This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft File: TiH1qoySjAtnV8A-VbClkjxOSKs.mft (raw, json) Hash identifier: 4+vBRPAS4GN4Oi4V1Tu3eCAywyg5J3vQJQu4m0soAtA= Subject key identifier: 75:4A:3A:F8:F8:F1:1D:49:2E:94:74:E9:27:2E:07:80:D0:57:D6:7A Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft Manifest number: 01A2 Signing time: Mon 29 Dec 2025 02:30:38 +0000 Manifest this update: Mon 29 Dec 2025 02:30:37 +0000 Manifest next update: Mon 05 Jan 2026 02:30:37 +0000 Files and hashes: 1: TiH1qoySjAtnV8A-VbClkjxOSKs.crl (hash: qu2UESzxQUtrB8XS8KwkJ3rFcV+JcHoxTxuv7a8n/DI=) 2: F97DB5F229A111F090BC8163C4F9AE02.roa (hash: 3een9y7QYXPUAanRr23KUG0CVwN0O03Dxs8PdOWYvII=) 3: E586278C29A111F0BA1F4E63C4F9AE02.roa (hash: b4SLVAUnbqCe1KbDRVFMh4aQOBLAbqbSRgJNk8aPOZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 02:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79, serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Dec 29 02:30:37 2025 GMT Not After : Jan 5 02:30:37 2026 GMT Subject: CN=6951e7ce-984c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:ea:af:98:70:a7:0a:f7:28:ca:a4:53:97: 46:4c:00:cb:83:67:1d:fb:4d:64:d5:ae:05:3e:84: 16:ac:cb:fd:b4:4d:2a:68:41:2b:95:b9:97:92:3f: 79:4b:67:32:c7:47:ff:16:a9:c2:2a:ca:83:4c:03: de:cc:7d:dd:8c:6e:7b:97:c3:29:f5:0d:e5:f9:5a: 61:30:7b:a7:e4:a2:89:e5:07:42:05:26:cf:86:18: 48:a8:1a:f9:ca:0c:27:1f:0c:a2:10:44:3a:6b:c8: 1f:d9:f4:dd:e5:fb:39:7c:4d:7f:f3:0c:b6:31:8b: 1c:ec:a0:ef:92:2b:bc:9d:f1:6a:d8:7a:a7:3d:b7: 8a:7b:be:a7:44:b5:1e:4f:72:79:30:ea:5f:53:96: 78:83:a3:bb:53:db:cd:42:72:6f:70:fc:16:dc:7c: 67:d7:fc:83:60:c0:6d:dc:4d:34:c5:a3:a6:2d:80: 24:51:8a:9b:ec:98:48:8b:28:c3:82:89:a5:48:ae: d1:6f:27:19:09:0f:38:fc:b5:b6:c4:9a:72:6a:57: 24:3b:7a:55:a9:eb:75:24:58:a4:38:0e:a4:7d:e6: d8:4f:29:a5:30:d6:bb:2e:a2:24:b9:b6:db:4d:e3: ae:9b:ab:17:64:25:67:38:1c:d4:59:a9:70:12:47: c3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4A:3A:F8:F8:F1:1D:49:2E:94:74:E9:27:2E:07:80:D0:57:D6:7A X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:76:99:30:b5:ed:72:e9:c5:58:24:20:bf:42:29:dc:6e:46: 4e:d1:b3:d5:01:f2:de:54:5e:c7:00:d3:36:e0:20:7a:50:1e: ee:b6:31:ed:04:41:c9:21:2a:00:fd:c6:06:de:c8:49:a8:02: 87:e7:ba:f6:e9:d8:27:d9:8a:60:67:68:24:2e:0c:1e:94:fc: 8b:00:59:cf:9f:0e:19:32:0b:66:61:a9:6d:37:d6:f3:98:57: 2a:22:c8:57:a8:11:61:14:2d:12:11:5d:25:52:2d:a5:05:f5: ca:42:e4:c7:78:6a:86:da:fe:4f:04:3d:d5:25:db:06:e3:cd: 13:7c:90:e9:cd:cc:88:35:92:93:46:fa:57:95:bc:9c:57:af: 75:6f:f4:d1:be:7a:69:41:42:f0:a7:c3:72:86:0b:cf:7b:57: e3:3a:17:df:7b:78:82:4b:bf:6c:50:4b:ca:23:f3:6d:87:3e: 40:6b:58:93:69:06:da:c0:d6:54:89:b4:f0:86:d6:13:02:44: 4e:cd:43:d7:2a:b6:e8:a1:12:a7:a5:ef:85:25:fa:6b:75:19: 56:5a:07:02:4f:cb:81:c6:3a:eb:b2:57:8f:7a:c5:8b:58:08: 36:a0:36:99:d4:5b:a4:92:13:af:29:c4:29:a3:01:23:6c:33: 21:71:68:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjUxMjI5MDIzMDM3WhcNMjYwMTA1MDIzMDM3WjAYMRYwFAYD VQQDDA02OTUxZTdjZS05ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCjqr5hwpwr3KMqkU5dGTADLg2cd+01k1a4FPoQWrMv9tE0qaEErlbmXkj95 S2cyx0f/FqnCKsqDTAPezH3djG57l8Mp9Q3l+VphMHun5KKJ5QdCBSbPhhhIqBr5 ygwnHwyiEEQ6a8gf2fTd5fs5fE1/8wy2MYsc7KDvkiu8nfFq2HqnPbeKe76nRLUe T3J5MOpfU5Z4g6O7U9vNQnJvcPwW3Hxn1/yDYMBt3E00xaOmLYAkUYqb7JhIiyjD gomlSK7RbycZCQ84/LW2xJpyalckO3pVqet1JFikOA6kfebYTymlMNa7LqIkubbb TeOum6sXZCVnOBzUWalwEkfDJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVKOvj4 8R1JLpR06ScuB4DQV9Z6MB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEQ3OS9FMTgyMDhCQzZEOUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pB dG5WOEEtVmJDbGtqeE9TS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1dpkwte1y6cVYJCC/QincbkZO0bPVAfLeVF7HANM24CB6UB7utjHt BEHJISoA/cYG3shJqAKH57r26dgn2YpgZ2gkLgwelPyLAFnPnw4ZMgtmYaltN9bz mFcqIshXqBFhFC0SEV0lUi2lBfXKQuTHeGqG2v5PBD3VJdsG480TfJDpzcyINZKT RvpXlbycV691b/TRvnppQULwp8NyhgvPe1fjOhffe3iCS79sUEvKI/Nthz5Aa1iT aQbawNZUibTwhtYTAkROzUPXKrbooRKnpe+FJfprdRlWWgcCT8uBxjrrslePesWL WAg2oDaZ1FukkhOvKcQpowEjbDMhcWi/ -----END CERTIFICATE-----Generated at Tue Dec 30 18:41:28 2025 by rpki-client