This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: y9CiHmJCc+ZSTCuBzhJUxmTokenvbHoPiS6px4wIWi8= Subject key identifier: AB:18:15:92:38:75:DF:99:DA:6B:A8:EB:1D:B4:3B:A3:C1:81:13:8F Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 9E Signing time: Thu 25 Dec 2025 05:21:01 +0000 Manifest this update: Thu 25 Dec 2025 05:21:01 +0000 Manifest next update: Thu 01 Jan 2026 05:21:01 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: Lx7fwZ48zzlNbCzbkciwaK7WhNCE06F746RZ7KpdaS8=) 2: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) 3: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 05:21:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Dec 25 05:21:01 2025 GMT Not After : Jan 1 05:21:01 2026 GMT Subject: CN=694cc9bd-69dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:05:fa:c8:bf:01:ad:2f:86:36:62:f4:8c:74: 61:10:a5:48:a9:1a:3d:70:74:60:50:05:8a:4f:5d: 4f:07:9c:46:58:30:be:54:c9:97:12:84:67:2c:1f: ad:99:84:03:17:7c:50:89:28:a3:ce:cd:c4:84:04: 05:a2:06:d9:78:67:21:17:b5:3a:82:3a:00:9d:c2: 1a:4b:c4:0b:7d:28:e8:1e:10:23:d5:1b:90:d0:68: 46:9b:08:a0:3e:0f:eb:21:90:c3:3a:70:8b:16:fd: 5b:98:93:8a:48:93:0f:c3:4c:16:f8:71:47:65:9b: 87:75:5e:1c:c5:da:e1:00:47:a6:c9:4b:b8:7a:5f: 1a:6d:f5:06:c1:43:9b:1b:ac:f4:f8:aa:6a:5b:95: 0c:b9:8f:fb:f9:8f:a8:72:36:46:1a:2a:05:30:2b: de:67:b1:3d:29:49:48:ee:57:92:71:1e:23:6a:02: a7:5c:13:94:16:48:b0:7b:87:aa:ed:be:f0:d9:28: 68:37:c0:57:9a:20:6a:a7:98:45:e3:a1:1f:c8:72: 7d:b8:65:73:44:c7:8e:2a:84:87:23:8a:c6:81:dc: 20:6f:8f:53:7a:8b:75:df:53:9b:59:d6:d3:fe:b0: 30:5d:a1:56:ca:d1:38:9b:87:e3:d0:23:8e:df:45: d7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:18:15:92:38:75:DF:99:DA:6B:A8:EB:1D:B4:3B:A3:C1:81:13:8F X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f6:08:c5:95:19:f4:d4:61:d7:a3:d2:f1:97:40:34:36:1e: a4:23:bb:6a:39:9b:57:8a:cc:1b:17:1d:75:ea:a3:4b:d3:cd: de:76:55:34:11:b7:9f:d5:a4:46:c2:c3:1b:da:22:51:6e:00: 74:b2:73:c3:d4:ff:67:51:8e:f2:48:78:64:c0:71:6a:7c:f6: b7:c2:c4:5a:34:b7:fe:3a:19:74:e1:79:51:d3:f7:5c:f1:18: 77:4d:8d:a9:b7:b4:88:07:2e:86:56:e9:8a:c9:57:1f:c3:74: a4:69:e9:8e:78:6c:77:c1:aa:fa:ed:65:c0:e6:f6:bf:87:35: 8c:b1:bb:f8:f1:78:ff:9a:e6:77:ab:54:f6:0f:c7:e4:fe:64: 1e:74:32:5a:b8:c8:d9:9c:44:87:01:90:03:9a:40:23:09:68: bf:59:60:01:48:9c:52:53:c6:65:51:16:d5:48:72:87:27:cd: 40:31:26:b8:76:f4:b3:23:19:c4:38:6a:37:e8:d4:36:ca:c0: da:ab:11:91:14:35:f9:63:92:41:6c:fc:2b:e0:d2:6f:0f:75: f4:87:fd:78:18:b1:ca:22:cb:66:69:68:8a:2d:4a:4b:a3:45: 5d:bd:80:84:74:84:de:b0:83:61:96:c4:d8:7f:96:d5:47:b7: a8:4f:e3:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMjI1MDUyMTAxWhcNMjYwMTAxMDUyMTAxWjAYMRYwFAYD VQQDDA02OTRjYzliZC02OWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgX6yL8BrS+GNmL0jHRhEKVIqRo9cHRgUAWKT11PB5xGWDC+VMmXEoRnLB+t mYQDF3xQiSijzs3EhAQFogbZeGchF7U6gjoAncIaS8QLfSjoHhAj1RuQ0GhGmwig Pg/rIZDDOnCLFv1bmJOKSJMPw0wW+HFHZZuHdV4cxdrhAEemyUu4el8abfUGwUOb G6z0+KpqW5UMuY/7+Y+ocjZGGioFMCveZ7E9KUlI7leScR4jagKnXBOUFkiwe4eq 7b7w2ShoN8BXmiBqp5hF46EfyHJ9uGVzRMeOKoSHI4rGgdwgb49Teot131ObWdbT /rAwXaFWytE4m4fj0COO30XXlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsYFZI4 dd+Z2muo6x20O6PBgROPMB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX9gjFlRn01GHXo9Lxl0A0Nh6kI7tqOZtXiswbFx116qNL083edlU0 Ebef1aRGwsMb2iJRbgB0snPD1P9nUY7ySHhkwHFqfPa3wsRaNLf+Ohl04XlR0/dc 8Rh3TY2pt7SIBy6GVumKyVcfw3SkaemOeGx3war67WXA5va/hzWMsbv48Xj/muZ3 q1T2D8fk/mQedDJauMjZnESHAZADmkAjCWi/WWABSJxSU8ZlURbVSHKHJ81AMSa4 dvSzIxnEOGo36NQ2ysDaqxGRFDX5Y5JBbPwr4NJvD3X0h/14GLHKIstmaWiKLUpL o0VdvYCEdITesINhlsTYf5bVR7eoT+My -----END CERTIFICATE-----Generated at Thu Dec 25 12:47:28 2025 by rpki-client