This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft File: TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json) Hash identifier: NCI2r/PhsAN//f1eNfccuPOPNrvN/YdKfSc4FRRxPh8= Subject key identifier: 1A:EF:92:AA:43:88:B1:52:AB:D2:85:E1:6D:EA:4C:C0:40:C2:74:14 Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft Manifest number: 011B Signing time: Fri 05 Dec 2025 02:51:42 +0000 Manifest this update: Fri 05 Dec 2025 02:51:42 +0000 Manifest next update: Fri 12 Dec 2025 02:51:42 +0000 Files and hashes: 1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: pPrFOIRtZOMetsgfnAW051gkrrFDPcn3iGDyLEegO4I=) 2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: ktZfaMlA6IUEVI7ymclMb6B8SOgTxjLIP6VRKiXLA/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Dec 5 02:51:42 2025 GMT Not After : Dec 12 02:51:42 2025 GMT Subject: CN=693248be-24f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:97:d8:07:0f:74:82:cc:ae:4e:3c:94:72:9e: 47:88:8e:4a:0f:65:3b:73:58:c9:54:f3:20:8c:fb: e4:43:9c:d9:2d:b7:98:6a:00:1c:42:9a:ea:35:91: c6:66:6d:4b:36:e3:11:c4:af:35:33:7b:9c:4d:eb: ed:89:83:56:de:24:7c:0c:f8:c5:94:ae:36:cf:7a: 81:c2:e6:d3:64:2d:45:f7:b2:ed:2e:d9:5c:14:aa: cb:f8:cc:3e:38:22:91:a0:40:0e:7d:12:15:ec:fa: 76:06:3b:81:12:0a:1b:74:c4:d4:78:e8:10:fa:f4: ac:54:37:72:5c:6b:ea:ea:2b:f7:c7:a2:14:8f:9e: c8:e5:aa:6e:0d:35:3b:c7:d8:46:b5:1b:7a:4a:2f: 44:3f:47:d3:7b:97:8f:29:51:8b:2d:34:c3:87:62: ab:f1:ee:2a:40:94:be:37:59:e5:1d:f6:2c:c2:66: 9e:b3:14:57:b3:a8:85:07:db:21:5f:c3:5c:d5:d6: db:c7:5d:d2:f7:84:c7:7f:43:4b:78:56:4c:5e:0f: 26:57:76:8c:54:30:e6:b9:9d:14:c4:32:f9:d9:d0: f1:e0:c0:07:4b:37:ae:88:29:aa:99:78:89:c1:51: f9:d2:0c:56:c1:e3:bb:6f:12:6b:95:ff:a5:18:13: 71:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:EF:92:AA:43:88:B1:52:AB:D2:85:E1:6D:EA:4C:C0:40:C2:74:14 X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:54:ff:ef:0f:8b:3b:6f:20:a3:aa:9a:57:3a:6e:f2:01:98: 5a:38:13:f1:3b:6d:15:ad:04:2d:60:fd:cb:48:71:1b:42:d2: 84:25:5c:f7:17:c6:a7:d4:53:ad:10:bc:7f:31:88:76:79:b1: 69:1f:4e:75:0c:82:ec:19:da:5c:d8:4d:78:d4:7c:37:e9:35: 20:b6:b6:86:e4:7f:51:78:4d:34:d1:bd:1c:49:cf:cd:3c:44: 27:0a:fb:48:eb:d9:8c:f5:a0:e5:c5:d0:a8:f1:df:c0:fa:ac: 4c:14:a3:b7:22:3a:a7:d8:3f:b2:ad:f1:4d:78:af:0f:42:cf: 15:45:e5:06:23:2d:88:06:2d:2f:36:2f:65:f0:af:1a:60:ea: fc:03:2b:5a:3f:53:56:47:19:95:d4:04:9c:43:9c:19:aa:35: bf:a2:54:28:a0:a6:c2:cd:d6:d3:77:35:9c:94:69:a5:ec:cd: 5e:5a:34:c9:46:49:ca:39:04:7b:2a:9e:cf:71:ce:a4:23:09: 0a:6d:ef:8b:cb:13:05:65:af:ae:48:c7:75:f6:da:2f:2c:ee: 7c:ec:15:b2:f4:24:74:ab:9a:86:7c:64:e3:9b:e7:99:03:0c: 3c:d0:fc:89:a2:25:f3:6f:4e:46:50:21:e3:37:c8:62:92:e7: 59:e0:fe:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUxMjA1MDI1MTQyWhcNMjUxMjEyMDI1MTQyWjAYMRYwFAYD VQQDEw02OTMyNDhiZS0yNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5fYBw90gsyuTjyUcp5HiI5KD2U7c1jJVPMgjPvkQ5zZLbeYagAcQprqNZHG Zm1LNuMRxK81M3ucTevtiYNW3iR8DPjFlK42z3qBwubTZC1F97LtLtlcFKrL+Mw+ OCKRoEAOfRIV7Pp2BjuBEgobdMTUeOgQ+vSsVDdyXGvq6iv3x6IUj57I5apuDTU7 x9hGtRt6Si9EP0fTe5ePKVGLLTTDh2Kr8e4qQJS+N1nlHfYswmaesxRXs6iFB9sh X8Nc1dbbx13S94THf0NLeFZMXg8mV3aMVDDmuZ0UxDL52dDx4MAHSzeuiCmqmXiJ wVH50gxWweO7bxJrlf+lGBNxwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrvkqpD iLFSq9KF4W3qTMBAwnQUMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRt MkVLc2pPQ3VwNFRrdlhPQzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIVP/vD4s7byCjqppXOm7yAZhaOBPxO20VrQQtYP3LSHEbQtKEJVz3 F8an1FOtELx/MYh2ebFpH051DILsGdpc2E141Hw36TUgtraG5H9ReE000b0cSc/N PEQnCvtI69mM9aDlxdCo8d/A+qxMFKO3Ijqn2D+yrfFNeK8PQs8VReUGIy2IBi0v Ni9l8K8aYOr8AytaP1NWRxmV1AScQ5wZqjW/olQooKbCzdbTdzWclGml7M1eWjTJ RknKOQR7Kp7Pcc6kIwkKbe+LyxMFZa+uSMd19tovLO587BWy9CR0q5qGfGTjm+eZ Aww80PyJoiXzb05GUCHjN8hikudZ4P4C -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:09 2025 by rpki-client