This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 1TDZDertckW0BnkkqqnQKr/kqCZ/1D3s2oS5VAXT02E= Subject key identifier: 33:C9:95:80:8F:70:6C:6C:33:47:B6:06:1D:E8:1C:E3:54:A0:BA:08 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 180B Signing time: Tue 30 Dec 2025 16:38:37 +0000 Manifest this update: Tue 30 Dec 2025 16:38:36 +0000 Manifest next update: Tue 06 Jan 2026 16:38:36 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: R8XCyZqbu8z5LMmkc13tzw0xOknCyNUIH2AOoieQWh0=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 5uITBc+pZTop6KZh3NhbY8ifInIc97Y2n3CHN/qqt94=) 3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: lNqOJJYDQvLu7DRWfBEiDCTTNbz1juAgLIKu2ZnWJwo=) 4: 47AAFC5A661311F09011712CC4F9AE02.roa (hash: a50VCxDM+rD8Ar8TkJi367BRkd8ietONIDl/hmG93rs=) 5: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90=) 6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: dqGvsBo+O3A3ECQgQGmvroXEzldwim2Z97cn9HnwO7I=) 7: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: Y+I6xs+Ghxp/nManyHpMLzBR6d+9ACgxr4bM9Tk/9sc=) 8: A865A1925B1611F083088661C4F9AE02.roa (hash: Rw9T99RuNwJAGQR3ACNuRpkBbGAU9I1LWh2/O8OeLqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 16:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6686 (0x1a1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Dec 30 16:38:36 2025 GMT Not After : Jan 6 16:38:36 2026 GMT Subject: CN=6954000d-98ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e5:30:e7:9c:06:00:8f:c5:11:23:76:00:a9: fb:5f:36:67:7e:98:7e:48:77:af:a6:d6:5e:b5:e6: 04:f3:b1:ca:75:6e:cf:97:dd:5c:58:0e:8a:4a:ee: f3:ec:54:d8:0f:b7:c1:57:7c:eb:bd:e3:33:9a:ec: 14:0c:90:0c:07:8c:3e:1d:a9:26:20:c1:40:85:64: 7d:af:1c:ad:d3:1a:c6:45:b9:f2:fb:28:23:97:3a: 21:b6:71:bc:00:b4:05:78:e9:38:f4:e7:4c:b0:ee: f0:e9:6a:fc:2c:9e:c3:56:6b:a0:4c:d8:f1:34:4b: e5:16:b1:32:04:8c:6f:42:78:05:a3:7f:52:46:47: 79:d7:e4:62:46:06:f9:2e:55:11:6d:f7:16:d0:6a: f2:98:9d:f6:ef:6e:2b:6e:b7:7c:78:fc:45:e5:61: 91:ba:bc:b2:e2:74:8c:34:bf:fd:98:d0:3f:c8:12: b2:79:64:6b:c8:61:90:d6:ec:04:15:88:9c:bb:05: c4:bc:d1:96:fb:84:77:fb:7a:f8:a4:2d:6e:51:df: fc:fd:c8:e2:7f:fc:58:16:a5:81:2a:b9:4e:c1:9d: 22:eb:f5:dd:9a:e5:4b:d6:d9:9e:57:c3:3d:42:cc: 91:2d:1a:26:9c:ab:e4:3c:c3:c2:36:c7:6c:19:21: 20:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C9:95:80:8F:70:6C:6C:33:47:B6:06:1D:E8:1C:E3:54:A0:BA:08 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b8:14:4c:f7:4a:f4:22:87:d1:d6:59:d2:2d:98:4e:2a:9e: b4:cf:92:67:c9:c6:00:cf:c0:46:26:94:db:69:c2:90:6e:a3: 73:a1:0d:0e:f6:69:49:be:f4:c6:6b:19:2e:12:ed:c2:7e:54: dd:88:a2:9c:d3:ec:eb:da:93:b7:ab:1b:2b:09:e4:17:1b:e7: 62:53:54:de:2c:aa:c9:27:b5:f5:72:ea:e8:b6:ad:58:aa:f1: c2:ab:0e:10:1c:c6:5d:2e:33:93:ce:4a:ff:d9:f8:b5:25:75: 65:24:17:65:c4:dc:52:d1:f1:e1:6a:71:99:15:95:18:bc:c3: 9b:21:a1:fb:b4:10:b0:f2:2e:8a:cc:f0:b8:8a:66:30:a3:ab: 08:84:67:6f:6b:f3:ce:2e:d8:ce:af:55:e4:89:25:43:74:8c: b4:50:4a:a9:e2:01:3c:01:90:ce:ff:79:ed:cd:a7:63:21:6b: 62:51:f3:c8:c4:2b:83:a0:72:3e:91:9b:54:e2:a7:67:45:1a: fd:9b:95:5f:16:93:0e:fd:5c:c4:7d:5b:68:2a:01:dc:8b:a8: 23:94:c6:e7:a5:2c:b0:1c:00:0a:05:b7:5f:73:af:1a:ed:f6: 54:50:bc:53:c7:c3:30:80:75:cb:55:bf:9d:fd:61:b6:c2:ad: 53:53:7e:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUxMjMwMTYzODM2WhcNMjYwMTA2MTYzODM2WjAYMRYwFAYD VQQDDA02OTU0MDAwZC05OGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+Uw55wGAI/FESN2AKn7XzZnfph+SHevptZeteYE87HKdW7Pl91cWA6KSu7z 7FTYD7fBV3zrveMzmuwUDJAMB4w+HakmIMFAhWR9rxyt0xrGRbny+ygjlzohtnG8 ALQFeOk49OdMsO7w6Wr8LJ7DVmugTNjxNEvlFrEyBIxvQngFo39SRkd51+RiRgb5 LlURbfcW0GrymJ32724rbrd8ePxF5WGRuryy4nSMNL/9mNA/yBKyeWRryGGQ1uwE FYicuwXEvNGW+4R3+3r4pC1uUd/8/cjif/xYFqWBKrlOwZ0i6/XdmuVL1tmeV8M9 QsyRLRomnKvkPMPCNsdsGSEgoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPJlYCP cGxsM0e2Bh3oHONUoLoIMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVuBRM90r0IofR1lnSLZhOKp60z5JnycYAz8BGJpTbacKQbqNzoQ0O 9mlJvvTGaxkuEu3CflTdiKKc0+zr2pO3qxsrCeQXG+diU1TeLKrJJ7X1curotq1Y qvHCqw4QHMZdLjOTzkr/2fi1JXVlJBdlxNxS0fHhanGZFZUYvMObIaH7tBCw8i6K zPC4imYwo6sIhGdva/POLtjOr1XkiSVDdIy0UEqp4gE8AZDO/3ntzadjIWtiUfPI xCuDoHI+kZtU4qdnRRr9m5VfFpMO/VzEfVtoKgHci6gjlMbnpSywHAAKBbdfc68a 7fZUULxTx8MwgHXLVb+d/WG2wq1TU37L -----END CERTIFICATE-----Generated at Wed Dec 31 04:53:25 2025 by rpki-client