This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: Xm+qUcq7Z/YBpGLkeu0F3BuY5Fij2i69UQYOK0LDaUM= Subject key identifier: C4:71:2D:B1:6E:B7:CE:E4:3E:F5:7D:94:23:96:44:0E:86:F3:63:96 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 012D Signing time: Fri 19 Dec 2025 03:43:32 +0000 Manifest this update: Fri 19 Dec 2025 03:43:32 +0000 Manifest next update: Fri 26 Dec 2025 03:43:32 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: rZPA97+4z4D2ihRePN2xh7ELQx8YPIpA4BLwZ3qMFmY=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: 60v1AWfkB6F13z3L2Xfn7BvrHJoskGA1iG8Ca5+EvSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2, serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Dec 19 03:43:32 2025 GMT Not After : Dec 26 03:43:32 2025 GMT Subject: CN=6944c9e4-0ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:06:4f:d9:f1:37:64:40:d8:83:35:56:f7:16: ca:4b:92:50:3c:c4:83:3c:2a:5e:6a:54:bc:85:30: fa:e8:2b:55:63:fc:71:61:5f:a9:de:b7:06:ec:a4: 14:aa:f0:0c:2b:92:e3:ca:93:5d:8e:6b:5b:27:00: c6:56:18:56:5d:73:54:4f:79:11:ec:de:e2:55:81: 58:cc:d8:2d:56:b4:8c:c8:51:4b:dd:f8:d4:08:ab: 35:31:5d:54:02:7d:1e:7d:c1:d6:1e:11:f1:c3:71: 24:9c:6d:d2:ff:d5:e8:b6:7f:62:0a:18:c5:b8:e2: c3:e3:61:78:f8:e6:29:b9:5e:7d:a1:28:b8:92:17: 41:98:6e:c4:14:55:00:04:b9:01:06:95:24:ce:e0: 40:68:b0:81:ef:83:3a:67:ef:d0:7e:83:a3:b5:e0: 33:84:cb:6f:e5:4e:f7:c3:d5:7e:0f:70:24:d5:b3: 2d:70:60:b3:e4:07:02:f9:de:b1:8f:7a:0e:40:1b: 81:cb:bc:56:c6:4d:3d:46:eb:3c:cf:87:c7:49:d6: e6:12:ec:c0:c0:3d:5b:ed:2b:18:fc:17:71:12:e4: a4:50:50:bb:e4:9b:c7:a8:7c:0b:ef:99:82:e5:8b: 8b:fd:0f:bf:b0:08:5a:7d:fa:1c:8d:9f:12:a5:eb: 79:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:71:2D:B1:6E:B7:CE:E4:3E:F5:7D:94:23:96:44:0E:86:F3:63:96 X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:6e:cb:17:80:62:3f:1a:58:bd:54:3e:9f:1c:4c:b0:a3:15: bf:99:cb:80:04:6a:f0:f3:15:5b:27:90:d7:22:35:cc:19:67: ed:bb:80:35:bc:0d:44:60:23:16:ad:fb:0c:33:14:b0:1e:97: 92:f8:db:ea:ab:e0:56:b7:79:19:41:6b:71:6e:32:ab:0d:af: 78:5d:5a:31:bf:a1:dd:48:7b:a1:eb:78:24:7b:b2:24:29:ba: 5a:52:07:c2:8c:94:bb:14:ed:37:7e:4a:15:f8:9f:21:f9:d7: 4d:55:a5:e1:71:62:fe:45:90:2d:5b:90:b5:81:56:40:36:2c: be:69:cf:4c:29:a3:c1:89:04:b3:09:1b:11:fc:7d:36:d1:ea: f2:65:66:5d:f0:98:8f:5a:3b:5d:ac:f4:ab:f7:61:3d:45:18: 4a:eb:a2:c3:44:36:99:7a:17:f0:7b:05:bb:e3:54:7b:75:53: f4:ad:58:39:81:88:7b:e1:77:f7:4a:0d:3d:e5:88:f0:07:28: 72:52:cb:3c:ce:77:4b:cd:7a:38:22:40:43:e8:e6:fe:09:6a: 7a:8f:1c:3a:43:5a:d9:0b:4c:a5:45:0b:b0:7c:66:85:76:1e: 0f:d8:0a:fb:a1:69:63:54:df:64:5a:bd:f8:c1:16:8f:82:6e: 3c:d4:8c:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4MzkxMzI4MTlFRjkx MzczRkM1MjcwHhcNMjUxMjE5MDM0MzMyWhcNMjUxMjI2MDM0MzMyWjAYMRYwFAYD VQQDDA02OTQ0YzllNC0wY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQZP2fE3ZEDYgzVW9xbKS5JQPMSDPCpealS8hTD66CtVY/xxYV+p3rcG7KQU qvAMK5LjypNdjmtbJwDGVhhWXXNUT3kR7N7iVYFYzNgtVrSMyFFL3fjUCKs1MV1U An0efcHWHhHxw3EknG3S/9Xotn9iChjFuOLD42F4+OYpuV59oSi4khdBmG7EFFUA BLkBBpUkzuBAaLCB74M6Z+/QfoOjteAzhMtv5U73w9V+D3Ak1bMtcGCz5AcC+d6x j3oOQBuBy7xWxk09Rus8z4fHSdbmEuzAwD1b7SsY/BdxEuSkUFC75JvHqHwL75mC 5YuL/Q+/sAhaffocjZ8Spet5tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRxLbFu t87kPvV9lCOWRA6G82OWMB8GA1UdIwQYMBaAFLcN6mx3uejszlg5EygZ75E3P8Un MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTJCMi8yQjQ2RUE1ODBE RTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZPek9XRGtUS0JudmtUY194 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhlNTZP ek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpbssXgGI/Gli9VD6fHEywoxW/mcuABGrw8xVbJ5DXIjXMGWftu4A1 vA1EYCMWrfsMMxSwHpeS+Nvqq+BWt3kZQWtxbjKrDa94XVoxv6HdSHuh63gke7Ik KbpaUgfCjJS7FO03fkoV+J8h+ddNVaXhcWL+RZAtW5C1gVZANiy+ac9MKaPBiQSz CRsR/H020eryZWZd8JiPWjtdrPSr92E9RRhK66LDRDaZehfwewW741R7dVP0rVg5 gYh74Xf3Sg095YjwByhyUss8zndLzXo4IkBD6Ob+CWp6jxw6Q1rZC0ylRQuwfGaF dh4P2Ar7oWljVN9kWr34wRaPgm481IwK -----END CERTIFICATE-----Generated at Sat Dec 20 00:15:21 2025 by rpki-client