb:fe:f5:4b:e3:0b:19:b1:da:6e:ac:54:6b: 95:c5:67:3f:89:44:e2:9b:2e:60:05:dc:84:df:2a: d4:b5:bd:a7:5a:42:29:e9:5c:16:a6:46:e9:db:2f: ce:6b:61:fd:be:a4:17:d4:18:a0:d7:5a:98:88:bf: 0d:0a:c2:35:60:60:46:47:42:21:fb:3e:12:56:95: 3b:db:4e:89:e2:ad:c8:af:0b:c1:e3:a7:ac:cf:0e: b0:5d:41:c3:fb:45:dc:a9:8d:24:98:80:8a:e4:f5: b9:e4:40:65:65:1f:8c:d9:30:76:c8:fe:7c:a2:68: 45:50:08:cd:b5:25:bd:d7:4b:38:49:e4:ec:c7:56: f1:94:af:cb:eb:f0:8d:ff:a2:de:6b:e3:b4:87:0d: 13:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F2:03:C0:14:50:1C:A6:D6:C3:E0:55:FF:0D:CB:62:0A:BA:64:05 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b9:6b:c7:42:87:74:ea:68:34:95:bc:f4:31:93:11:f3:dd: 4e:bd:53:fa:19:32:32:1f:9d:87:a2:89:86:6e:09:a4:52:f8: 3d:5f:c3:f7:51:c7:cc:50:75:9b:c8:95:bb:3c:47:fa:e8:3c: 52:0a:4a:d2:ea:34:ed:d7:4c:bb:c0:6f:b9:6c:7c:93:42:a3: 33:ce:01:d5:61:98:fb:cf:3f:50:42:7f:ad:11:b7:b0:93:32: cc:7e:b3:35:fc:18:7a:25:17:07:01:67:4d:65:1c:51:11:7a: 67:1f:ab:e1:d3:5f:d0:a0:c8:7b:fc:e3:8b:75:55:14:55:6d: 3d:2f:2d:28:78:a7:1f:32:71:a2:ca:6d:a6:46:6b:12:4c:12: ad:e1:3d:47:b4:4c:63:15:bd:b8:3d:21:ab:e9:73:b4:fc:eb: 0d:86:d4:ef:78:4c:2c:c0:fd:1a:7e:98:a3:6d:62:03:c3:fc: e8:46:90:e9:cd:ff:e7:85:91:ef:ea:78:e2:3e:ed:fe:86:0c: 4b:18:9c:b1:bd:54:ce:0c:89:e4:ff:cc:b1:1d:20:d7:ec:c2: 7f:e5:7b:30:fd:58:40:29:1d:40:79:3e:50:8c:d0:18:05:ba: c9:59:cd:3b:f3:1d:b8:d8:84:c3:33:61:01:fe:cd:58:ce:4e: f0:99:e1:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjUxMjA1MDQxNDI5WhcNMjUxMjEyMDQxNDI5WjAYMRYwFAYD VQQDEw02OTMyNWMyNi1lOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wrvgu2b/hahhnU5JLquuCC9HGHcBSm/phVsXdfXr6ZtTt0PafHstoAvdn7+ pq2ZL9K0sFEgbbrDBLHD5h60KRLOVOSCWotrGfyR8V0mVjtkOg4Eub3F0XSKfm43 0xLAxIANPlx/3Gu3Mev+9UvjCxmx2m6sVGuVxWc/iUTimy5gBdyE3yrUtb2nWkIp 6VwWpkbp2y/Oa2H9vqQX1Big11qYiL8NCsI1YGBGR0Ih+z4SVpU7206J4q3IrwvB 46eszw6wXUHD+0XcqY0kmICK5PW55EBlZR+M2TB2yP58omhFUAjNtSW910s4SeTs x1bxlK/L6/CN/6Lea+O0hw0T0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTyA8AU UBym1sPgVf8Ny2IKumQFMB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKuWvHQod06mg0lbz0MZMR891OvVP6GTIyH52HoomGbgmkUvg9X8P3 UcfMUHWbyJW7PEf66DxSCkrS6jTt10y7wG+5bHyTQqMzzgHVYZj7zz9QQn+tEbew kzLMfrM1/Bh6JRcHAWdNZRxREXpnH6vh01/QoMh7/OOLdVUUVW09Ly0oeKcfMnGi ym2mRmsSTBKt4T1HtExjFb24PSGr6XO0/OsNhtTveEwswP0afpijbWIDw/zoRpDp zf/nhZHv6njiPu3+hgxLGJyxvVTODInk/8yxHSDX7MJ/5Xsw/VhAKR1AeT5QjNAY BbrJWc078x242ITDM2EB/s1Yzk7wmeHY -----END CERTIFICATE-----Generated at Sat Dec 6 12:19:58 2025 by rpki-client