This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft File: TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft (raw, json) Hash identifier: 5otY2cJt4pOX4fth8I3ZdmNrRnwusVyjMkKGMoCgiFI= Subject key identifier: D7:16:77:31:52:A7:29:53:56:4A:20:78:79:47:19:C0:CD:41:92:B6 Authority key identifier: 4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D Certificate issuer: /CN=A91847A4/serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft Manifest number: 91 Signing time: Tue 23 Dec 2025 05:28:57 +0000 Manifest this update: Tue 23 Dec 2025 05:28:57 +0000 Manifest next update: Tue 30 Dec 2025 05:28:57 +0000 Files and hashes: 1: TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl (hash: Hw7Aj59ERXXGluQQdFIEP4CMccC7cYYDzUKHy3P4xp8=) 2: 1201EAF6083911F0B43D9172C4F9AE02.roa (hash: J+SOazezAnnNxrhHdeWBnb2C7IQYkYVgwLiko+keJWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A4, serialNumber=4CDF99E707F902338E14D510249A9625BCA0FF9D Validity Not Before: Dec 23 05:28:57 2025 GMT Not After : Dec 30 05:28:57 2025 GMT Subject: CN=694a2899-f1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:9b:24:be:0e:d9:33:21:eb:3c:9c:5b:62: 12:44:c2:b2:d1:ea:2f:d0:86:49:f5:b7:47:5b:76: f7:66:9f:31:69:ee:fd:a1:06:6a:7a:24:aa:91:f3: a6:b4:d6:ef:a9:bc:ab:ab:0a:fb:1f:96:5d:9e:fe: 61:61:50:36:c0:23:21:23:84:a3:72:a3:56:97:e7: 53:7c:d5:a0:be:61:ce:90:d5:51:0f:d7:20:3b:17: 95:7b:a8:01:8a:55:23:df:59:f3:e1:cb:b6:92:75: 08:25:ef:c6:c1:87:a1:ca:92:cd:28:13:c2:40:c3: 16:ec:2c:3e:32:3c:ce:b8:2e:a0:84:fa:99:47:ae: 94:33:cd:fe:14:fc:1e:37:c6:8d:85:b8:bb:22:a5: 2b:43:47:34:9c:4b:73:f3:1f:17:37:62:c9:b3:2f: 3d:19:d1:4c:b7:bd:f8:05:30:86:e1:12:74:5c:b7: e6:39:b4:dc:d2:a1:6b:e7:c7:33:17:31:d5:f6:1c: b0:30:13:8b:9f:b1:c4:aa:97:49:f7:d0:eb:cd:59: 34:c4:00:20:e7:58:fd:78:c5:6e:c1:63:71:a1:c1: 29:f4:f2:17:81:3d:6b:38:16:9d:5f:90:eb:15:18: 58:1b:8e:f2:30:b4:54:30:0e:06:cc:9b:64:14:07: f1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:16:77:31:52:A7:29:53:56:4A:20:78:79:47:19:C0:CD:41:92:B6 X509v3 Authority Key Identifier: keyid:4C:DF:99:E7:07:F9:02:33:8E:14:D5:10:24:9A:96:25:BC:A0:FF:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TN-Z5wf5AjOOFNUQJJqWJbyg_50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A4/F29EB20A07E011F0B6185162C4F9AE02/TN-Z5wf5AjOOFNUQJJqWJbyg_50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:04:01:65:90:ae:e6:76:f5:b7:df:68:05:88:0e:73:be:ff: 