This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft File: tIPaBfgQj61WuWetrdJRxslpwlI.mft (raw, json) Hash identifier: kQeufJfEB0eO/9dcW0JKcKSgANWzawtaQ/mksL0d3Ck= Subject key identifier: 89:57:F4:15:FE:B7:E9:1D:F2:83:25:F7:2E:2A:7C:58:9E:B3:A4:1A Authority key identifier: B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 Certificate issuer: /CN=A91178F4/serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft Manifest number: 01E3 Signing time: Tue 02 Dec 2025 18:22:51 +0000 Manifest this update: Tue 02 Dec 2025 18:22:50 +0000 Manifest next update: Tue 09 Dec 2025 18:22:50 +0000 Files and hashes: 1: tIPaBfgQj61WuWetrdJRxslpwlI.crl (hash: vgcwY0pIvkQqQN2YJ6k8v82mPOx8TpWFA6i/fCHHpAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 18:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91178F4, serialNumber=B483DA05F8108FAD56B967ADADD251C6C969C252 Validity Not Before: Dec 2 18:22:50 2025 GMT Not After : Dec 9 18:22:50 2025 GMT Subject: CN=692f2e7b-7266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:06:f7:a3:7a:da:53:84:c2:52:1d:23:4c:09: 90:a6:3f:78:ab:15:40:39:6a:77:14:5a:28:f7:a0: 61:58:c7:c2:6a:73:b2:d1:92:7f:ef:c1:29:1e:d9: cd:cd:25:1b:ea:7a:78:cb:0f:df:80:65:08:d2:36: 2f:d6:77:7d:1b:7b:2f:6b:e2:c4:21:78:3b:3f:a7: 6a:db:f4:ef:b2:cd:b3:50:da:00:ca:2b:57:a0:2a: f8:07:43:52:92:da:93:b1:56:e4:9f:70:5e:6d:4b: 21:eb:64:c0:f7:dc:a8:c4:14:d0:09:c3:2f:d5:3e: 72:51:cb:56:41:eb:19:97:fe:c0:34:b3:57:da:02: 8f:6c:7e:ab:59:20:38:af:d3:bc:4c:bd:f9:3f:be: d9:8b:d2:01:96:b1:67:c8:98:7d:eb:53:36:9f:f3: dc:50:67:3b:4d:47:c9:7d:9d:26:d2:b3:cc:94:30: 00:b4:75:d2:bd:ea:02:cf:d4:bd:25:77:a0:91:14: 4b:72:40:3d:ad:72:c1:be:c6:8d:f7:25:27:cb:91: ba:06:5d:ff:94:85:c9:6d:54:1f:19:02:7b:00:9c: 51:68:06:10:6a:29:cf:45:23:8a:68:de:59:09:38: 02:dc:41:e9:16:9a:18:93:f8:c7:a0:3e:11:c8:75: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:57:F4:15:FE:B7:E9:1D:F2:83:25:F7:2E:2A:7C:58:9E:B3:A4:1A X509v3 Authority Key Identifier: keyid:B4:83:DA:05:F8:10:8F:AD:56:B9:67:AD:AD:D2:51:C6:C9:69:C2:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIPaBfgQj61WuWetrdJRxslpwlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91178F4/BF0A1E9AF0B611EDA882E628C4F9AE02/tIPaBfgQj61WuWetrdJRxslpwlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:2b:3f:30:cd:a0:8d:87:97:94:8c:2a:c9:f1:0e:7f:42:1e: 80:0d:2a:04:4e:b8:82:54:58:e9:4d:5b:d9:77:5a:71:a4:72: fd:88:44:d2:8b:57:3a:ce:0b:4b:2c:86:f2:e5:95:e0:c9:74: 7f:2c:bc:c4:68:4b:a3:2e:f7:94:3b:8c:d8:73:48:1e:c3:37: 13:d2:40:69:8a:46:6c:57:88:ff:c5:a3:13:34:6c:55:02:46: d0:e3:0f:c2:20:b9:68:31:c9:60:f9:79:9d:38:5b:16:13:de: 6b:83:06:c5:ad:64:10:9d:04:82:22:56:2d:42:52:2b:a5:3e: 87:15:a8:57:e8:b1:37:a9:5e:96:07:fa:dd:c0:3a:35:24:e1: c4:4f:d9:60:82:b4:de:04:d1:d0:23:1a:86:5b:b0:35:d1:03: 86:b6:67:58:99:c4:94:cd:cd:ef:06:54:5c:ea:6e:cb:79:d9: ae:01:4d:f6:ef:0e:90:5c:c2:e7:7b:db:06:6a:5f:fc:1d:ba: 71:f1:cd:4d:3b:c7:c2:64:c4:f2:7c:de:72:98:65:2b:cd:11: b9:3a:33:df:39:79:a6:b3:d3:80:d0:a6:3d:29:ee:93:08:1e: 51:b9:5c:6e:1b:a8:d4:43:45:c6:19:c1:54:7b:4d:9a:30:5d: 31:5f:2b:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4RjQxMTAvBgNVBAUTKEI0ODNEQTA1RjgxMDhGQUQ1NkI5NjdBREFERDI1MUM2 Qzk2OUMyNTIwHhcNMjUxMjAyMTgyMjUwWhcNMjUxMjA5MTgyMjUwWjAYMRYwFAYD VQQDEw02OTJmMmU3Yi03MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAb3o3raU4TCUh0jTAmQpj94qxVAOWp3FFoo96BhWMfCanOy0ZJ/78EpHtnN zSUb6np4yw/fgGUI0jYv1nd9G3sva+LEIXg7P6dq2/Tvss2zUNoAyitXoCr4B0NS ktqTsVbkn3BebUsh62TA99yoxBTQCcMv1T5yUctWQesZl/7ANLNX2gKPbH6rWSA4 r9O8TL35P77Zi9IBlrFnyJh961M2n/PcUGc7TUfJfZ0m0rPMlDAAtHXSveoCz9S9 JXegkRRLckA9rXLBvsaN9yUny5G6Bl3/lIXJbVQfGQJ7AJxRaAYQainPRSOKaN5Z CTgC3EHpFpoYk/jHoD4RyHUuIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlX9BX+ t+kd8oMl9y4qfFies6QaMB8GA1UdIwQYMBaAFLSD2gX4EI+tVrlnra3SUcbJacJS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzhGNC9CRjBBMUU5QUYw QjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2MVd1V2V0cmRKUnhzbHB3 bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJUGFCZmdRajYxV3VXZXRyZEpSeHNscHdsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzhGNC9CRjBBMUU5QUYwQjYxMUVEQTg4MkU2MjhDNEY5QUUwMi90SVBhQmZnUWo2 MVd1V2V0cmRKUnhzbHB3bEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZKz8wzaCNh5eUjCrJ8Q5/Qh6ADSoETriCVFjpTVvZd1pxpHL9iETS i1c6zgtLLIby5ZXgyXR/LLzEaEujLveUO4zYc0gewzcT0kBpikZsV4j/xaMTNGxV AkbQ4w/CILloMclg+XmdOFsWE95rgwbFrWQQnQSCIlYtQlIrpT6HFahX6LE3qV6W B/rdwDo1JOHET9lggrTeBNHQIxqGW7A10QOGtmdYmcSUzc3vBlRc6m7LedmuAU32 7w6QXMLne9sGal/8Hbpx8c1NO8fCZMTyfN5ymGUrzRG5OjPfOXmms9OA0KY9Ke6T CB5RuVxuG6jUQ0XGGcFUe02aMF0xXyvk -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:17 2025 by rpki-client