This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: omw9AfGzAoCIyjd3YlGeUs9B88gouBQAdovRlw1h+qw= Subject key identifier: BB:BA:64:9A:24:59:78:67:D8:F0:59:C5:8A:EA:C3:60:91:F4:BB:91 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 01D5 Signing time: Tue 23 Dec 2025 01:50:06 +0000 Manifest this update: Tue 23 Dec 2025 01:50:05 +0000 Manifest next update: Tue 30 Dec 2025 01:50:05 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: i73m+XZ6M5P2mWRFoD/7FAWKygEKEv859gFg7A9ygms=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Dec 23 01:50:05 2025 GMT Not After : Dec 30 01:50:05 2025 GMT Subject: CN=6949f54e-ef12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:91:7e:9f:e7:50:7a:91:49:9e:d8:43:9b:15: 78:26:e3:a9:92:64:c7:5e:c1:3d:d2:db:fd:1b:16: a0:09:dc:47:c0:df:53:0f:dc:4b:b3:03:4b:d0:80: 1e:68:b9:15:e1:3e:20:36:da:02:72:21:38:d7:1e: db:9c:6a:3f:8c:4b:e4:2a:73:a5:e4:e9:ee:a1:59: e5:24:8b:fa:1b:9f:5b:3d:ee:7f:4f:ca:8e:e7:b7: 01:f6:a6:d7:fd:7c:56:a6:ed:bb:e1:1f:cf:95:eb: 08:ab:f9:25:29:a3:7a:9a:eb:bd:f3:36:d9:82:b7: 85:4c:85:a3:45:92:b2:01:45:5c:6f:3f:cc:f0:13: 30:c1:a0:fc:08:8c:ac:44:93:ea:58:5a:68:4c:d2: 62:b8:67:b9:30:81:fa:c9:89:b7:87:e9:78:22:b4: 0d:50:91:ad:38:77:be:73:48:71:47:5a:98:35:e2: 60:b1:8c:76:21:04:25:93:73:12:f3:30:9d:4b:c5: ec:5e:cc:41:1b:57:c2:f1:6c:24:5d:3e:7e:1b:fb: 3f:35:74:9c:aa:b2:76:19:bd:72:ad:5e:ac:a9:76: 86:f7:28:9f:7f:e9:79:1e:a6:f9:d4:8e:71:9e:92: 3c:27:ba:aa:1a:b8:ca:9d:72:38:1d:96:cc:2b:67: c3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:BA:64:9A:24:59:78:67:D8:F0:59:C5:8A:EA:C3:60:91:F4:BB:91 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:e4:8e:35:0e:97:d2:af:15:60:e1:33:60:0a:74:de:ca:38: b8:38:dc:59:c7:67:10:33:68:9f:d9:6c:fe:8c:a8:f5:71:4e: 96:5e:fa:de:8e:9b:bf:c0:1e:70:9d:fd:aa:cc:2a:2a:34:e4: ed:15:4f:c9:c3:8d:16:36:82:01:70:f3:1b:62:9c:e7:b0:07: f9:43:73:15:1b:60:2f:1b:65:cd:13:58:6d:8e:b0:85:2b:72: 0c:17:68:c1:a2:5d:cd:6e:92:c6:e9:da:1f:44:9b:f1:4b:e0: 76:ad:d3:b1:40:fd:af:46:62:0d:3a:69:66:20:36:26:2c:a0: 66:cf:ac:53:1b:0c:83:58:5d:86:52:63:f0:45:4f:2a:f0:1d: 74:fa:e2:ae:77:e6:3d:61:33:58:1f:be:5c:55:e8:a5:92:0d: 8f:f0:a5:9e:98:5b:03:6f:bb:f4:f2:af:cf:c1:a9:c3:a4:cf: bc:83:b4:9e:2b:08:46:ae:10:1e:ee:35:28:3d:02:b0:c2:86: 09:ff:fd:2a:6f:37:fb:45:71:cf:7a:3e:33:c1:db:bf:8e:ad: 06:82:eb:6b:94:2d:c4:1d:aa:6b:2c:9d:47:ed:52:e6:7b:76: 9f:e0:64:5c:aa:e5:0a:a5:fc:00:17:df:ad:55:ca:47:dd:87: 4e:f2:59:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUxMjIzMDE1MDA1WhcNMjUxMjMwMDE1MDA1WjAYMRYwFAYD VQQDDA02OTQ5ZjU0ZS1lZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJF+n+dQepFJnthDmxV4JuOpkmTHXsE90tv9GxagCdxHwN9TD9xLswNL0IAe aLkV4T4gNtoCciE41x7bnGo/jEvkKnOl5OnuoVnlJIv6G59bPe5/T8qO57cB9qbX /XxWpu274R/PlesIq/klKaN6muu98zbZgreFTIWjRZKyAUVcbz/M8BMwwaD8CIys RJPqWFpoTNJiuGe5MIH6yYm3h+l4IrQNUJGtOHe+c0hxR1qYNeJgsYx2IQQlk3MS 8zCdS8XsXsxBG1fC8WwkXT5+G/s/NXScqrJ2Gb1yrV6sqXaG9yiff+l5Hqb51I5x npI8J7qqGrjKnXI4HZbMK2fDYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLu6ZJok WXhn2PBZxYrqw2CR9LuRMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA05I41DpfSrxVg4TNgCnTeyji4ONxZx2cQM2if2Wz+jKj1cU6WXvre jpu/wB5wnf2qzCoqNOTtFU/Jw40WNoIBcPMbYpznsAf5Q3MVG2AvG2XNE1htjrCF K3IMF2jBol3NbpLG6dofRJvxS+B2rdOxQP2vRmINOmlmIDYmLKBmz6xTGwyDWF2G UmPwRU8q8B10+uKud+Y9YTNYH75cVeilkg2P8KWemFsDb7v08q/PwanDpM+8g7Se KwhGrhAe7jUoPQKwwoYJ//0qbzf7RXHPej4zwdu/jq0GgutrlC3EHaprLJ1H7VLm e3af4GRcquUKpfwAF9+tVcpH3YdO8lmv -----END CERTIFICATE-----Generated at Tue Dec 23 14:35:15 2025 by rpki-client