This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: U7Ieh69QavwlWQkuKiw537bwzeuOoqwOd3p3oblDPiw= Subject key identifier: 62:E4:E1:82:F6:E8:ED:32:2E:D7:31:3C:87:F5:9A:15:00:8E:7F:70 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1EA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1E99 Signing time: Thu 04 Dec 2025 15:49:13 +0000 Manifest this update: Thu 04 Dec 2025 15:49:12 +0000 Manifest next update: Thu 11 Dec 2025 15:49:12 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: e0uS5yL95XKx3pWd38MM0bHi+HyR17acmuptVNLAb1M=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: Lxohf2VrEq5kdMHODmRZ0pz5VX7gk6t5HOgofkIu3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7843 (0x1ea3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Dec 4 15:49:12 2025 GMT Not After : Dec 11 15:49:12 2025 GMT Subject: CN=6931ad78-b372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:86:83:24:02:aa:ab:92:0d:8e:b7:69:b3:45: a2:f2:5b:73:94:ce:e0:be:17:16:8d:66:fb:28:cc: c9:d6:3d:e5:8b:b2:49:ec:d7:7d:cf:2a:fd:d7:17: 03:33:b1:9f:30:60:f5:96:3a:41:fa:dd:8d:60:ea: aa:3e:5d:00:ec:51:6c:45:dd:71:cb:14:0f:01:e8: 3c:07:c7:d4:53:d6:80:ae:a6:25:35:85:e2:5d:a9: ea:30:ea:f5:40:4d:43:89:5a:30:84:2f:a6:06:af: e4:5a:0b:4d:b7:4a:ce:3b:9e:28:c7:06:47:1a:d5: 7a:88:65:8f:25:5e:7c:0d:7b:85:db:13:a2:0f:96: 2f:6c:e8:f3:34:d7:4c:9b:b3:6a:9a:61:ed:d9:01: c1:3d:30:94:06:fd:d4:ca:b5:c2:60:49:60:70:1b: a0:6a:71:dc:86:21:b8:e1:ed:aa:c1:39:60:57:78: 93:f6:14:84:3d:2a:0f:b5:66:64:6e:97:cb:d7:90: 04:dc:23:0f:b7:c3:42:2e:d9:8d:34:09:70:0b:6b: 97:ec:1c:b9:ba:8a:57:bf:d4:71:2e:da:b8:40:a7: 4f:fa:76:96:57:70:fe:64:61:9f:1c:f3:01:b7:21: 68:de:bf:0c:04:28:c9:a4:ae:c9:0c:a2:7f:71:0a: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E4:E1:82:F6:E8:ED:32:2E:D7:31:3C:87:F5:9A:15:00:8E:7F:70 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:72:f3:89:e6:55:c3:c2:ac:3c:c3:d3:6a:52:e1:48:0c:ac: 3c:2a:94:e5:59:17:bc:79:be:4e:e6:c9:05:33:a7:a0:a9:0e: 6c:70:0e:5a:e7:af:ba:78:96:19:24:eb:d1:14:de:b8:9b:f5: a6:92:1c:f4:3e:1d:2b:4c:80:38:88:bd:eb:5f:b7:7d:78:bc: e4:2f:bf:f6:dc:e1:9c:12:01:2a:37:75:86:70:09:7d:97:73: 4a:cc:28:ee:44:be:e7:92:02:ad:8b:0e:b4:79:bb:df:51:17: 28:7e:f5:bc:b3:6d:66:69:21:ec:9f:e1:70:f7:98:a3:ea:e9: 8a:cc:b2:4d:e7:fc:9c:0d:8b:c9:65:90:90:b2:ce:9f:09:dc: 6e:ca:5b:dc:aa:7d:8f:41:97:ba:e1:0f:08:40:8a:8e:ca:ca: 0a:3a:2c:bf:80:20:24:70:95:7c:06:0b:71:e6:1b:7f:c3:09: b0:6c:09:1f:f3:4b:c5:47:46:55:c9:28:87:e4:e0:b4:26:9c: aa:4f:f3:55:2e:4d:93:ce:7a:14:f0:82:38:4d:8b:28:14:9d: 8f:b0:68:13:8c:ea:a4:99:cd:43:77:79:e4:14:0c:6b:c5:72: 53:c1:16:52:ba:6b:db:f7:8b:1b:ea:83:5d:f1:ea:71:a7:3d: 5c:11:1a:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUxMjA0MTU0OTEyWhcNMjUxMjExMTU0OTEyWjAYMRYwFAYD VQQDEw02OTMxYWQ3OC1iMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIaDJAKqq5INjrdps0Wi8ltzlM7gvhcWjWb7KMzJ1j3li7JJ7Nd9zyr91xcD M7GfMGD1ljpB+t2NYOqqPl0A7FFsRd1xyxQPAeg8B8fUU9aArqYlNYXiXanqMOr1 QE1DiVowhC+mBq/kWgtNt0rOO54oxwZHGtV6iGWPJV58DXuF2xOiD5YvbOjzNNdM m7NqmmHt2QHBPTCUBv3UyrXCYElgcBuganHchiG44e2qwTlgV3iT9hSEPSoPtWZk bpfL15AE3CMPt8NCLtmNNAlwC2uX7By5uopXv9RxLtq4QKdP+naWV3D+ZGGfHPMB tyFo3r8MBCjJpK7JDKJ/cQqq6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLk4YL2 6O0yLtcxPIf1mhUAjn9wMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfcvOJ5lXDwqw8w9NqUuFIDKw8KpTlWRe8eb5O5skFM6egqQ5scA5a 56+6eJYZJOvRFN64m/Wmkhz0Ph0rTIA4iL3rX7d9eLzkL7/23OGcEgEqN3WGcAl9 l3NKzCjuRL7nkgKtiw60ebvfURcofvW8s21maSHsn+Fw95ij6umKzLJN5/ycDYvJ ZZCQss6fCdxuylvcqn2PQZe64Q8IQIqOysoKOiy/gCAkcJV8Bgtx5ht/wwmwbAkf 80vFR0ZVySiH5OC0JpyqT/NVLk2TznoU8II4TYsoFJ2PsGgTjOqkmc1Dd3nkFAxr xXJTwRZSumvb94sb6oNd8epxpz1cERrT -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:03 2025 by rpki-client