This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: MuMMcg+xJ9Kqtl3Fi5XNVtm4KavXrTqIKis4uPOoWFM= Subject key identifier: BB:78:2E:97:4E:83:6A:B2:C4:71:2E:E2:31:55:A6:1F:01:A0:95:FF Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 0628 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 0622 Signing time: Mon 22 Dec 2025 21:58:10 +0000 Manifest this update: Mon 22 Dec 2025 21:58:10 +0000 Manifest next update: Mon 29 Dec 2025 21:58:10 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: Xax41wd73Z6BcVHsPtyYbajC/kMUhVus9kLiRfYyyRU=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Dec 22 21:58:10 2025 GMT Not After : Dec 29 21:58:10 2025 GMT Subject: CN=6949bef2-3adc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:50:ba:f1:0e:b1:7e:5f:08:dc:e0:3a:fe: 81:25:80:3d:75:e7:26:9e:5b:c7:6e:43:8e:77:e7: 06:58:c5:48:a4:d0:4d:51:3e:a3:a0:70:d7:c0:86: 11:9a:4b:19:13:39:d9:98:b6:a4:d7:56:38:e7:83: be:4f:1c:71:1d:52:c5:fe:b9:be:c7:63:bd:80:67: 4d:01:4b:ec:aa:88:01:a2:36:39:d0:ae:bc:e1:51: 32:d4:ec:f9:01:0c:87:f6:04:bc:79:40:af:1f:69: 9b:26:35:9b:55:3a:90:00:47:b7:b7:41:e3:55:6a: 50:1a:d8:32:00:e3:c5:dc:22:07:0d:73:72:44:60: 02:ba:56:95:bd:09:fc:c7:f5:48:c8:e6:06:18:27: 07:37:5d:b6:1c:2b:a8:d0:ae:5a:60:ee:55:8a:f7: 53:af:43:e8:5d:b3:b3:6a:54:2c:3e:51:ad:ea:79: 11:08:03:bd:55:a6:e9:6f:61:56:fe:f4:b8:58:e1: 64:4e:4e:a2:d9:56:8e:c3:6e:c6:3e:76:87:33:e6: b6:4a:29:b2:a9:df:65:1d:45:49:ea:49:28:c4:e7: a7:eb:dc:3a:47:ed:b0:cb:e5:3e:7a:7d:b2:a7:bc: c1:68:b6:b1:10:c5:1f:b9:7f:db:db:a2:2f:1e:59: c2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:78:2E:97:4E:83:6A:B2:C4:71:2E:E2:31:55:A6:1F:01:A0:95:FF X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b9:fd:1a:03:a3:f8:f1:ab:e4:c3:47:ab:ec:49:80:33:84: 6b:25:37:0b:e9:54:7a:79:e1:3b:fc:bc:12:46:81:20:a4:25: 02:44:5d:fd:d6:98:bd:e9:f9:b9:28:96:77:d2:08:33:a5:7c: 03:4f:18:b8:89:0b:83:5f:96:0e:a0:6d:31:ab:e7:93:46:e1: 96:47:e7:0a:14:91:7d:64:4c:ab:c8:41:93:a1:13:ea:98:90: 43:65:aa:79:5e:16:cb:32:5d:67:7b:fd:15:b1:c0:1b:77:84: da:bf:eb:bb:0e:62:7c:d0:bf:f9:d5:a0:5d:96:7a:b6:ce:67: b7:dc:ba:8d:9f:83:fb:b0:7b:56:01:e6:71:e0:52:e5:e4:f3: ee:8a:36:69:12:f5:8d:d7:86:95:38:bb:eb:93:f5:bf:6b:b2: d6:bf:cd:22:01:a4:e4:9e:1b:9f:fd:45:78:9b:bf:38:84:16: 22:86:75:49:28:97:f3:ba:84:dc:b9:f0:92:b9:4b:fa:53:45: db:63:4f:9f:5e:d2:c0:a2:2c:cb:17:cd:d9:5f:7f:07:8e:b7: 45:ca:69:27:2a:b9:9a:31:fd:b5:49:a9:25:9a:68:25:11:15: 7f:f1:6e:69:24:b0:1e:b2:52:b5:a8:79:7a:74:2e:ca:74:69: dc:df:5e:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUxMjIyMjE1ODEwWhcNMjUxMjI5MjE1ODEwWjAYMRYwFAYD VQQDDA02OTQ5YmVmMi0zYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvJQuvEOsX5fCNzgOv6BJYA9decmnlvHbkOOd+cGWMVIpNBNUT6joHDXwIYR mksZEznZmLak11Y454O+TxxxHVLF/rm+x2O9gGdNAUvsqogBojY50K684VEy1Oz5 AQyH9gS8eUCvH2mbJjWbVTqQAEe3t0HjVWpQGtgyAOPF3CIHDXNyRGACulaVvQn8 x/VIyOYGGCcHN122HCuo0K5aYO5VivdTr0PoXbOzalQsPlGt6nkRCAO9Vabpb2FW /vS4WOFkTk6i2VaOw27GPnaHM+a2Simyqd9lHUVJ6kkoxOen69w6R+2wy+U+en2y p7zBaLaxEMUfuX/b26IvHlnCiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt4LpdO g2qyxHEu4jFVph8BoJX/MB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIuf0aA6P48avkw0er7EmAM4RrJTcL6VR6eeE7/LwSRoEgpCUCRF39 1pi96fm5KJZ30ggzpXwDTxi4iQuDX5YOoG0xq+eTRuGWR+cKFJF9ZEyryEGToRPq mJBDZap5XhbLMl1ne/0VscAbd4Tav+u7DmJ80L/51aBdlnq2zme33LqNn4P7sHtW AeZx4FLl5PPuijZpEvWN14aVOLvrk/W/a7LWv80iAaTknhuf/UV4m784hBYihnVJ KJfzuoTcufCSuUv6U0XbY0+fXtLAoizLF83ZX38HjrdFymknKrmaMf21Saklmmgl ERV/8W5pJLAeslK1qHl6dC7KdGnc315H -----END CERTIFICATE-----Generated at Tue Dec 23 14:57:17 2025 by rpki-client