This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: mNp1Cd1MfUYbY76OqhZBudbMCAUn2bGMXGIwYkv60nM= Subject key identifier: 7A:FA:2B:01:0F:52:9D:70:34:13:9F:5F:94:86:F6:7D:4F:BA:45:AC Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 12FD Signing time: Mon 22 Dec 2025 16:44:52 +0000 Manifest this update: Mon 22 Dec 2025 16:44:52 +0000 Manifest next update: Mon 29 Dec 2025 16:44:52 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: B2VU+z0PezwIwvyMPb1Z1uN/Iuusb9MWS9BIGb7oVyI=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: OXXzoi8LLX55gX/DfWbkzrbLh+Han7QgMUGkYSwbpGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4869 (0x1305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Dec 22 16:44:52 2025 GMT Not After : Dec 29 16:44:52 2025 GMT Subject: CN=69497584-d37a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:01:a9:5d:6c:a5:c6:db:d9:e2:4e:11:29:a0: 54:82:b3:74:e0:3d:9a:2f:ec:b1:98:9c:02:08:01: e2:98:a6:7f:37:98:e9:a7:1f:26:25:d1:54:f6:37: e3:a9:bf:99:3d:f5:c0:42:b9:95:75:66:51:8a:fb: e7:ae:0b:02:ef:1a:57:6b:4d:5f:3e:70:3d:b9:28: e7:18:86:05:bd:eb:0f:e6:1f:03:50:a2:bf:9e:cc: 3a:40:90:6d:2f:16:19:82:b3:a6:7b:fd:cc:e4:f2: 49:f6:b8:40:f5:40:56:1d:7c:78:45:ad:f6:ee:55: 18:ba:9c:ca:29:22:7f:4e:e1:64:6d:91:57:b6:af: 12:be:97:29:ad:55:43:74:2e:29:20:5d:fc:31:1f: 10:9f:dd:f4:36:1f:de:cb:0a:98:0f:81:bc:ce:e8: 93:94:d5:4d:e2:87:40:ee:e8:6d:7c:8a:ee:8a:4c: ff:bc:66:01:67:cd:1b:e9:95:ca:d2:3e:12:05:08: 19:a8:9c:45:31:4c:73:a8:ed:f8:11:f3:b5:46:01: bc:8e:93:d2:1e:b8:48:2b:07:01:f0:a2:18:84:a0: ea:c4:6a:11:e6:c6:c4:c7:21:0f:5a:b7:7c:1f:49: 3a:e5:96:5a:ee:99:ba:55:15:b7:86:ee:7b:a3:11: 1b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FA:2B:01:0F:52:9D:70:34:13:9F:5F:94:86:F6:7D:4F:BA:45:AC X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ef:33:49:11:cc:0b:1e:53:06:9d:91:25:04:37:5c:50:d9: 54:a7:4f:7c:5f:98:33:2e:1f:fb:41:60:38:a7:fd:94:eb:cf: 28:fc:ab:6a:ea:b9:34:19:47:c4:fb:30:1e:68:ed:48:76:61: 0e:fe:b8:17:5a:57:5e:16:12:f9:b1:e4:cc:c9:f6:39:a7:ae: 66:99:76:05:8a:21:cd:e1:58:62:2d:43:b5:c9:68:e3:d9:eb: 14:7c:1d:64:bd:73:73:b5:0b:ad:76:b0:48:89:a1:91:dc:1e: 50:40:10:99:ce:39:35:1a:39:f1:5c:0f:65:63:22:83:70:00: 14:02:b1:e0:28:a5:e5:cc:79:fe:75:d8:9b:8b:a5:c8:fa:9b: bc:7d:0d:a9:93:b7:ac:d3:d6:b6:a0:67:b9:25:4f:b2:1a:96: 6f:c2:f1:8f:d6:cf:1e:61:fb:a8:d7:97:63:38:d1:f4:00:02: eb:5f:42:28:3a:a9:f5:f9:6f:36:98:b1:3b:79:32:f1:84:e3: f0:55:71:2b:88:a2:9f:1b:c5:ff:a7:65:7d:fd:36:1d:ec:e5: 74:99:f9:c3:b5:17:32:48:d0:59:da:58:c0:9b:8b:5e:8b:c2: 76:a5:26:cc:8f:b5:43:18:70:e0:59:72:df:8e:0b:b1:70:2d: ae:80:b4:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUxMjIyMTY0NDUyWhcNMjUxMjI5MTY0NDUyWjAYMRYwFAYD VQQDDA02OTQ5NzU4NC1kMzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQGpXWylxtvZ4k4RKaBUgrN04D2aL+yxmJwCCAHimKZ/N5jppx8mJdFU9jfj qb+ZPfXAQrmVdWZRivvnrgsC7xpXa01fPnA9uSjnGIYFvesP5h8DUKK/nsw6QJBt LxYZgrOme/3M5PJJ9rhA9UBWHXx4Ra327lUYupzKKSJ/TuFkbZFXtq8SvpcprVVD dC4pIF38MR8Qn930Nh/eywqYD4G8zuiTlNVN4odA7uhtfIruikz/vGYBZ80b6ZXK 0j4SBQgZqJxFMUxzqO34EfO1RgG8jpPSHrhIKwcB8KIYhKDqxGoR5sbExyEPWrd8 H0k65ZZa7pm6VRW3hu57oxEbcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHr6KwEP Up1wNBOfX5SG9n1PukWsMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+7zNJEcwLHlMGnZElBDdcUNlUp098X5gzLh/7QWA4p/2U688o/Ktq 6rk0GUfE+zAeaO1IdmEO/rgXWldeFhL5seTMyfY5p65mmXYFiiHN4VhiLUO1yWjj 2esUfB1kvXNztQutdrBIiaGR3B5QQBCZzjk1GjnxXA9lYyKDcAAUArHgKKXlzHn+ ddibi6XI+pu8fQ2pk7es09a2oGe5JU+yGpZvwvGP1s8eYfuo15djONH0AALrX0Io Oqn1+W82mLE7eTLxhOPwVXEriKKfG8X/p2V9/TYd7OV0mfnDtRcySNBZ2ljAm4te i8J2pSbMj7VDGHDgWXLfjguxcC2ugLTa -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:31 2025 by rpki-client