This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: PLOz9+RCNVL8ur6Bl1G/F9u4j1Wr52HzjUghADiGPvQ= Subject key identifier: 0B:41:1A:61:9B:47:C6:96:2B:5F:92:62:5F:13:76:A0:81:2D:36:17 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A8D Signing time: Mon 22 Dec 2025 19:01:22 +0000 Manifest this update: Mon 22 Dec 2025 19:01:21 +0000 Manifest next update: Mon 29 Dec 2025 19:01:21 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: B+6SyqLoVrAAyQUjh84cjC+5HI0nES83nNxoqp0GsaY=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: 3RxABu3KC/9hSKHYQMzVVe4gdoAQgiDaudG41V9QJ3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Dec 22 19:01:21 2025 GMT Not After : Dec 29 19:01:21 2025 GMT Subject: CN=69499582-e284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f5:b0:e9:05:95:dd:ab:25:0d:06:d9:1b:d2: b9:13:35:e7:75:eb:9c:fc:23:08:ec:66:a9:69:d5: 7b:70:d9:8b:8e:37:bf:67:a4:12:16:29:52:f3:93: 50:93:68:97:08:73:c5:a6:cd:1d:3f:62:24:65:ba: e0:15:ae:e9:19:66:c6:20:7f:34:27:2b:79:a9:9e: 38:22:c0:5d:36:21:4a:55:88:11:c3:f6:4d:74:7d: b0:23:d2:ae:19:d0:50:9e:1b:e2:df:d4:7a:47:a8: 06:e5:83:8f:8a:ca:52:8b:23:e3:d3:44:cc:b3:7a: 14:1f:9b:4b:c9:b0:05:02:41:3f:c0:85:c3:73:81: 22:d9:93:1a:41:21:96:fe:c7:e9:63:ac:4f:8c:09: db:d4:b9:1e:6c:e4:eb:67:25:b8:f1:5a:ab:c3:5c: 2a:61:e7:5d:7d:6f:83:71:b7:c1:5e:0d:fd:52:ff: 49:e6:3e:ef:d3:25:c2:ac:a5:c7:2a:ae:66:cf:3b: 0c:34:44:34:3c:5e:e5:7a:3d:21:98:ed:5a:db:9f: 09:0f:38:45:91:2f:06:5a:1e:9e:79:2b:45:9f:af: 51:d8:95:0e:e7:c0:7b:3e:5f:01:e0:da:9c:c3:67: 3f:e9:31:61:f5:e1:b6:bd:46:91:75:6d:e8:45:d6: d8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:41:1A:61:9B:47:C6:96:2B:5F:92:62:5F:13:76:A0:81:2D:36:17 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:75:25:7c:9b:03:13:20:2a:d8:bf:ad:08:17:c8:8a:2d:21: 4f:87:a7:4c:35:f9:3b:49:9d:a9:89:9b:9e:51:81:cc:4a:97: ab:5f:f2:2c:1d:d7:be:38:26:50:56:95:9a:6b:d5:f4:ed:94: 7f:ab:1c:f6:0a:e6:c9:26:a2:d4:ce:65:a2:04:7c:94:7d:2e: 7e:9d:da:68:d6:b8:f3:67:bc:9b:d8:75:75:d8:20:0e:51:8f: bb:c2:72:6f:93:64:ea:99:24:8e:d3:95:3d:67:b3:23:30:ee: 6f:e8:7f:c2:1b:08:ec:98:a1:bc:b5:69:a3:25:d5:79:15:6f: 4a:8d:dc:ee:da:0d:3a:1f:2f:b9:f1:7a:2e:9a:2b:d4:ef:d9: 59:08:a7:50:60:40:63:aa:05:72:27:5a:70:50:d8:f3:ad:e1: f2:b4:ac:2c:48:90:9f:8f:1e:4a:d7:10:44:f1:ae:ef:85:60: 8f:04:8a:65:00:c3:4b:7a:ae:f7:ac:f6:4e:08:bb:0a:90:73: fd:12:54:42:a9:bd:4a:d2:a0:7d:6a:b0:b6:b5:55:ef:b7:6c: 24:72:0f:03:b1:13:9b:ac:15:88:19:44:06:c7:8d:3f:71:64: cd:37:88:a1:e4:ed:38:6d:c3:f1:15:ca:6b:0b:ca:07:e1:d8: 43:0a:c4:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUxMjIyMTkwMTIxWhcNMjUxMjI5MTkwMTIxWjAYMRYwFAYD VQQDDA02OTQ5OTU4Mi1lMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPWw6QWV3aslDQbZG9K5EzXndeuc/CMI7GapadV7cNmLjje/Z6QSFilS85NQ k2iXCHPFps0dP2IkZbrgFa7pGWbGIH80Jyt5qZ44IsBdNiFKVYgRw/ZNdH2wI9Ku GdBQnhvi39R6R6gG5YOPispSiyPj00TMs3oUH5tLybAFAkE/wIXDc4Ei2ZMaQSGW /sfpY6xPjAnb1LkebOTrZyW48Vqrw1wqYeddfW+DcbfBXg39Uv9J5j7v0yXCrKXH Kq5mzzsMNEQ0PF7lej0hmO1a258JDzhFkS8GWh6eeStFn69R2JUO58B7Pl8B4Nqc w2c/6TFh9eG2vUaRdW3oRdbYOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtBGmGb R8aWK1+SYl8TdqCBLTYXMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvdSV8mwMTICrYv60IF8iKLSFPh6dMNfk7SZ2piZueUYHMSperX/Is Hde+OCZQVpWaa9X07ZR/qxz2CubJJqLUzmWiBHyUfS5+ndpo1rjzZ7yb2HV12CAO UY+7wnJvk2TqmSSO05U9Z7MjMO5v6H/CGwjsmKG8tWmjJdV5FW9Kjdzu2g06Hy+5 8XoumivU79lZCKdQYEBjqgVyJ1pwUNjzreHytKwsSJCfjx5K1xBE8a7vhWCPBIpl AMNLeq73rPZOCLsKkHP9ElRCqb1K0qB9arC2tVXvt2wkcg8DsRObrBWIGUQGx40/ cWTNN4ih5O04bcPxFcprC8oH4dhDCsS5 -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:27 2025 by rpki-client