This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft File: TCISGt-uP1dSgBZRUcP9MOOq_QE.mft (raw, json) Hash identifier: Vglk5Gf9k8Ijq6cvSXsoChiZrQ9bkibda1f0VXdJy2Q= Subject key identifier: A4:91:3F:9A:D7:81:F7:25:BA:83:B3:79:97:13:0D:AF:CB:3F:1A:47 Authority key identifier: 4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 Certificate issuer: /CN=A91466E8/serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft Manifest number: 9B Signing time: Fri 19 Dec 2025 05:27:54 +0000 Manifest this update: Fri 19 Dec 2025 05:27:53 +0000 Manifest next update: Fri 26 Dec 2025 05:27:53 +0000 Files and hashes: 1: TCISGt-uP1dSgBZRUcP9MOOq_QE.crl (hash: TOIkwc9jLegqF6kEv5Bx4WV+/NWUbXpPDTDqOkqWBZw=) 2: 67CB5FC0629411F0B7FA070FC4F9AE02.roa (hash: ezXoOJmaQ+T0/SBG+83qcx+7CgpMAs0wB76/qo16lME=) 3: 02640B0CF97911EF99F9BE80C4F9AE02.roa (hash: NYtoABq9iaZ7RDTNr8tHyhssdbHGRtrQu/5JhSbINm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91466E8, serialNumber=4C22121ADFAE3F575280165151C3FD30E3AAFD01 Validity Not Before: Dec 19 05:27:53 2025 GMT Not After : Dec 26 05:27:53 2025 GMT Subject: CN=6944e25a-6b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fe:2c:29:7e:e3:fe:75:95:22:c4:15:4f:fe: 02:50:7e:85:98:57:97:7a:02:3d:6c:3e:8a:de:b8: fb:c4:48:62:b1:c1:03:85:3a:9f:f4:40:2c:a5:86: 70:83:a6:39:bd:ce:e1:2b:bd:5e:42:16:7c:c5:38: ac:9a:13:42:65:04:6a:79:ef:eb:38:88:e5:80:92: 8f:39:f3:4d:51:f9:9b:f8:51:61:f6:5d:dc:d6:6a: 30:bf:6a:83:a0:8d:84:58:0c:5c:1c:50:7c:a8:b4: 96:c8:b1:01:a1:1e:8b:24:de:78:3a:f1:22:cf:59: c2:54:67:e4:29:33:b5:47:f8:20:0d:5b:4c:47:4c: aa:57:a9:87:89:fd:77:e0:67:4a:29:23:d2:9b:bb: 06:ea:03:5c:07:bd:cc:d6:ce:5b:68:53:51:ca:8c: 75:6d:ab:e3:a0:c2:5b:e9:3a:9d:06:8f:e2:85:ae: dc:77:82:a9:cc:f6:5d:2c:2b:f7:04:62:7e:85:b3: 09:59:17:56:67:24:19:3e:49:06:2c:e2:82:68:1d: 60:2d:5d:23:1c:6a:88:cc:79:7d:b2:3c:88:a4:17: 48:bb:ad:0b:01:b9:a9:cf:b1:ff:c4:4d:6f:b4:0d: 73:bb:a6:c8:91:01:22:be:eb:9b:49:90:23:67:cf: 00:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:91:3F:9A:D7:81:F7:25:BA:83:B3:79:97:13:0D:AF:CB:3F:1A:47 X509v3 Authority Key Identifier: keyid:4C:22:12:1A:DF:AE:3F:57:52:80:16:51:51:C3:FD:30:E3:AA:FD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCISGt-uP1dSgBZRUcP9MOOq_QE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91466E8/D8388D34F3FC11EF926CE630C4F9AE02/TCISGt-uP1dSgBZRUcP9MOOq_QE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:49:7e:ab:e7:2b:19:2f:b9:14:fb:7c:b8:f0:6b:bb:20:6d: 