This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft File: TnVPewjIAAZ84HEJetOUaJDao2U.mft (raw, json) Hash identifier: 7xqzMjmkaiVtizX8zOVjVPw/VgLjvr+bcevJOauOSA8= Subject key identifier: FA:ED:04:7D:EE:62:28:2B:D0:89:E4:AC:57:62:D9:44:52:4B:00:76 Authority key identifier: 4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 Certificate issuer: /CN=A91F4B3F/serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft Manifest number: 01A3 Signing time: Fri 05 Dec 2025 01:31:40 +0000 Manifest this update: Fri 05 Dec 2025 01:31:40 +0000 Manifest next update: Fri 12 Dec 2025 01:31:40 +0000 Files and hashes: 1: TnVPewjIAAZ84HEJetOUaJDao2U.crl (hash: Tcc3idgL+JKmBQ46WNRVktbx/igzqZuElKj4J9mrrws=) 2: D875D57EF30611EEAFFC0C66C4F9AE02.roa (hash: qatvyS4SyJTNURVM2FsClClDPfP+4FEBMIeJZ8wIqMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B3F, serialNumber=4E754F7B08C800067CE071097AD3946890DAA365 Validity Not Before: Dec 5 01:31:40 2025 GMT Not After : Dec 12 01:31:40 2025 GMT Subject: CN=693235fc-05d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e6:7e:80:54:c2:4b:09:d9:31:47:c0:cf:32: 7a:19:08:4c:a9:a3:56:0c:a5:f5:24:46:0c:6e:27: 59:ed:1a:52:af:2c:63:e3:5b:4b:00:ad:3d:d5:55: 21:ec:bf:d7:e4:b1:ff:7e:19:2c:47:7d:96:e6:3d: 0c:19:d1:04:d1:12:67:77:14:f2:ad:91:72:d8:17: 30:39:1d:69:17:54:03:74:6b:22:e7:1b:58:d5:1f: 70:34:b7:a5:ef:d7:1f:41:01:63:29:33:de:a7:7e: ad:77:1b:16:95:6b:b0:a9:db:a4:b4:9f:0f:e8:d3: a8:b9:7d:0a:ee:61:12:a7:b6:06:fe:bc:a4:79:e3: 44:8a:17:61:3c:ba:21:92:58:b3:f4:23:77:fc:32: b1:a2:cd:f6:64:45:93:91:7a:39:9d:ff:d4:98:45: 6b:f0:6b:3d:2c:fb:66:e6:c5:f7:b2:4f:8f:be:c8: ba:90:38:a5:f7:db:f7:e6:9e:a0:13:b4:b1:b1:69: c5:35:7d:ad:58:03:a2:9c:5a:b3:c8:05:02:28:ca: e0:0c:ff:52:dd:39:7d:ff:d9:a8:2e:72:2b:fb:ff: 24:66:ba:21:df:19:41:7b:e1:67:5d:c0:55:0f:86: 0b:56:c5:16:b1:86:c4:5c:2d:b8:e4:69:08:9e:f0: 96:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:ED:04:7D:EE:62:28:2B:D0:89:E4:AC:57:62:D9:44:52:4B:00:76 X509v3 Authority Key Identifier: keyid:4E:75:4F:7B:08:C8:00:06:7C:E0:71:09:7A:D3:94:68:90:DA:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TnVPewjIAAZ84HEJetOUaJDao2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B3F/1CDF87E4516011EEB0A5826AC4F9AE02/TnVPewjIAAZ84HEJetOUaJDao2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:79:1c:d9:40:b6:f0:32:b9:75:e0:14:1a:98:24:bc:4e:4c: 