This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: nHzXDoCbUY5ZKVUEhXT0tshzP9BxvEnQP/lal8AvONA= Subject key identifier: D1:74:48:FE:9E:FB:1D:5F:2B:FD:73:86:7C:BE:C2:98:AC:9A:94:AA Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 014C Signing time: Sun 21 Dec 2025 03:27:00 +0000 Manifest this update: Sun 21 Dec 2025 03:27:00 +0000 Manifest next update: Sun 28 Dec 2025 03:27:00 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: YiOcJyAJ18dJjdjgCgIzD4IJsIowO08u9AiCKTTDuDI=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: VIkL73Ao9GMOlF5higO2xRTxCND3iZkpVBfNLk5tPMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95, serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Dec 21 03:27:00 2025 GMT Not After : Dec 28 03:27:00 2025 GMT Subject: CN=69476904-47cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:fc:dc:61:10:27:e3:6d:89:e5:78:91:0d: aa:26:91:36:a8:32:64:dd:3d:05:94:40:52:09:e9: 4f:bd:b8:87:6d:25:5b:cd:03:ba:67:08:c8:73:b3: 46:18:93:7e:80:e1:d3:04:b5:c3:2c:fb:55:a8:8b: e5:07:ef:1e:6d:c8:38:46:c5:9c:1c:06:3b:26:56: 87:2e:fc:fc:28:b1:2b:ad:cc:46:a5:75:d8:3f:66: 7a:39:3f:67:db:ec:f7:9e:69:72:57:e5:f9:d7:76: 56:a3:01:df:ca:2e:7b:b4:21:99:d3:c7:98:34:02: ac:bc:42:20:7e:15:1a:0c:c1:b0:0d:8e:7a:be:b2: e6:1f:6a:c9:bb:ff:d9:be:10:83:0e:02:fc:52:ce: 2b:ca:b1:c0:12:8e:ec:94:1e:1b:d8:2d:45:66:2a: 66:75:be:76:05:2b:9c:b7:50:14:10:12:81:75:80: 3d:26:35:bf:86:bc:5e:0a:69:77:76:ec:3b:a6:17: e1:f5:e4:25:bb:ed:e3:8b:9e:e0:46:e3:02:7d:68: a3:60:5f:97:55:e6:e9:e1:74:4f:25:66:08:89:db: eb:63:02:50:28:64:1e:04:4c:0b:7d:5a:88:31:e2: 43:c6:e6:18:1c:f0:48:15:de:34:20:c0:da:d7:c6: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:74:48:FE:9E:FB:1D:5F:2B:FD:73:86:7C:BE:C2:98:AC:9A:94:AA X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:d0:6c:2f:12:83:b8:63:3c:2f:4f:19:11:d5:88:e7:94:7c: fd:ef:73:f6:90:d2:84:37:8b:c4:4c:f0:c4:5c:ec:0a:f6:bc: 01:90:bf:2b:74:26:07:83:ca:30:82:b4:1d:3b:79:03:a8:f6: b0:7e:73:95:44:62:90:66:ad:ca:4b:d8:d3:4b:40:46:05:87: 2d:a4:6a:cc:f0:e5:a9:5d:2a:61:c3:9b:3c:a8:1c:4a:e4:13: 0c:c5:2c:77:df:9d:e5:e6:39:91:a3:55:ec:f6:b9:57:4c:86: 56:78:23:e9:4e:b7:d9:1d:1d:89:91:f8:5b:30:f6:e4:5e:a4: 41:1e:0f:d7:db:c3:a3:09:69:79:c4:65:c3:2c:4a:08:a7:ba: f3:2b:55:da:68:8a:f9:42:73:1c:01:9e:1f:fa:7d:11:eb:31: 3f:14:c5:49:9d:91:7b:e6:64:1d:e6:dc:46:01:64:bb:bc:e4: 33:ac:ab:2d:71:ec:94:f7:b5:07:a2:e4:3b:67:7c:dd:c2:61: a3:79:1a:1e:92:80:65:7f:4d:60:42:8f:76:3f:58:69:87:98: 3e:d5:e4:40:0f:42:c5:fc:aa:a3:ba:cb:07:2f:27:c9:af:a4: 3c:f7:ce:ac:73:57:d7:0b:33:51:2b:e9:27:2a:2f:ab:dc:05: 62:11:47:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjUxMjIxMDMyNzAwWhcNMjUxMjI4MDMyNzAwWjAYMRYwFAYD VQQDDA02OTQ3NjkwNC00N2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBL83GEQJ+NtieV4kQ2qJpE2qDJk3T0FlEBSCelPvbiHbSVbzQO6ZwjIc7NG GJN+gOHTBLXDLPtVqIvlB+8ebcg4RsWcHAY7JlaHLvz8KLErrcxGpXXYP2Z6OT9n 2+z3nmlyV+X513ZWowHfyi57tCGZ08eYNAKsvEIgfhUaDMGwDY56vrLmH2rJu//Z vhCDDgL8Us4ryrHAEo7slB4b2C1FZipmdb52BSuct1AUEBKBdYA9JjW/hrxeCml3 duw7phfh9eQlu+3ji57gRuMCfWijYF+XVebp4XRPJWYIidvrYwJQKGQeBEwLfVqI MeJDxuYYHPBIFd40IMDa18Yt4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNF0SP6e +x1fK/1zhny+wpismpSqMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB40GwvEoO4YzwvTxkR1YjnlHz973P2kNKEN4vETPDEXOwK9rwBkL8r dCYHg8owgrQdO3kDqPawfnOVRGKQZq3KS9jTS0BGBYctpGrM8OWpXSphw5s8qBxK 5BMMxSx3353l5jmRo1Xs9rlXTIZWeCPpTrfZHR2JkfhbMPbkXqRBHg/X28OjCWl5 xGXDLEoIp7rzK1XaaIr5QnMcAZ4f+n0R6zE/FMVJnZF75mQd5txGAWS7vOQzrKst ceyU97UHouQ7Z3zdwmGjeRoekoBlf01gQo92P1hph5g+1eRAD0LF/KqjussHLyfJ r6Q8986sc1fXCzNRK+knKi+r3AViEUdh -----END CERTIFICATE-----Generated at Sun Dec 21 16:16:50 2025 by rpki-client