This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: UKdOQEatQ0CEp9v0IyBFMo/YreRqfcnOSJTjxbeRhDM= Subject key identifier: DE:D7:E3:54:11:69:4D:BF:9A:EC:34:B1:F3:2B:42:4E:6B:0F:8A:4C Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0E7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0E71 Signing time: Thu 18 Dec 2025 17:32:22 +0000 Manifest this update: Thu 18 Dec 2025 17:32:22 +0000 Manifest next update: Thu 25 Dec 2025 17:32:22 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: eBmLbbIR6Nsjs8WW9/Oq/zC95e+HUjABrCo4LVMpgp8=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: Kmbnqjt+FsbQjmxP1orKor9zYnpCPWPxfhoKQqbWYu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3709 (0xe7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Dec 18 17:32:22 2025 GMT Not After : Dec 25 17:32:22 2025 GMT Subject: CN=69443aa6-103f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:df:2d:dc:7b:3c:6f:f5:a2:c2:9b:6d:c1: ec:6a:99:ab:68:89:6b:b5:76:67:16:7b:a4:f6:30: fe:b2:a1:39:3b:c8:46:64:dd:7f:a9:1e:d9:ee:aa: 13:cc:09:60:74:c5:44:e2:f2:c4:e4:c5:16:55:29: 27:7d:87:bb:7e:69:37:05:5e:6d:5b:30:70:f6:90: be:11:56:1f:15:30:db:d9:12:1b:d5:19:10:a3:0b: 9f:a5:a0:23:38:09:65:8d:62:e8:f2:87:36:65:2f: c4:6a:02:99:ab:59:96:e2:f6:01:04:e6:d8:ec:ed: ab:06:76:4e:61:d2:27:c5:07:d3:ee:8e:09:5b:bb: 55:d1:0e:05:61:39:23:eb:51:7f:1c:5f:fd:07:aa: f1:79:4b:81:5b:8d:c9:3d:e6:ed:a6:8e:2f:15:d3: 54:9b:20:b6:f0:28:54:64:16:25:c5:20:82:e4:e2: 5e:df:da:03:50:29:07:ab:55:ba:02:aa:bd:75:7b: 98:74:15:b0:af:55:73:f5:27:52:0a:08:46:ea:36: f7:c6:f6:3a:b4:2b:21:c8:82:19:1a:2d:07:be:0d: f1:7e:ef:a2:f9:70:95:2a:68:e8:1e:46:8e:49:e6: bb:f7:bc:2f:48:a8:1f:40:42:10:72:73:ae:93:3e: 29:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D7:E3:54:11:69:4D:BF:9A:EC:34:B1:F3:2B:42:4E:6B:0F:8A:4C X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:18:33:bb:5e:d2:66:7c:1c:fa:40:23:51:5e:fd:d6:c4:b4: 9e:fc:8d:93:09:23:55:37:81:e7:12:0d:8b:3b:6e:07:52:1d: 97:23:9b:69:71:46:1c:25:64:f2:f7:22:db:cb:a9:de:55:67: db:ea:22:81:2f:05:3d:db:d2:1f:58:97:9a:38:35:66:5b:13: c9:0e:96:43:68:21:af:d4:db:fd:88:3e:9e:10:5b:fb:a7:b4: 5f:c5:d3:4a:1b:73:81:aa:a2:54:58:b3:b0:ff:f6:c9:0c:9a: 45:6e:91:b6:b5:d9:94:49:c3:ec:10:c1:79:73:58:81:86:96: d8:eb:55:9d:d0:34:bc:81:8c:a0:62:7f:64:f9:cd:e4:b2:39: 47:cb:b6:1e:96:dc:23:ac:61:0a:19:78:3f:f5:c2:b8:4a:24: e8:e1:c3:8c:52:40:53:7c:40:f7:ac:97:61:a0:b6:d4:3b:f7: d6:d8:f9:e0:fd:62:25:7a:a6:84:4b:ea:7f:b2:98:64:28:72: 5f:ab:a9:aa:61:29:c2:0c:7c:16:17:01:58:b0:79:fb:95:f4: bb:25:9a:bd:31:eb:35:21:1a:25:53:02:9b:42:87:4d:97:be: 97:a2:3c:52:94:d1:77:1a:50:9d:47:3f:74:d9:9e:72:ac:d3: ea:2d:91:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUxMjE4MTczMjIyWhcNMjUxMjI1MTczMjIyWjAYMRYwFAYD VQQDDA02OTQ0M2FhNi0xMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSrfLdx7PG/1osKbbcHsapmraIlrtXZnFnuk9jD+sqE5O8hGZN1/qR7Z7qoT zAlgdMVE4vLE5MUWVSknfYe7fmk3BV5tWzBw9pC+EVYfFTDb2RIb1RkQowufpaAj OAlljWLo8oc2ZS/EagKZq1mW4vYBBObY7O2rBnZOYdInxQfT7o4JW7tV0Q4FYTkj 61F/HF/9B6rxeUuBW43JPebtpo4vFdNUmyC28ChUZBYlxSCC5OJe39oDUCkHq1W6 Aqq9dXuYdBWwr1Vz9SdSCghG6jb3xvY6tCshyIIZGi0Hvg3xfu+i+XCVKmjoHkaO Sea797wvSKgfQEIQcnOukz4pwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7X41QR aU2/muw0sfMrQk5rD4pMMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqGDO7XtJmfBz6QCNRXv3WxLSe/I2TCSNVN4HnEg2LO24HUh2XI5tp cUYcJWTy9yLby6neVWfb6iKBLwU929IfWJeaODVmWxPJDpZDaCGv1Nv9iD6eEFv7 p7RfxdNKG3OBqqJUWLOw//bJDJpFbpG2tdmUScPsEMF5c1iBhpbY61Wd0DS8gYyg Yn9k+c3ksjlHy7YeltwjrGEKGXg/9cK4SiTo4cOMUkBTfED3rJdhoLbUO/fW2Png /WIleqaES+p/sphkKHJfq6mqYSnCDHwWFwFYsHn7lfS7JZq9Mes1IRolUwKbQodN l76XojxSlNF3GlCdRz902Z5yrNPqLZHW -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:04 2025 by rpki-client