This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft File: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft (raw, json) Hash identifier: 4ohoVQV19e1tITwMpqXJ7LHGAy4XVemZ0KmyYH3CNzM= Subject key identifier: 7D:AD:26:75:FB:88:D9:84:4D:74:DC:5B:58:E7:58:3A:1B:FD:95:87 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft Manifest number: 02AE Signing time: Mon 08 Dec 2025 23:49:31 +0000 Manifest this update: Mon 08 Dec 2025 23:49:30 +0000 Manifest next update: Mon 15 Dec 2025 23:49:30 +0000 Files and hashes: 1: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl (hash: +vtbSX3PQqB3E3o+8dOKmqAdiXKZJXbmiVzdFKJbwIk=) 2: 6A7B1D3AA66111F0BF55D666C4F9AE02.roa (hash: Pai3Nu3+CpU9xUHwjv55hhEZi3jdFTx+UDy7SG0bPko=) 3: 951A6E226D2E11F09539AE2BC4F9AE02.roa (hash: /9WwScNnwKtuTN07Iz2vc8yMRAg5E8y5OFcRZD0NbCM=) 4: 8696B3CA729111F0B120CD72C4F9AE02.roa (hash: ut+bDFNYD/cDGx/IefSywFEYVi8u+Nng1jjgZBD3c3k=) 5: 69DD27F6A66111F0BF55D666C4F9AE02.roa (hash: GX+AW8ueL4QUC5f9XTmLIBQG0hxveckbMLPTPWw+Kk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 23:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7, serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Dec 8 23:49:30 2025 GMT Not After : Dec 15 23:49:30 2025 GMT Subject: CN=6937640a-fb10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:76:1a:5b:2e:97:40:e9:df:88:7f:e1:ec: 8c:ac:f7:52:31:d4:3e:a5:3f:c8:70:28:a0:6b:f1: 1e:7b:6a:46:f8:ed:91:27:a1:e8:25:ae:e4:5e:cf: 99:78:f4:80:01:20:cc:0d:8e:29:eb:a3:de:0d:9f: b8:b3:6b:45:48:e7:51:87:10:70:32:73:d5:6c:9b: d8:20:2b:c0:55:06:ed:c0:55:e6:a1:41:7e:1e:2a: 0a:ef:b1:aa:f5:51:45:1a:25:7f:e7:94:d9:9a:38: 3e:7a:b4:b8:fa:c4:20:3a:2b:b6:d7:e9:fd:19:8a: 22:3b:24:6c:19:2d:76:f9:07:0b:2c:b3:d4:a5:43: ee:9c:69:33:48:5c:ca:93:00:28:44:0d:a8:91:e9: f4:e1:f2:93:a6:1a:6a:4b:50:ed:3a:75:ea:50:a4: dc:02:31:99:6f:bf:1d:3b:0a:f6:b8:d3:29:4d:be: 6b:47:83:2f:46:2d:3c:8f:15:84:a2:b5:6d:ff:3b: a3:cc:86:7e:6c:38:7e:21:1d:e1:60:40:55:54:de: ac:66:ff:0d:ca:4f:13:c2:6d:32:10:24:0f:7b:15: 6f:68:c1:82:e1:71:44:69:71:ef:32:0e:ae:2d:cc: 67:d6:41:2e:20:80:4c:90:f7:3c:b0:24:03:c1:9d: 33:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:AD:26:75:FB:88:D9:84:4D:74:DC:5B:58:E7:58:3A:1B:FD:95:87 X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8f:50:c0:de:31:aa:f5:50:ba:f8:fc:ea:cf:67:e3:d0:f6: e1:36:30:63:14:6c:0b:69:9b:e1:81:39:18:6c:55:46:37:7e: 02:b9:4c:ea:e0:03:f0:d6:67:a6:54:96:0e:1c:b8:6d:70:f8: d5:6d:a5:8c:f7:3a:fd:03:3d:07:4c:e4:28:08:1c:63:54:f5: 22:35:12:c1:fc:ab:3a:a8:e1:74:2c:7f:ba:c4:a8:e0:19:c1: b8:63:48:40:d5:f2:26:0b:4b:51:a0:d5:37:1b:3d:8b:f0:e4: 22:bb:53:42:a5:1c:8d:18:a6:2e:90:c6:b4:3c:fb:f0:b7:7b: b1:25:97:d2:f5:5d:e1:73:29:b7:73:07:7b:76:9f:45:40:f8: f7:3b:56:a2:23:ea:c7:52:c3:0e:b5:e0:9c:d4:1d:4f:64:f7: 20:f7:e3:fd:41:a4:7e:e3:29:12:e0:85:8c:67:33:73:d6:a6: 94:a0:25:5c:7c:98:67:30:43:5d:2d:0a:ed:3f:a4:86:e5:ac: c5:63:ab:68:a4:c8:4b:84:5f:9d:e2:8c:0f:47:07:66:8c:ec: d6:7e:11:50:b8:ff:a5:38:d8:63:34:a6:a3:22:df:31:39:e4: c6:82:cd:f0:5b:a2:e9:8e:8a:e4:38:a6:fb:cf:c3:f6:5c:f8: 22:7d:b0:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjUxMjA4MjM0OTMwWhcNMjUxMjE1MjM0OTMwWjAYMRYwFAYD VQQDEw02OTM3NjQwYS1mYjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy552Glsul0Dp34h/4eyMrPdSMdQ+pT/IcCiga/Eee2pG+O2RJ6HoJa7kXs+Z ePSAASDMDY4p66PeDZ+4s2tFSOdRhxBwMnPVbJvYICvAVQbtwFXmoUF+HioK77Gq 9VFFGiV/55TZmjg+erS4+sQgOiu21+n9GYoiOyRsGS12+QcLLLPUpUPunGkzSFzK kwAoRA2oken04fKTphpqS1DtOnXqUKTcAjGZb78dOwr2uNMpTb5rR4MvRi08jxWE orVt/zujzIZ+bDh+IR3hYEBVVN6sZv8Nyk8Twm0yECQPexVvaMGC4XFEaXHvMg6u Lcxn1kEuIIBMkPc8sCQDwZ0zmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2tJnX7 iNmETXTcW1jnWDob/ZWHMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzJENy9GOTc5NTlDMjI0MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2Vk VTlaUTVTVFI2UG1MQ01LT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoj1DA3jGq9VC6+Pzqz2fj0PbhNjBjFGwLaZvhgTkYbFVGN34CuUzq 4APw1memVJYOHLhtcPjVbaWM9zr9Az0HTOQoCBxjVPUiNRLB/Ks6qOF0LH+6xKjg GcG4Y0hA1fImC0tRoNU3Gz2L8OQiu1NCpRyNGKYukMa0PPvwt3uxJZfS9V3hcym3 cwd7dp9FQPj3O1aiI+rHUsMOteCc1B1PZPcg9+P9QaR+4ykS4IWMZzNz1qaUoCVc fJhnMENdLQrtP6SG5azFY6topMhLhF+d4owPRwdmjOzWfhFQuP+lONhjNKajIt8x OeTGgs3wW6LpjorkOKb7z8P2XPgifbBF -----END CERTIFICATE-----Generated at Wed Dec 10 09:02:55 2025 by rpki-client