This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft File: TKiQNnsepJ68-UAshiANzXRGtsA.mft (raw, json) Hash identifier: 93UKnoEFXbo6goiBizcgjDzvHp5ojOGAG9ITzimdJaU= Subject key identifier: CE:8D:67:64:EF:E5:01:38:FA:7B:5F:EE:F7:A3:C2:52:64:7E:39:03 Authority key identifier: 4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 Certificate issuer: /CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft Manifest number: 0207 Signing time: Tue 23 Dec 2025 01:23:20 +0000 Manifest this update: Tue 23 Dec 2025 01:23:19 +0000 Manifest next update: Tue 30 Dec 2025 01:23:19 +0000 Files and hashes: 1: TKiQNnsepJ68-UAshiANzXRGtsA.crl (hash: dw2JNPI+rNQh/GPaksK9/Z5EPOqSLK8zrwJoQOwxy98=) 2: A87AAC50C47711EDA3EF8884C4F9AE02.roa (hash: l6zkRAHkzlG2p+kMMFQU/QFFwk47WGSalo955oGvUKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91515BC, serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Validity Not Before: Dec 23 01:23:19 2025 GMT Not After : Dec 30 01:23:19 2025 GMT Subject: CN=6949ef07-1e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:ac:ba:bd:f0:de:b0:40:3f:7a:6c:ab:d6: b5:7a:65:10:fc:59:79:50:35:f2:1a:03:d8:42:88: 6e:a8:0c:ec:c3:b6:ad:2a:10:14:6e:d7:d2:77:cc: 43:2b:24:2a:57:e7:e2:37:94:f5:76:8c:be:b9:e8: c9:99:a1:04:1e:c5:82:ac:66:b8:23:34:2b:e2:4f: 26:44:81:1f:94:fa:df:94:42:66:b8:63:2b:99:08: 90:6d:59:0c:80:f4:d1:16:c7:11:40:72:b0:51:a4: d0:f1:90:30:98:ff:bd:cc:4b:59:b0:22:fa:b6:d6: 08:a6:a9:37:04:d7:dc:7b:5a:a2:e6:29:9d:20:63: 75:c5:70:7e:ca:5f:db:ee:97:d5:8d:d4:8d:57:a9: b7:cf:a9:4a:80:6a:7b:83:f3:10:b7:10:83:21:fa: 59:5a:a4:99:b1:32:25:c8:3d:f5:e5:c2:b4:a5:26: 01:36:c4:1a:69:7b:ff:b1:69:c1:38:38:e2:a5:ac: d9:41:8b:63:f0:0d:d3:a1:24:b2:9d:45:d9:b9:b4: 79:45:c7:08:c7:54:87:aa:aa:87:7e:01:93:1e:cb: b6:ef:e6:41:90:b3:93:4f:00:34:de:af:5b:b3:37: 17:8d:91:d5:84:73:cc:d8:68:51:46:45:99:1c:09: 9a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8D:67:64:EF:E5:01:38:FA:7B:5F:EE:F7:A3:C2:52:64:7E:39:03 X509v3 Authority Key Identifier: keyid:4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:7d:3a:d7:65:84:2e:8f:53:f1:70:e4:9f:85:40:27:56:76: 92:f6:a1:10:d2:9b:93:00:38:db:88:dc:fc:e9:52:04:ee:01: c4:3e:7d:a0:7c:df:e4:ca:18:d2:7f:46:14:2c:3e:5c:3f:60: 62:f8:e5:e6:5a:bb:54:a6:b8:37:86:cb:b2:c2:13:d6:ae:ed: 35:98:00:61:3c:ca:2f:46:f9:9a:54:54:f8:0c:a9:90:8a:12: 99:bf:10:cf:1f:fd:2a:98:0e:07:4b:f1:b2:d3:cf:2b:44:09: f7:82:48:49:2a:57:6f:48:c2:4b:d5:8f:7d:25:05:e5:09:7f: eb:83:a5:e1:ca:db:ed:83:22:0f:8c:f4:c8:08:f1:b8:da:51: 40:29:8b:5e:76:5c:6b:c1:2a:1d:1c:30:43:13:bb:56:d7:ea: 93:35:55:3d:88:f8:d3:84:d8:14:98:60:db:90:a3:9d:a3:03: 80:b4:fb:f5:57:95:79:90:4f:33:60:60:18:2c:35:15:d2:8a: db:d8:be:c8:65:8b:8a:4c:12:32:bc:b8:8b:e1:34:b1:28:cf: 7e:58:0a:d3:02:a6:17:a8:d6:0c:d2:c8:6d:69:bf:65:67:08: 66:62:97:15:8a:f0:68:f0:a8:3d:dd:5e:5e:48:d5:75:41:2e: c5:2e:51:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE1QkMxMTAvBgNVBAUTKDRDQTg5MDM2N0IxRUE0OUVCQ0Y5NDAyQzg2MjAwRENE NzQ0NkI2QzAwHhcNMjUxMjIzMDEyMzE5WhcNMjUxMjMwMDEyMzE5WjAYMRYwFAYD VQQDDA02OTQ5ZWYwNy0xZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvqsur3w3rBAP3psq9a1emUQ/Fl5UDXyGgPYQohuqAzsw7atKhAUbtfSd8xD KyQqV+fiN5T1doy+uejJmaEEHsWCrGa4IzQr4k8mRIEflPrflEJmuGMrmQiQbVkM gPTRFscRQHKwUaTQ8ZAwmP+9zEtZsCL6ttYIpqk3BNfce1qi5imdIGN1xXB+yl/b 7pfVjdSNV6m3z6lKgGp7g/MQtxCDIfpZWqSZsTIlyD315cK0pSYBNsQaaXv/sWnB ODjipazZQYtj8A3ToSSynUXZubR5RccIx1SHqqqHfgGTHsu27+ZBkLOTTwA03q9b szcXjZHVhHPM2GhRRkWZHAmalwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6NZ2Tv 5QE4+ntf7vejwlJkfjkDMB8GA1UdIwQYMBaAFEyokDZ7HqSevPlALIYgDc10RrbA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTVCQy8xNjREOTJCMkM0 NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBKNjgtVUFzaGlBTnpYUkd0 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLaVFObnNlcEo2OC1VQXNoaUFOelhSR3RzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTVCQy8xNjREOTJCMkM0NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBK NjgtVUFzaGlBTnpYUkd0c0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCffTrXZYQuj1PxcOSfhUAnVnaS9qEQ0puTADjbiNz86VIE7gHEPn2g fN/kyhjSf0YULD5cP2Bi+OXmWrtUprg3hsuywhPWru01mABhPMovRvmaVFT4DKmQ ihKZvxDPH/0qmA4HS/Gy088rRAn3gkhJKldvSMJL1Y99JQXlCX/rg6XhytvtgyIP jPTICPG42lFAKYtedlxrwSodHDBDE7tW1+qTNVU9iPjThNgUmGDbkKOdowOAtPv1 V5V5kE8zYGAYLDUV0orb2L7IZYuKTBIyvLiL4TSxKM9+WArTAqYXqNYM0shtab9l ZwhmYpcVivBo8Kg93V5eSNV1QS7FLlEk -----END CERTIFICATE-----Generated at Tue Dec 23 09:46:44 2025 by rpki-client