38:d4:49:d9:81:12:8d:0b:bd:7d:fe:8d:ed:b8:97:b8:34:4d: ef:90:19:9e:d6:b5:a9:6a:ed:5e:37:56:71:2e:57:ae:a0:52: 86:94:81:91:a9:ce:d5:74:4a:98:00:70:9e:c7:da:3b:2e:a7: 6f:e7:af:36:8a:47:f4:46:b1:98:f5:cb:09:47:6f:f3:d3:30: b7:2a:ed:cf:4c:66:1a:0d:ea:6c:ed:c1:31:6c:93:34:45:b4: eb:85:a8:e2:0c:a1:c6:7b:46:86:74:0e:26:7c:74:21:f8:2a: f7:10:58:2e:8e:42:dd:b1:b7:97:e9:42:5e:e7:36:fa:a6:39: 8d:ac:55:5a:fb:be:a1:6c:11:e0:c1:ba:e3:6f:1b:99:4a:b3: ff:10:01:21:84:1e:c8:14:59:59:f3:a6:6a:c8:a1:1d:e4:24: 9a:ad:e9:d1:55:7d:01:4f:e3:48:7b:eb:c4:27:dc:67:d7:f5: 46:6c:ce:cb:06:9f:24:e8:94:3a:6f:78:d1:69:0a:d0:ca:0b: 54:e0:b3:c1:9a:71:de:3c:ae:57:4d:8d:6e:52:4f:70:7a:0c: 6b:cc:5a:85:72:78:5c:7a:0a:9d:b9:ff:fc:30:6c:ce:0f:30: bc:50:c1:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2RTgxMTAvBgNVBAUTKDRDMjIxMjFBREZBRTNGNTc1MjgwMTY1MTUxQzNGRDMw RTNBQUZEMDEwHhcNMjUxMjE5MDUyNzUzWhcNMjUxMjI2MDUyNzUzWjAYMRYwFAYD VQQDDA02OTQ0ZTI1YS02YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmP4sKX7j/nWVIsQVT/4CUH6FmFeXegI9bD6K3rj7xEhiscEDhTqf9EAspYZw g6Y5vc7hK71eQhZ8xTismhNCZQRqee/rOIjlgJKPOfNNUfmb+FFh9l3c1mowv2qD oI2EWAxcHFB8qLSWyLEBoR6LJN54OvEiz1nCVGfkKTO1R/ggDVtMR0yqV6mHif13 4GdKKSPSm7sG6gNcB73M1s5baFNRyox1bavjoMJb6TqdBo/iha7cd4KpzPZdLCv3 BGJ+hbMJWRdWZyQZPkkGLOKCaB1gLV0jHGqIzHl9sjyIpBdIu60LAbmpz7H/xE1v tA1zu6bIkQEivuubSZAjZ88AiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSRP5rX gfcluoOzeZcTDa/LPxpHMB8GA1UdIwQYMBaAFEwiEhrfrj9XUoAWUVHD/TDjqv0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjZFOC9EODM4OEQzNEYz RkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAxZFNnQlpSVWNQOU1PT3Ff UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDSVNHdC11UDFkU2dCWlJVY1A5TU9PcV9RRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjZFOC9EODM4OEQzNEYzRkMxMUVGOTI2Q0U2MzBDNEY5QUUwMi9UQ0lTR3QtdVAx ZFNnQlpSVWNQOU1PT3FfUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9SX6r5ysZL7kU+3y48Gu7IG041EnZgRKNC719/o3tuJe4NE3vkBme 1rWpau1eN1ZxLleuoFKGlIGRqc7VdEqYAHCex9o7Lqdv5682ikf0RrGY9csJR2/z 0zC3Ku3PTGYaDeps7cExbJM0RbTrhajiDKHGe0aGdA4mfHQh+Cr3EFgujkLdsbeX 6UJe5zb6pjmNrFVa+76hbBHgwbrjbxuZSrP/EAEhhB7IFFlZ86ZqyKEd5CSarenR VX0BT+NIe+vEJ9xn1/VGbM7LBp8k6JQ6b3jRaQrQygtU4LPBmnHePK5XTY1uUk9w egxrzFqFcnhcegqduf/8MGzODzC8UMH5 -----END CERTIFICATE-----Generated at Sat Dec 20 03:25:07 2025 by rpki-client