This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: 2UjBuSU+F1I8sqV3kfHFYSIIrHXwXbwyGhfauPxqzmM= Subject key identifier: 14:85:43:AA:05:1C:FF:45:75:CA:EC:6F:A2:97:19:DF:69:37:82:87 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 01D3 Signing time: Fri 19 Dec 2025 02:01:39 +0000 Manifest this update: Fri 19 Dec 2025 02:01:38 +0000 Manifest next update: Fri 26 Dec 2025 02:01:38 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: QAV3+RUVziVMfkCnc/0NJi1/Q3Hm2rWzX+9yNtTMzVw=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Dec 19 02:01:38 2025 GMT Not After : Dec 26 02:01:38 2025 GMT Subject: CN=6944b203-d89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:93:80:ab:3d:ec:21:15:6b:6d:17:bf:6a:d5: 0a:85:09:d7:de:12:09:7e:d9:09:64:08:b3:28:d0: 93:16:e4:82:81:b0:0d:3b:1c:4c:03:00:05:7e:4e: 40:30:a4:6b:16:87:d3:50:50:74:5a:91:6f:a6:b5: 37:12:d7:07:15:0a:c9:62:60:5e:a8:17:c5:ef:37: 5f:70:5b:8a:63:3a:fe:8f:ce:c4:25:04:52:4c:a0: 47:e9:83:23:87:29:9d:26:07:25:b2:4a:b5:25:ad: c1:ce:db:36:a9:93:e0:64:d4:61:47:bb:35:8d:77: 97:ca:ed:89:2a:df:e1:5c:95:66:24:43:c5:69:8d: 8a:00:d2:f6:f6:da:41:90:b5:ee:91:26:7c:4b:62: 68:96:85:9a:97:2d:2e:a5:e3:24:b9:42:49:f8:a6: 95:91:e4:ca:4d:6c:2b:88:0d:7d:fa:08:43:92:24: ba:29:25:da:c1:97:d1:ef:06:87:47:7d:71:2e:24: ac:46:dd:79:14:58:44:d5:f8:6c:e2:74:c3:07:9d: 01:c7:54:29:e6:36:88:26:cc:7e:f9:26:2c:c9:df: 5a:84:35:04:f3:51:24:2e:ce:86:9f:fe:e0:b4:ed: a0:7c:2d:55:43:8d:c7:bb:33:5e:e4:37:b2:83:5d: 66:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:85:43:AA:05:1C:FF:45:75:CA:EC:6F:A2:97:19:DF:69:37:82:87 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:66:70:18:8a:dd:ee:29:ee:b9:53:77:cf:57:2a:23:43:9b: 13:3b:23:b2:3e:e9:e1:72:05:2c:d6:a9:fa:72:16:89:a4:7a: be:75:7d:8d:c3:37:d8:83:ba:ac:8f:57:11:f7:a5:a9:ea:b4: d1:1a:5d:db:3b:fd:0b:a5:ad:f9:87:47:a0:0b:15:0e:db:05: 8b:ef:f2:29:c0:22:d3:b8:7d:8e:ad:18:88:f5:6a:02:56:18: db:19:80:dd:0e:b8:52:a0:75:90:82:f8:a9:75:2b:41:4a:e4: d6:11:b6:90:0d:7e:f2:b8:d4:ac:50:9f:98:01:17:33:9a:84: 8c:06:8c:29:e9:8b:1b:f3:cc:69:02:01:3d:a2:5d:9e:ad:6b: f4:fb:8b:e9:e0:21:7b:6d:c5:17:30:08:fc:ea:b4:dd:cf:9f: cc:d7:3e:fb:eb:41:1b:6d:33:93:dc:dd:fd:39:7e:05:46:0c: 3f:63:c7:6e:bc:12:e1:77:6e:8b:c2:29:f1:4e:e7:36:d7:c4: 1b:3d:6e:ae:aa:de:6a:ef:b2:1a:b4:b7:fb:35:7a:d4:52:e0: 21:bb:d7:d6:60:ad:24:a4:e1:5c:e4:68:b6:f0:e3:8e:d2:0e: 19:84:9f:4c:87:14:61:bd:c0:80:40:b8:7f:69:93:08:e3:7f: 83:b0:29:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUxMjE5MDIwMTM4WhcNMjUxMjI2MDIwMTM4WjAYMRYwFAYD VQQDDA02OTQ0YjIwMy1kODlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15OAqz3sIRVrbRe/atUKhQnX3hIJftkJZAizKNCTFuSCgbANOxxMAwAFfk5A MKRrFofTUFB0WpFvprU3EtcHFQrJYmBeqBfF7zdfcFuKYzr+j87EJQRSTKBH6YMj hymdJgclskq1Ja3Bzts2qZPgZNRhR7s1jXeXyu2JKt/hXJVmJEPFaY2KANL29tpB kLXukSZ8S2JoloWaly0upeMkuUJJ+KaVkeTKTWwriA19+ghDkiS6KSXawZfR7waH R31xLiSsRt15FFhE1fhs4nTDB50Bx1Qp5jaIJsx++SYsyd9ahDUE81EkLs6Gn/7g tO2gfC1VQ43HuzNe5Deyg11mswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSFQ6oF HP9Fdcrsb6KXGd9pN4KHMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqZnAYit3uKe65U3fPVyojQ5sTOyOyPunhcgUs1qn6chaJpHq+dX2N wzfYg7qsj1cR96Wp6rTRGl3bO/0Lpa35h0egCxUO2wWL7/IpwCLTuH2OrRiI9WoC VhjbGYDdDrhSoHWQgvipdStBSuTWEbaQDX7yuNSsUJ+YARczmoSMBowp6Ysb88xp AgE9ol2erWv0+4vp4CF7bcUXMAj86rTdz5/M1z7760EbbTOT3N39OX4FRgw/Y8du vBLhd26LwinxTuc218QbPW6uqt5q77IatLf7NXrUUuAhu9fWYK0kpOFc5Gi28OOO 0g4ZhJ9MhxRhvcCAQLh/aZMI43+DsCkY -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:59 2025 by rpki-client