This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json) Hash identifier: U6arP28lfDbjJ03Mu+Ju0D2M0sFNZtXpBGfZYHFnB+4= Subject key identifier: B3:6C:C9:5E:84:4B:4F:8A:5D:78:C6:E4:3B:60:38:30:09:A8:24:F0 Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft Manifest number: E2 Signing time: Tue 23 Dec 2025 02:38:05 +0000 Manifest this update: Tue 23 Dec 2025 02:38:05 +0000 Manifest next update: Tue 30 Dec 2025 02:38:05 +0000 Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: VnQzNyZJZRWbABlRN5JH0I9XCowKZN5eooCcxGDDHoM=) 2: 1C6D5ED2C51F11F08993E41BC4F9AE02.roa (hash: Z7JeySwG9fJPYkqRF+VN4KnA0lYwsDVP+8RJZI6wRpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Dec 23 02:38:05 2025 GMT Not After : Dec 30 02:38:05 2025 GMT Subject: CN=694a008d-9364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:27:41:ac:b9:8b:2c:4a:9a:1f:f3:ce:66:45: e0:d4:b4:e3:f7:74:58:03:df:e5:97:20:34:dd:c4: 47:fb:04:dc:16:3d:d2:72:d2:ab:45:55:aa:eb:0e: da:53:d2:6b:c2:3e:9a:45:43:82:3c:76:5b:be:98: 2c:3c:2b:89:40:bf:c4:8f:e2:6b:c5:ea:a0:1c:68: ec:37:6b:cb:9d:cf:39:1b:91:f0:0f:eb:d1:ea:7e: 84:0c:42:db:8d:1f:63:83:57:6c:bc:62:f9:4c:61: 3d:21:cd:cd:7f:68:b1:3f:fb:37:6b:44:5c:0f:22: a0:c0:d9:c9:80:bf:20:e8:ec:10:79:cc:12:9e:a3: 99:35:a2:84:71:d9:3d:f9:b1:95:51:2b:89:ea:22: 84:ba:59:3b:0a:c2:0e:2a:a9:0d:33:6f:eb:ef:75: 09:20:a8:08:41:f0:aa:94:21:be:33:ec:b4:b4:89: 11:92:8a:7b:c2:f1:b2:6d:6f:40:b0:9f:4e:51:15: f8:a6:5c:cc:de:4e:13:42:08:dc:2e:0d:10:68:c9: ae:f5:bf:2c:f7:ee:3f:1b:de:3b:30:80:47:83:04: 68:0d:72:8f:7b:bd:d5:90:96:4c:b6:4b:66:09:7f: 66:c1:42:51:18:d1:dd:af:e8:49:43:1f:b3:61:fb: df:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6C:C9:5E:84:4B:4F:8A:5D:78:C6:E4:3B:60:38:30:09:A8:24:F0 X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8e:0b:0b:df:9c:6c:4e:e0:22:61:08:e1:48:38:88:c7:07: b3:f7:46:78:59:e4:fd:76:b2:89:8d:c1:27:fd:f4:b4:82:16: 20:1d:d1:4c:c7:1c:a6:86:37:f7:2a:46:08:97:4a:41:e2:61: 41:20:eb:50:94:e1:45:67:f7:f2:a4:f6:60:4a:d6:df:8b:1a: d6:4f:21:c8:27:f4:8a:f9:a4:83:10:c7:e0:70:87:ae:37:24: b4:72:75:1c:52:7d:21:dc:0a:39:f2:39:ec:b8:48:7b:15:14: ca:a4:b5:22:59:6a:33:d1:1f:53:20:5c:f2:7f:10:ee:f7:c8: 6b:d0:6c:1f:cb:76:1d:b2:71:bf:c3:4b:23:a0:42:50:4e:19: 10:d7:ab:a4:41:e8:ae:ae:17:10:7f:59:f8:76:4e:ac:78:81: d2:2c:d4:21:78:f1:2e:d3:1c:c6:05:10:35:d1:66:a7:ba:34: 8c:02:e2:99:60:fa:79:62:03:ca:1e:01:85:e4:c7:f7:2b:8c: 74:b2:db:da:14:62:36:83:fd:d4:5f:f8:23:c5:c1:11:40:d9: 5b:cc:05:cc:61:e4:b3:0c:16:64:c8:9c:81:d0:d1:ed:67:e4: f4:d7:8c:86:8a:a4:5b:3c:ea:f0:09:da:6a:56:05:73:74:ef: 43:f5:70:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjUxMjIzMDIzODA1WhcNMjUxMjMwMDIzODA1WjAYMRYwFAYD VQQDDA02OTRhMDA4ZC05MzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSdBrLmLLEqaH/POZkXg1LTj93RYA9/llyA03cRH+wTcFj3SctKrRVWq6w7a U9Jrwj6aRUOCPHZbvpgsPCuJQL/Ej+JrxeqgHGjsN2vLnc85G5HwD+vR6n6EDELb jR9jg1dsvGL5TGE9Ic3Nf2ixP/s3a0RcDyKgwNnJgL8g6OwQecwSnqOZNaKEcdk9 +bGVUSuJ6iKEulk7CsIOKqkNM2/r73UJIKgIQfCqlCG+M+y0tIkRkop7wvGybW9A sJ9OURX4plzM3k4TQgjcLg0QaMmu9b8s9+4/G947MIBHgwRoDXKPe73VkJZMtktm CX9mwUJRGNHdr+hJQx+zYfvfxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNsyV6E S0+KXXjG5DtgODAJqCTwMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktn dFRqb3pmZ3kyYW9mTjh5T1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEjgsL35xsTuAiYQjhSDiIxwez90Z4WeT9drKJjcEn/fS0ghYgHdFM xxymhjf3KkYIl0pB4mFBIOtQlOFFZ/fypPZgStbfixrWTyHIJ/SK+aSDEMfgcIeu NyS0cnUcUn0h3Ao58jnsuEh7FRTKpLUiWWoz0R9TIFzyfxDu98hr0Gwfy3YdsnG/ w0sjoEJQThkQ16ukQeiurhcQf1n4dk6seIHSLNQhePEu0xzGBRA10WanujSMAuKZ YPp5YgPKHgGF5Mf3K4x0stvaFGI2g/3UX/gjxcERQNlbzAXMYeSzDBZkyJyB0NHt Z+T014yGiqRbPOrwCdpqVgVzdO9D9XDI -----END CERTIFICATE-----Generated at Tue Dec 23 14:39:04 2025 by rpki-client