39:8b:6e:30:fa:44:8f:b6:a9:b7:7f:bd:77:05:a1:22:19:83: 94:fa:77:29:cb:1a:fb:69:d6:c9:d6:7f:fa:8a:0f:38:4e:c7: b2:c9:f5:c2:b7:ca:a2:a9:87:eb:7c:3d:9e:8b:fc:d1:cf:12: 19:15:cb:35:c1:5e:36:4e:79:67:05:68:c5:4f:0c:54:83:2f: 58:43:af:eb:53:6c:1b:bd:7e:36:63:0a:10:a0:a4:d1:26:28: f5:c2:8b:a8:70:ed:be:4b:4e:d1:ed:51:13:3a:df:fb:1c:dd: 69:76:fc:fb:cf:0b:7d:8a:b0:aa:46:7a:a0:d0:90:b7:0d:cb: 00:5a:f8:c6:cf:3e:8f:58:55:8f:8c:57:c7:7e:a1:b8:46:70: 5f:d2:72:31:76:7d:b4:28:f5:72:b5:c1:ad:8d:72:7d:f7:bf: 7a:23:8e:23:75:14:55:1b:c4:64:1a:d5:bf:4d:85:0b:07:1f: 08:20:1a:5d:b5:4d:ca:38:14:89:2d:f5:63:75:bb:da:45:d2: b7:86:b4:67:b2:fb:be:c7:32:ca:e2:18:10:36:ca:87:58:08: af:2c:09:ee:c5:0e:c3:1c:2f:83:9e:91:53:7e:04:25:54:80: 1d:b2:8c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTQxMTAvBgNVBAUTKDRDREY5OUU3MDdGOTAyMzM4RTE0RDUxMDI0OUE5NjI1 QkNBMEZGOUQwHhcNMjUxMjIzMDUyODU3WhcNMjUxMjMwMDUyODU3WjAYMRYwFAYD VQQDDA02OTRhMjg5OS1mMWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FebJL4O2TMh6zycW2ISRMKy0eov0IZJ9bdHW3b3Zp8xae79oQZqeiSqkfOm tNbvqbyrqwr7H5Zdnv5hYVA2wCMhI4SjcqNWl+dTfNWgvmHOkNVRD9cgOxeVe6gB ilUj31nz4cu2knUIJe/GwYehypLNKBPCQMMW7Cw+MjzOuC6ghPqZR66UM83+FPwe N8aNhbi7IqUrQ0c0nEtz8x8XN2LJsy89GdFMt734BTCG4RJ0XLfmObTc0qFr58cz FzHV9hywMBOLn7HEqpdJ99DrzVk0xAAg51j9eMVuwWNxocEp9PIXgT1rOBadX5Dr FRhYG47yMLRUMA4GzJtkFAfx/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcWdzFS pylTVkogeHlHGcDNQZK2MB8GA1UdIwQYMBaAFEzfmecH+QIzjhTVECSaliW8oP+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBNC9GMjlFQjIwQTA3 RTAxMUYwQjYxODUxNjJDNEY5QUUwMi9UTi1aNXdmNUFqT09GTlVRSkpxV0pieWdf NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ROLVo1d2Y1QWpPT0ZOVVFKSnFXSmJ5Z181MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBNC9GMjlFQjIwQTA3RTAxMUYwQjYxODUxNjJDNEY5QUUwMi9UTi1aNXdmNUFq T09GTlVRSkpxV0pieWdfNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfBAFlkK7mdvW332gFiA5zvv85i24w+kSPtqm3f713BaEiGYOU+ncp yxr7adbJ1n/6ig84TseyyfXCt8qiqYfrfD2ei/zRzxIZFcs1wV42TnlnBWjFTwxU gy9YQ6/rU2wbvX42YwoQoKTRJij1wouocO2+S07R7VETOt/7HN1pdvz7zwt9irCq Rnqg0JC3DcsAWvjGzz6PWFWPjFfHfqG4RnBf0nIxdn20KPVytcGtjXJ99796I44j dRRVG8RkGtW/TYULBx8IIBpdtU3KOBSJLfVjdbvaRdK3hrRnsvu+xzLK4hgQNsqH WAivLAnuxQ7DHC+DnpFTfgQlVIAdsoz0 -----END CERTIFICATE-----Generated at Wed Dec 24 13:40:07 2025 by rpki-client