This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: X1RtGSFhmAE60c6vQHgs+I7hK0XVeY8X/qriv0OQdhk= Subject key identifier: C2:DA:8A:3D:47:D2:A1:43:57:38:AB:75:05:D5:3A:09:67:E5:37:F3 Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 0621 Signing time: Sat 20 Dec 2025 22:07:13 +0000 Manifest this update: Sat 20 Dec 2025 22:07:12 +0000 Manifest next update: Sat 27 Dec 2025 22:07:12 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: RYYcoeSe6f5vbQErFet7FFnAQLx8ZFs4oquu7XHnJUQ=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Dec 20 22:07:12 2025 GMT Not After : Dec 27 22:07:12 2025 GMT Subject: CN=69471e11-e4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:74:ca:64:94:a0:97:eb:16:36:d7:2a:0c:d8: dd:3b:14:86:57:71:53:cf:ae:98:35:d5:3c:ba:6f: f9:1d:38:53:fa:21:44:5f:87:44:13:c4:b8:00:7b: f9:96:27:2e:4c:ca:93:16:db:f5:04:c2:ad:59:fd: 7d:19:50:d6:a2:06:3d:00:24:0b:9c:59:02:c4:2a: b8:2f:30:07:5e:97:38:b1:51:d7:21:75:cc:a5:26: a0:72:bf:8e:d9:32:a5:4e:cf:fc:c9:5d:70:35:a4: 99:0a:25:03:a0:e4:b1:fd:47:fa:6f:db:e9:84:90: e8:62:70:e4:5e:d2:a7:c5:05:36:8f:41:85:32:88: f0:5a:c4:49:bc:98:fb:d2:20:d9:df:5b:ae:4a:be: 0b:06:cf:63:64:4c:0e:b4:1c:dc:3b:27:9c:f1:d6: 0f:27:85:92:0e:26:3f:88:14:32:71:38:b3:39:b1: d8:65:37:84:3e:c9:7d:17:7c:05:c9:8d:b9:9a:b3: e4:f0:f5:96:cf:12:81:e7:be:f6:00:69:8a:44:a4: 9d:0c:e7:50:5b:0e:22:8f:c6:aa:3a:95:bd:4d:c3: 8e:45:5a:93:61:f0:c1:37:33:6c:17:43:73:cd:63: c7:42:c1:7e:36:61:0e:19:25:fe:bd:6d:41:5d:88: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DA:8A:3D:47:D2:A1:43:57:38:AB:75:05:D5:3A:09:67:E5:37:F3 X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:12:f0:12:e7:03:4c:16:f0:4a:c6:03:77:f7:a8:ec:28:d1: 51:14:c4:15:d5:74:b4:ab:95:3c:73:b2:21:ad:17:9a:cc:87: 7a:e7:1c:ae:5f:6b:31:c9:51:df:a2:41:90:fb:d6:20:c1:c8: 2f:76:c0:ad:77:64:4a:ee:1f:64:4a:2e:c4:b4:17:0e:39:db: c2:5c:b5:bd:21:f0:f4:c8:87:80:e1:f7:ab:83:0a:d9:28:7d: b1:7c:7c:85:73:a6:14:b0:f0:f6:5e:c3:85:65:ed:be:7d:c1: 26:e0:e8:c9:bc:62:fd:90:a6:46:83:af:66:97:e3:fa:70:33: 5e:0b:99:ac:10:e6:a3:c0:13:94:a8:9c:96:1f:4c:b5:c4:b0: 3e:47:d0:50:6b:a1:db:f3:ef:1e:b5:92:34:48:f6:af:52:23: 8f:e1:e7:78:49:9d:b6:c7:12:88:a8:e9:ea:c6:fc:85:1f:1c: 6b:c7:f2:a5:35:e4:ee:83:e2:76:b8:10:27:38:f6:11:be:34: 80:1b:a2:05:ae:5b:4a:79:93:e5:9c:9d:ad:62:06:26:51:0e: f0:b8:e1:f4:c2:aa:16:df:ae:86:ac:55:2a:db:08:45:e1:75: 7c:25:aa:1c:c0:ef:54:d5:7e:45:c6:4c:59:a4:ed:cf:79:f2: b4:90:3b:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUxMjIwMjIwNzEyWhcNMjUxMjI3MjIwNzEyWjAYMRYwFAYD VQQDDA02OTQ3MWUxMS1lNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHTKZJSgl+sWNtcqDNjdOxSGV3FTz66YNdU8um/5HThT+iFEX4dEE8S4AHv5 licuTMqTFtv1BMKtWf19GVDWogY9ACQLnFkCxCq4LzAHXpc4sVHXIXXMpSagcr+O 2TKlTs/8yV1wNaSZCiUDoOSx/Uf6b9vphJDoYnDkXtKnxQU2j0GFMojwWsRJvJj7 0iDZ31uuSr4LBs9jZEwOtBzcOyec8dYPJ4WSDiY/iBQycTizObHYZTeEPsl9F3wF yY25mrPk8PWWzxKB5772AGmKRKSdDOdQWw4ij8aqOpW9TcOORVqTYfDBNzNsF0Nz zWPHQsF+NmEOGSX+vW1BXYgrGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMLaij1H 0qFDVzirdQXVOgln5TfzMB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQEvAS5wNMFvBKxgN396jsKNFRFMQV1XS0q5U8c7IhrReazId65xyu X2sxyVHfokGQ+9YgwcgvdsCtd2RK7h9kSi7EtBcOOdvCXLW9IfD0yIeA4fergwrZ KH2xfHyFc6YUsPD2XsOFZe2+fcEm4OjJvGL9kKZGg69ml+P6cDNeC5msEOajwBOU qJyWH0y1xLA+R9BQa6Hb8+8etZI0SPavUiOP4ed4SZ22xxKIqOnqxvyFHxxrx/Kl NeTug+J2uBAnOPYRvjSAG6IFrltKeZPlnJ2tYgYmUQ7wuOH0wqoW366GrFUq2whF 4XV8JaocwO9U1X5FxkxZpO3PefK0kDu8 -----END CERTIFICATE-----Generated at Mon Dec 22 22:36:55 2025 by rpki-client