This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: DnngcCSTOydlPrZ5tF8dbLGD7IyaVJHuJBBKY1p1Ais= Subject key identifier: FB:85:DE:BA:BB:2A:68:F8:3C:BE:2D:13:FA:6D:1D:B9:F1:9E:4E:CE Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 040F Signing time: Tue 23 Dec 2025 00:32:29 +0000 Manifest this update: Tue 23 Dec 2025 00:32:29 +0000 Manifest next update: Tue 30 Dec 2025 00:32:29 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: 82jTAwmuSapceu2xxMvNHiA1ymx7KBuootBGfqiN/04=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: 9Glg+FZVnuYVbnpDUoXkmTWX1UGlCmh3veSk6hQSk2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3, serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Validity Not Before: Dec 23 00:32:29 2025 GMT Not After : Dec 30 00:32:29 2025 GMT Subject: CN=6949e31d-c942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e2:45:cb:b7:e1:80:fc:3b:24:26:67:08:10: 07:d7:51:f1:3c:9c:1d:05:90:1f:70:ac:5f:5d:14: d6:73:32:73:92:4c:8e:d9:5c:32:1a:48:d3:ab:1b: 9b:04:b5:94:0d:47:59:c6:b4:29:84:72:82:5e:96: 30:5d:bc:9b:4e:19:30:67:6f:f5:06:92:57:fb:3e: ec:62:9f:2b:45:a4:33:f5:a4:41:2d:f8:8f:fc:ab: ee:b8:98:04:b4:e1:52:05:3d:7d:b3:00:17:94:7d: 36:88:72:3e:71:1d:98:ae:76:f2:14:93:8c:06:82: b8:2e:25:27:5e:fa:76:ea:48:e8:1e:22:ed:f1:98: 16:5a:9a:05:65:ce:e8:39:2d:27:9e:4d:6e:28:06: 81:27:8c:52:01:3c:0e:69:06:18:2a:5e:94:fd:6e: cc:39:3f:59:89:b1:c0:7e:c1:6c:92:88:a7:99:75: ee:a5:e9:5f:35:0d:0b:07:b8:b4:8d:f6:5a:bf:6a: 0b:80:f7:23:02:f2:20:56:43:e9:79:1b:b8:2b:76: a3:99:d0:10:c1:4c:2f:c1:77:2a:17:02:41:0a:df: 1e:37:40:08:6d:b6:57:4c:df:a0:ea:17:b1:31:73: 57:1a:de:01:52:5a:84:62:05:ea:75:ae:bf:9e:97: 43:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:85:DE:BA:BB:2A:68:F8:3C:BE:2D:13:FA:6D:1D:B9:F1:9E:4E:CE X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:80:0a:f8:43:b5:91:97:1a:05:5b:4e:8c:a0:b5:91:04:f9: 82:f0:95:74:7a:89:87:0d:93:b2:63:0a:67:d1:81:b8:4c:a8: cb:75:37:7b:ce:cb:57:23:58:45:db:c8:fd:9b:1b:90:8e:fe: 0a:a4:1f:62:37:77:cf:cc:89:69:9a:f5:63:35:26:13:cb:61: b1:32:b4:70:72:44:7d:76:c8:cd:33:4b:6c:7f:9a:6d:d5:dd: 46:8f:01:e6:8f:9f:83:e0:26:c9:66:b2:4e:97:6b:41:d0:9b: 58:6a:fa:94:70:21:37:e8:5b:06:ec:41:69:c5:a0:a5:f8:26: 76:94:70:ab:25:fc:f6:84:40:fa:32:84:2a:e7:15:1b:e9:c5: 93:5d:c2:bf:c4:93:4d:c8:a6:92:8d:a1:27:9f:4f:e9:b8:6b: 74:4c:13:75:f0:3a:a3:40:da:89:81:64:42:c8:d7:05:b9:ad: c9:b9:f3:60:e0:af:12:3e:43:f8:0c:b2:50:7b:97:da:33:78: bd:19:21:ee:fd:d9:71:2e:8d:33:7b:71:48:74:37:b1:0e:84: c4:9f:ca:ca:40:1f:62:df:7a:57:0e:0d:ab:44:c7:1d:d2:63: 3d:26:c5:9e:f4:03:6f:58:41:5e:27:5b:93:56:19:6a:d1:ed: 01:8e:23:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUxMjIzMDAzMjI5WhcNMjUxMjMwMDAzMjI5WjAYMRYwFAYD VQQDDA02OTQ5ZTMxZC1jOTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+JFy7fhgPw7JCZnCBAH11HxPJwdBZAfcKxfXRTWczJzkkyO2VwyGkjTqxub BLWUDUdZxrQphHKCXpYwXbybThkwZ2/1BpJX+z7sYp8rRaQz9aRBLfiP/KvuuJgE tOFSBT19swAXlH02iHI+cR2YrnbyFJOMBoK4LiUnXvp26kjoHiLt8ZgWWpoFZc7o OS0nnk1uKAaBJ4xSATwOaQYYKl6U/W7MOT9ZibHAfsFskoinmXXupelfNQ0LB7i0 jfZav2oLgPcjAvIgVkPpeRu4K3ajmdAQwUwvwXcqFwJBCt8eN0AIbbZXTN+g6hex MXNXGt4BUlqEYgXqda6/npdDPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuF3rq7 Kmj4PL4tE/ptHbnxnk7OMB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGgAr4Q7WRlxoFW06MoLWRBPmC8JV0eomHDZOyYwpn0YG4TKjLdTd7 zstXI1hF28j9mxuQjv4KpB9iN3fPzIlpmvVjNSYTy2GxMrRwckR9dsjNM0tsf5pt 1d1GjwHmj5+D4CbJZrJOl2tB0JtYavqUcCE36FsG7EFpxaCl+CZ2lHCrJfz2hED6 MoQq5xUb6cWTXcK/xJNNyKaSjaEnn0/puGt0TBN18DqjQNqJgWRCyNcFua3JufNg 4K8SPkP4DLJQe5faM3i9GSHu/dlxLo0ze3FIdDexDoTEn8rKQB9i33pXDg2rRMcd 0mM9JsWe9ANvWEFeJ1uTVhlq0e0BjiPm -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:48 2025 by rpki-client