This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft File: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft (raw, json) Hash identifier: jSKLoKlLgZCHAnKF4vX3VTRZ2oVtAqpbRq2QUQbNHTk= Subject key identifier: 86:A1:2B:35:68:2B:36:DB:FA:1A:C5:24:33:65:0A:81:C0:B5:A6:A5 Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 04C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft Manifest number: 04BE Signing time: Thu 18 Dec 2025 23:12:13 +0000 Manifest this update: Thu 18 Dec 2025 23:12:12 +0000 Manifest next update: Thu 25 Dec 2025 23:12:12 +0000 Files and hashes: 1: Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl (hash: ekjfZRkjCiWrp5CojBmGSTZjsBAIwbrX7ChUVgJDU+E=) 2: F593443851B011ECB5188E24C4F9AE02.roa (hash: CA35rH85+j+YJMr1xe8QwPujExClO3AIGNQ5xuf0vDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1218 (0x4c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC, serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Dec 18 23:12:12 2025 GMT Not After : Dec 25 23:12:12 2025 GMT Subject: CN=69448a4c-bb13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:30:3d:6a:03:8a:d4:40:68:ef:b3:65:f8:3b: 3b:7c:bc:7d:46:5f:5e:39:3d:a2:dd:a7:91:b4:ad: 20:db:31:b1:e9:2f:86:20:4a:bf:f2:90:14:55:a8: ad:d9:37:66:80:af:6d:da:31:4e:8f:8a:4c:43:f1: 88:b3:fb:cd:34:1b:e3:48:fb:f5:49:1b:f4:0c:f1: e8:e4:bc:51:23:d3:04:f7:97:cc:85:d9:e6:b4:84: a9:37:ad:04:8f:2f:a8:63:ef:39:dd:65:38:72:f4: d7:17:b5:f3:94:f0:c8:f7:5d:7f:57:2e:54:69:6b: e2:de:fb:82:74:1e:12:7f:f8:c6:7c:f0:56:e2:54: 75:ea:5c:2c:08:2d:b8:69:0f:d7:55:d5:7c:1a:18: 6c:13:5a:e3:7e:19:2b:41:65:91:7d:6b:9a:86:d0: 13:33:ae:f1:b2:79:75:d9:9c:91:48:0e:6c:5e:19: 41:bb:c9:59:0b:55:03:4d:43:a5:e8:40:93:99:bd: eb:34:fe:52:ec:6e:b0:eb:9b:fc:e1:56:7e:55:10: 1c:12:49:ef:ac:55:17:90:0a:9e:3e:a3:f8:5a:f7: d1:7f:44:fb:67:c4:a7:e2:8c:76:33:bb:48:c7:82: 92:b2:07:5d:1a:0f:3b:a2:c4:c5:d4:c6:91:a8:21: 12:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A1:2B:35:68:2B:36:DB:FA:1A:C5:24:33:65:0A:81:C0:B5:A6:A5 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3d:46:8d:b0:f3:c8:e0:0d:68:b3:f7:fd:25:7d:47:83:c3: a1:6d:a9:79:dc:7e:66:a1:87:6e:24:83:02:ec:4c:cf:07:84: e6:b5:d7:62:21:f8:41:67:2f:e6:a5:34:7f:ee:80:c7:52:66: 95:05:ca:76:00:89:d4:da:a1:60:1e:bb:d5:33:ff:5e:b1:80: aa:c1:2f:a3:85:b1:20:f8:a0:6d:3b:65:0a:80:cd:84:6e:a3: 75:cf:2a:e0:f6:a2:fb:6d:92:88:94:99:5e:30:c2:7a:6b:45: b6:a1:b1:dd:20:0a:a3:62:cb:de:6e:59:1b:83:c2:02:b1:58: 9b:f2:11:4f:05:fa:b8:a9:a2:f7:1d:a8:9f:6c:72:a9:27:14: 4e:d8:81:f7:12:ae:c7:85:f7:13:b3:9f:8d:2a:47:44:93:0b: 56:0b:2d:3f:6b:ad:91:0c:85:60:49:05:3e:64:99:6c:57:74: fc:9c:be:9c:55:d4:18:8d:97:be:19:32:b7:2d:7c:72:0d:e3: e3:26:76:45:fb:e1:9d:ed:a4:9a:c5:e0:2a:42:66:7e:de:68: 21:79:54:ed:70:7c:86:fe:94:97:30:9e:d2:d4:83:d4:c1:e6: a7:45:6f:f9:b6:ed:1a:79:3f:37:e2:07:5b:17:ab:67:9a:17: 68:49:e7:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjUxMjE4MjMxMjEyWhcNMjUxMjI1MjMxMjEyWjAYMRYwFAYD VQQDDA02OTQ0OGE0Yy1iYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzA9agOK1EBo77Nl+Ds7fLx9Rl9eOT2i3aeRtK0g2zGx6S+GIEq/8pAUVait 2TdmgK9t2jFOj4pMQ/GIs/vNNBvjSPv1SRv0DPHo5LxRI9ME95fMhdnmtISpN60E jy+oY+853WU4cvTXF7XzlPDI911/Vy5UaWvi3vuCdB4Sf/jGfPBW4lR16lwsCC24 aQ/XVdV8GhhsE1rjfhkrQWWRfWuahtATM67xsnl12ZyRSA5sXhlBu8lZC1UDTUOl 6ECTmb3rNP5S7G6w65v84VZ+VRAcEknvrFUXkAqePqP4WvfRf0T7Z8Sn4ox2M7tI x4KSsgddGg87osTF1MaRqCESSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIahKzVo Kzbb+hrFJDNlCoHAtaalMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRCQy9BOTcwQjJFQzUxQUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYw Rk5CUmlMU0N4NFNPYnpGaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcPUaNsPPI4A1os/f9JX1Hg8Ohbal53H5moYduJIMC7EzPB4Tmtddi IfhBZy/mpTR/7oDHUmaVBcp2AInU2qFgHrvVM/9esYCqwS+jhbEg+KBtO2UKgM2E bqN1zyrg9qL7bZKIlJleMMJ6a0W2obHdIAqjYsveblkbg8ICsVib8hFPBfq4qaL3 HaifbHKpJxRO2IH3Eq7HhfcTs5+NKkdEkwtWCy0/a62RDIVgSQU+ZJlsV3T8nL6c VdQYjZe+GTK3LXxyDePjJnZF++Gd7aSaxeAqQmZ+3mgheVTtcHyG/pSXMJ7S1IPU weanRW/5tu0aeT834gdbF6tnmhdoSedu -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:09 2025 by rpki-client