This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: PZkMiwe54OhCpRkRPs+t2uR9PN4AJ5jO5ZPzSvW/iVw= Subject key identifier: 39:19:46:38:8B:CD:48:3C:8C:B3:44:B6:87:0E:92:F6:5F:41:FA:B1 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 0134 Signing time: Thu 01 Jan 2026 04:05:04 +0000 Manifest this update: Thu 01 Jan 2026 04:05:04 +0000 Manifest next update: Thu 08 Jan 2026 04:05:04 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: Isp2nK+QSMC/ZTSRRx6DKd9e1Ep03ay/SxLk+IxE1AQ=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 04:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Jan 1 04:05:04 2026 GMT Not After : Jan 8 04:05:04 2026 GMT Subject: CN=6955f270-90b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:54:d3:cb:fd:05:6d:00:26:57:cf:87:36: f6:ba:35:e9:65:93:3c:e0:d0:b6:9e:aa:80:a9:51: 5a:9c:bd:a7:7e:03:2a:2d:c3:71:cb:08:d0:1e:9f: 83:40:5c:ce:4b:df:fe:28:20:46:ca:c5:7b:f6:26: 0c:6a:42:c0:89:c0:48:32:e6:af:02:23:3e:c7:c8: ca:87:6e:d9:f0:87:1d:1f:dc:50:8a:37:b1:b4:07: 5d:63:4d:7b:71:ef:5a:51:25:0c:97:d2:e7:e1:32: 8b:a0:b8:59:e2:a0:38:bd:62:3e:62:4c:63:eb:73: 9b:b2:f3:d0:2f:c8:8f:b4:9a:ea:de:75:bd:ad:23: a1:b6:79:ae:fc:6d:7c:92:7a:98:92:50:58:3a:39: f6:f8:42:f3:7f:c8:47:71:30:85:35:04:68:dd:4c: 0a:dc:99:7f:ff:8c:0c:c3:2c:88:82:4f:9a:19:7f: 58:b4:b7:65:a2:ca:54:20:fe:10:50:84:e2:46:67: 9a:13:b1:a6:0b:d4:1d:c6:7f:c5:f6:f3:c2:45:00: b9:16:d5:db:c6:dd:2e:27:21:17:8f:9b:5e:86:e2: 72:fa:24:e9:1b:6c:ba:c6:2d:5a:27:8a:9e:2a:48: 27:d8:55:99:07:c5:ff:c6:70:c6:6b:41:63:34:df: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:19:46:38:8B:CD:48:3C:8C:B3:44:B6:87:0E:92:F6:5F:41:FA:B1 X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:7b:c7:56:aa:ab:1b:af:6e:34:5a:a9:f6:45:ee:56:7d:7c: 58:d7:c6:ee:c0:80:7b:01:e1:01:83:13:4b:2b:86:93:d8:73: 0a:c6:33:a4:e7:31:d3:6d:51:46:eb:14:34:87:71:86:6e:c6: a7:01:84:a4:c8:cd:e5:d9:ce:10:9d:68:d0:66:51:58:65:d9: ad:fe:bb:a6:3a:56:57:3a:5a:e3:37:f6:48:ac:09:64:d9:bf: 8d:7f:05:f2:18:b5:da:5a:a3:e3:2e:95:fe:d1:f6:ba:04:bc: 47:78:8c:f2:7c:04:95:48:6a:17:96:d8:dc:67:27:ca:a5:8e: b6:16:2f:d3:30:0a:33:1a:a4:f4:d7:7d:a4:50:f1:56:f0:18: e8:0a:e8:b0:c9:82:bf:cd:42:a2:71:32:d9:cc:52:ac:db:08: 44:6f:65:30:10:b8:51:14:6a:df:02:6e:78:a7:59:ae:51:1b: b1:6e:ba:4e:52:4c:51:62:57:78:34:cc:18:81:1a:97:7f:3c: 0f:ea:88:e9:90:c4:ae:57:39:3d:81:ee:85:50:b1:3b:56:c8: 78:87:25:55:fb:8e:97:22:55:7d:eb:7b:bb:b4:5e:70:29:ec: 4e:8b:cb:ff:1b:b7:01:d8:68:8b:5e:fc:ff:d5:d6:09:f1:7e: 09:42:2f:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjYwMTAxMDQwNTA0WhcNMjYwMTA4MDQwNTA0WjAYMRYwFAYD VQQDDA02OTU1ZjI3MC05MGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv89U08v9BW0AJlfPhzb2ujXpZZM84NC2nqqAqVFanL2nfgMqLcNxywjQHp+D QFzOS9/+KCBGysV79iYMakLAicBIMuavAiM+x8jKh27Z8IcdH9xQijextAddY017 ce9aUSUMl9Ln4TKLoLhZ4qA4vWI+Ykxj63ObsvPQL8iPtJrq3nW9rSOhtnmu/G18 knqYklBYOjn2+ELzf8hHcTCFNQRo3UwK3Jl//4wMwyyIgk+aGX9YtLdlospUIP4Q UITiRmeaE7GmC9Qdxn/F9vPCRQC5FtXbxt0uJyEXj5tehuJy+iTpG2y6xi1aJ4qe Kkgn2FWZB8X/xnDGa0FjNN+oewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkZRjiL zUg8jLNEtocOkvZfQfqxMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwe8dWqqsbr240Wqn2Re5WfXxY18buwIB7AeEBgxNLK4aT2HMKxjOk 5zHTbVFG6xQ0h3GGbsanAYSkyM3l2c4QnWjQZlFYZdmt/rumOlZXOlrjN/ZIrAlk 2b+NfwXyGLXaWqPjLpX+0fa6BLxHeIzyfASVSGoXltjcZyfKpY62Fi/TMAozGqT0 132kUPFW8BjoCuiwyYK/zUKicTLZzFKs2whEb2UwELhRFGrfAm54p1muURuxbrpO UkxRYld4NMwYgRqXfzwP6ojpkMSuVzk9ge6FULE7Vsh4hyVV+46XIlV963u7tF5w KexOi8v/G7cB2GiLXvz/1dYJ8X4JQi9i -----END CERTIFICATE-----Generated at Fri Jan 2 11:31:02 2026 by rpki-client