This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft File: Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft (raw, json) Hash identifier: MH6tBgludgIqrZM3X2F/XEnbBaDPd0252gi+0mvoN/0= Subject key identifier: 64:A9:19:D0:F0:10:1E:67:39:45:8D:7A:88:4E:15:BD:91:1C:F7:35 Authority key identifier: 4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 Certificate issuer: /CN=A9148CCE/serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft Manifest number: 57 Signing time: Wed 03 Dec 2025 05:24:28 +0000 Manifest this update: Wed 03 Dec 2025 05:24:27 +0000 Manifest next update: Wed 10 Dec 2025 05:24:27 +0000 Files and hashes: 1: Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl (hash: ouawwqzJmqT7s8EIxzIxLePoaTYl3p0RzkTVeqTnv1c=) 2: 8FD5A938522911F0AECD911AC4F9AE02.roa (hash: Dtb6Fb2JpEd/Zi2+qi9cOHLUquodmN8UKkbWls/zEtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148CCE, serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Validity Not Before: Dec 3 05:24:27 2025 GMT Not After : Dec 10 05:24:27 2025 GMT Subject: CN=692fc98b-04b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:14:64:fe:f5:a6:3f:18:12:99:df:e2:a4:06: e6:53:b7:92:16:56:77:1d:27:b6:e1:63:f5:de:42: 87:ce:74:d2:de:a7:2d:ae:c5:e4:93:37:51:9d:f2: 5c:42:05:a0:af:b6:7c:d9:cb:a8:91:33:4d:24:1c: 7b:3e:53:16:c6:87:de:7e:c8:5e:a0:c1:1d:1f:15: b7:fa:cb:4d:47:b4:cf:08:1a:bd:3e:d7:7a:06:51: f7:67:b8:6a:06:e3:c6:6e:0f:73:8b:56:53:f4:f5: aa:1c:37:e5:7e:29:3b:55:88:2b:00:fe:c7:a0:05: 40:ae:68:c5:ae:d9:0f:47:37:6e:4d:9b:4d:bf:dd: 2f:31:ee:f2:35:c4:29:ad:8a:a5:60:d2:ac:18:9c: f1:37:2f:ca:a4:31:ad:48:dc:86:9f:0b:e5:b2:5a: 39:d7:f9:af:1d:8f:aa:1b:81:77:47:51:76:d9:fc: ae:78:39:99:9b:90:23:b9:d5:a9:15:78:13:ef:6f: 39:ee:19:cf:0e:d4:69:94:a4:d2:9e:80:f7:a7:30: 87:c9:29:63:a6:17:ec:af:45:26:d2:23:54:a4:26: a3:a3:a1:a2:5d:d5:d9:c6:a3:f3:33:97:4e:c2:79: 65:04:28:37:c4:4f:09:30:49:37:70:e0:e1:28:79: 1b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A9:19:D0:F0:10:1E:67:39:45:8D:7A:88:4E:15:BD:91:1C:F7:35 X509v3 Authority Key Identifier: keyid:4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:b1:a3:65:79:eb:66:ad:e3:62:09:58:66:80:9d:21:21:f7: 3c:43:23:50:23:41:ac:15:bc:da:e1:22:ec:44:6f:00:3c:5c: e3:93:47:5e:b1:88:c5:e7:0b:51:ec:4c:62:bd:71:d6:e5:4a: f6:03:a2:53:80:aa:c4:b2:b5:e7:13:6e:e9:c8:28:a6:8f:f8: fc:b7:aa:5d:6a:90:50:6e:ec:89:90:70:30:d1:86:bf:f5:d0: 55:04:95:a8:e6:8f:ff:a0:89:b4:a3:ee:d9:14:d8:4b:f0:9b: 12:b7:cf:c7:13:a3:3f:5c:90:a7:45:4b:9f:14:d1:f1:0e:01: eb:11:b0:13:87:a2:7f:d0:ad:fd:5d:7f:d3:12:48:5a:fb:a0: 13:0e:b7:ea:aa:e1:e2:f9:e6:01:1c:4e:7d:6f:63:3d:0a:b2: fd:51:5f:e6:3c:d3:d3:9f:34:59:e8:53:4c:28:8a:1b:31:a6: 3a:90:d9:31:ec:43:b4:3a:46:57:52:dc:5f:5d:52:e5:f3:64: ea:a0:bd:f7:bc:22:d9:5f:a9:11:48:ce:5f:fd:b3:9e:9a:d4: 93:3b:ca:af:ce:b4:c5:a4:df:f8:0b:bf:96:91:9e:b0:c1:8d: 8b:50:f6:7a:54:c2:32:59:ad:eb:21:6d:d8:42:29:d2:c9:dd: 4c:50:2f:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OENDRTExMC8GA1UEBRMoNEU3RkVBNzFBNDQ3QTZBMTYxNzlDMjY5N0VCRUU1NTUx OTlEQjA5ODAeFw0yNTEyMDMwNTI0MjdaFw0yNTEyMTAwNTI0MjdaMBgxFjAUBgNV BAMTDTY5MmZjOThiLTA0YjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNFGT+9aY/GBKZ3+KkBuZTt5IWVncdJ7bhY/XeQofOdNLepy2uxeSTN1Gd8lxC BaCvtnzZy6iRM00kHHs+UxbGh95+yF6gwR0fFbf6y01HtM8IGr0+13oGUfdnuGoG 48ZuD3OLVlP09aocN+V+KTtViCsA/segBUCuaMWu2Q9HN25Nm02/3S8x7vI1xCmt iqVg0qwYnPE3L8qkMa1I3IafC+WyWjnX+a8dj6obgXdHUXbZ/K54OZmbkCO51akV eBPvbznuGc8O1GmUpNKegPenMIfJKWOmF+yvRSbSI1SkJqOjoaJd1dnGo/Mzl07C eWUEKDfETwkwSTdw4OEoeRuxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZKkZ0PAQ Hmc5RY16iE4VvZEc9zUwHwYDVR0jBBgwFoAUTn/qcaRHpqFhecJpfr7lVRmdsJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4Q0NFLzhCMjE5MDlDNEZF RTExRjA4MDM3OTQ4MkM0RjlBRTAyL1RuX3FjYVJIcHFGaGVjSnBmcjdsVlJtZHNK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5fcWNhUkhwcUZoZWNKcGZyN2xWUm1kc0pnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ4 Q0NFLzhCMjE5MDlDNEZFRTExRjA4MDM3OTQ4MkM0RjlBRTAyL1RuX3FjYVJIcHFG aGVjSnBmcjdsVlJtZHNKZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAASxo2V562at42IJWGaAnSEh9zxDI1AjQawVvNrhIuxEbwA8XOOTR16x iMXnC1HsTGK9cdblSvYDolOAqsSytecTbunIKKaP+Py3ql1qkFBu7ImQcDDRhr/1 0FUElajmj/+gibSj7tkU2EvwmxK3z8cToz9ckKdFS58U0fEOAesRsBOHon/Qrf1d f9MSSFr7oBMOt+qq4eL55gEcTn1vYz0Ksv1RX+Y809OfNFnoU0woihsxpjqQ2THs Q7Q6RldS3F9dUuXzZOqgvfe8ItlfqRFIzl/9s56a1JM7yq/OtMWk3/gLv5aRnrDB jYtQ9npUwjJZreshbdhCKdLJ3UxQL54= -----END CERTIFICATE-----Generated at Wed Dec 3 16:13:59 2025 by rpki-client