32:5e:20:b6:6c:a8:67:ee:b4:03:87:27:6c:bf:58:11:b5:50: fb:3a:07:d7:5b:bf:a1:7c:8a:93:fb:ba:e9:46:1b:33:c0:38: a4:68:99:cd:b1:49:12:c6:78:65:54:38:16:e8:7c:be:00:ed: 4d:bb:03:bf:c2:db:bf:e1:87:d5:be:ed:79:14:45:8b:94:d9: 52:88:87:fe:21:48:79:9d:2e:93:87:3e:6e:dc:90:bb:32:d9: 41:98:72:87:6f:36:de:5c:44:7b:65:1c:7f:cb:76:ac:2d:84: cb:6e:cf:6a:f6:85:6d:b3:42:3f:ac:1e:d1:a8:57:f8:d1:b9: de:84:bc:14:c0:5f:2d:2f:c8:6a:be:d5:f1:a2:de:a4:7a:90: a4:1d:28:46:91:08:80:0b:a7:41:27:d4:95:c6:da:2d:91:d1: 4b:1d:53:60:7b:0e:31:ad:8b:08:f6:e4:39:c7:69:4b:dd:3d: 43:b0:42:20:d8:dc:4d:a1:47:4b:49:48:07:32:9e:f7:3b:d0: 19:eb:96:ae:6b:ae:3b:5a:08:75:90:ec:bf:13:e5:cf:5b:27: 83:ef:21:20:dd:0e:ca:c2:54:d3:5f:be:65:90:cf:c1:17:a8: 6a:34:ff:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCM0YxMTAvBgNVBAUTKDRFNzU0RjdCMDhDODAwMDY3Q0UwNzEwOTdBRDM5NDY4 OTBEQUEzNjUwHhcNMjUxMjA1MDEzMTQwWhcNMjUxMjEyMDEzMTQwWjAYMRYwFAYD VQQDEw02OTMyMzVmYy0wNWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreZ+gFTCSwnZMUfAzzJ6GQhMqaNWDKX1JEYMbidZ7RpSryxj41tLAK091VUh 7L/X5LH/fhksR32W5j0MGdEE0RJndxTyrZFy2BcwOR1pF1QDdGsi5xtY1R9wNLel 79cfQQFjKTPep36tdxsWlWuwqduktJ8P6NOouX0K7mESp7YG/rykeeNEihdhPLoh kliz9CN3/DKxos32ZEWTkXo5nf/UmEVr8Gs9LPtm5sX3sk+Pvsi6kDil99v35p6g E7SxsWnFNX2tWAOinFqzyAUCKMrgDP9S3Tl9/9moLnIr+/8kZroh3xlBe+FnXcBV D4YLVsUWsYbEXC245GkInvCW2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrtBH3u Yigr0InkrFdi2URSSwB2MB8GA1UdIwQYMBaAFE51T3sIyAAGfOBxCXrTlGiQ2qNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIzRi8xQ0RGODdFNDUx NjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFBWjg0SEVKZXRPVWFKRGFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RuVlBld2pJQUFaODRIRUpldE9VYUpEYW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEIzRi8xQ0RGODdFNDUxNjAxMUVFQjBBNTgyNkFDNEY5QUUwMi9UblZQZXdqSUFB Wjg0SEVKZXRPVWFKRGFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAneRzZQLbwMrl14BQamCS8TkwyXiC2bKhn7rQDhydsv1gRtVD7OgfX W7+hfIqT+7rpRhszwDikaJnNsUkSxnhlVDgW6Hy+AO1NuwO/wtu/4YfVvu15FEWL lNlSiIf+IUh5nS6Thz5u3JC7MtlBmHKHbzbeXER7ZRx/y3asLYTLbs9q9oVts0I/ rB7RqFf40bnehLwUwF8tL8hqvtXxot6kepCkHShGkQiAC6dBJ9SVxtotkdFLHVNg ew4xrYsI9uQ5x2lL3T1DsEIg2NxNoUdLSUgHMp73O9AZ65aua647Wgh1kOy/E+XP WyeD7yEg3Q7KwlTTX75lkM/BF6hqNP93 -----END CERTIFICATE-----Generated at Sat Dec 6 23:25:25 2025 by rpki-client