This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: PL3uTI3g/PWm8qnxVklt36ddKlZNAcmqSSB0nqBNcFY= Subject key identifier: E5:A4:9D:4A:89:F1:B6:8C:A8:9F:74:43:8B:BA:BB:46:C8:AE:27:70 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: F7 Signing time: Mon 15 Dec 2025 04:42:09 +0000 Manifest this update: Mon 15 Dec 2025 04:42:09 +0000 Manifest next update: Mon 22 Dec 2025 04:42:09 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: 3M+LAx2kKxp7q7LtQ9mEx1stQsbx8lBDZwJGF/wW87U=) 2: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: 4DEc0wbLK30W3YSB0WhzIpXuKeWb4EluJvYfPFr8RSQ=) 3: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: Co6tkDsI5HQErtzjpED6IOpErLBa9412vvEmJqPigVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 04:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Dec 15 04:42:09 2025 GMT Not After : Dec 22 04:42:09 2025 GMT Subject: CN=693f91a1-1264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c0:db:27:fe:76:af:7c:aa:9f:af:8c:ec:53: 3b:51:0f:d2:26:d3:88:8d:c7:31:88:df:89:65:ef: 5d:6f:95:16:60:d0:32:44:05:f0:74:3e:ea:42:25: 5e:4e:4e:ca:cc:65:99:96:b4:18:e6:8f:65:b9:63: 7e:d4:b3:2d:50:1f:15:af:35:4c:bf:12:5d:2c:67: 3e:e1:72:90:f5:7f:7f:02:2f:bf:ea:6a:7a:81:cd: 75:07:c7:76:d0:f3:f6:49:16:88:1f:d9:17:5c:88: f6:f2:db:5d:06:ab:88:08:55:ff:bf:22:36:de:b0: f0:f3:1c:99:e2:54:f5:43:fc:32:ed:a0:ba:27:6a: 85:ad:16:91:01:16:91:0d:a3:c6:2e:3d:3e:f4:44: 40:32:bf:e7:cd:9d:f9:6f:9c:7d:9e:ff:d0:a5:81: db:6e:19:d0:9d:ba:4c:65:90:ce:4c:b2:87:87:3c: 31:3f:0e:b3:1c:77:60:b1:14:31:4c:c5:e8:2f:53: e8:db:3c:3a:4a:e2:26:87:78:1b:da:d8:a6:ab:56: 25:d2:eb:81:b6:4c:85:3f:59:52:2d:d9:2b:e4:1c: 19:52:2c:6f:a1:79:87:38:e8:c8:80:bb:e9:6a:68: 13:1c:a7:39:b5:3c:3b:55:cd:00:2d:c4:74:fd:64: b3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A4:9D:4A:89:F1:B6:8C:A8:9F:74:43:8B:BA:BB:46:C8:AE:27:70 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:53:97:0a:0e:0e:e7:23:66:a2:c0:42:e4:31:2b:e6:fa:0b: ff:53:3b:3f:36:d6:57:ef:69:3d:f1:e5:c7:3b:bf:72:9f:76: e4:d6:44:63:3d:36:e9:7c:2e:82:e4:9c:63:70:8a:65:b3:7d: 0b:63:54:e9:3e:e5:87:dd:2c:53:78:7f:3f:33:17:cf:cf:51: 56:cd:90:a1:10:20:25:40:30:39:2f:e7:19:8e:d9:03:ae:2c: 51:78:25:0f:63:69:44:20:4d:5e:3f:03:aa:15:51:1d:ba:38: 18:ac:3a:78:0a:2d:7d:e8:4d:1f:80:44:55:ea:ff:f1:95:d4: ff:22:50:29:5a:72:3c:b7:4f:c2:f4:f3:91:44:5c:8d:f9:6d: 58:a7:6e:61:31:b4:cf:1f:14:6a:32:98:2d:48:42:9f:b6:50: a9:de:31:ec:bc:64:85:6d:c5:3c:5a:4b:dc:79:fb:82:63:1b: a8:2d:94:49:c6:10:7e:d3:5d:f9:67:33:a7:fc:1a:59:ac:02: 27:ce:93:99:c8:9a:63:d7:fc:6c:75:5e:80:ee:b9:ca:f6:c8: e8:bc:61:07:f1:15:d8:1f:a1:5a:8c:ff:7a:9e:42:92:6c:38: d7:51:f0:d2:d3:4b:39:6d:52:15:96:29:71:e7:ce:de:be:6d: b9:9d:53:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUxMjE1MDQ0MjA5WhcNMjUxMjIyMDQ0MjA5WjAYMRYwFAYD VQQDDA02OTNmOTFhMS0xMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlMDbJ/52r3yqn6+M7FM7UQ/SJtOIjccxiN+JZe9db5UWYNAyRAXwdD7qQiVe Tk7KzGWZlrQY5o9luWN+1LMtUB8VrzVMvxJdLGc+4XKQ9X9/Ai+/6mp6gc11B8d2 0PP2SRaIH9kXXIj28ttdBquICFX/vyI23rDw8xyZ4lT1Q/wy7aC6J2qFrRaRARaR DaPGLj0+9ERAMr/nzZ35b5x9nv/QpYHbbhnQnbpMZZDOTLKHhzwxPw6zHHdgsRQx TMXoL1Po2zw6SuImh3gb2timq1Yl0uuBtkyFP1lSLdkr5BwZUixvoXmHOOjIgLvp amgTHKc5tTw7Vc0ALcR0/WSzUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWknUqJ 8baMqJ90Q4u6u0bIridwMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhU5cKDg7nI2aiwELkMSvm+gv/Uzs/NtZX72k98eXHO79yn3bk1kRj PTbpfC6C5JxjcIpls30LY1TpPuWH3SxTeH8/MxfPz1FWzZChECAlQDA5L+cZjtkD rixReCUPY2lEIE1ePwOqFVEdujgYrDp4Ci196E0fgERV6v/xldT/IlApWnI8t0/C 9PORRFyN+W1Yp25hMbTPHxRqMpgtSEKftlCp3jHsvGSFbcU8WkvcefuCYxuoLZRJ xhB+0135ZzOn/BpZrAInzpOZyJpj1/xsdV6A7rnK9sjovGEH8RXYH6FajP96nkKS bDjXUfDS00s5bVIVlilx587evm25nVMV -----END CERTIFICATE-----Generated at Mon Dec 15 14:18:56 2025 by rpki-client