This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: 23Tk4N5ZsJTdV73o02TMT9gthG4QNR1H7w9VONrVPrU= Subject key identifier: F4:34:10:C4:E0:20:D9:2E:A5:E7:F7:28:3B:97:64:4A:E9:86:D8:E9 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 180A Signing time: Sun 28 Dec 2025 16:36:10 +0000 Manifest this update: Sun 28 Dec 2025 16:36:09 +0000 Manifest next update: Sun 04 Jan 2026 16:36:09 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: +gVocyzwwRBJ1jGLxODZh1pxpMkXp05PyIYbQuGuGeA=) 2: A865A1925B1611F083088661C4F9AE02.roa (hash: Rw9T99RuNwJAGQR3ACNuRpkBbGAU9I1LWh2/O8OeLqs=) 3: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: Y+I6xs+Ghxp/nManyHpMLzBR6d+9ACgxr4bM9Tk/9sc=) 4: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: lNqOJJYDQvLu7DRWfBEiDCTTNbz1juAgLIKu2ZnWJwo=) 5: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 5uITBc+pZTop6KZh3NhbY8ifInIc97Y2n3CHN/qqt94=) 6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: dqGvsBo+O3A3ECQgQGmvroXEzldwim2Z97cn9HnwO7I=) 7: 47AAFC5A661311F09011712CC4F9AE02.roa (hash: a50VCxDM+rD8Ar8TkJi367BRkd8ietONIDl/hmG93rs=) 8: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: H2LNVWI/4SBtnLIxC+HsKb0Sn6SPu235wjCIk/88N90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 16:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6685 (0x1a1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Dec 28 16:36:09 2025 GMT Not After : Jan 4 16:36:09 2026 GMT Subject: CN=69515c7a-1286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c4:65:d1:84:a1:69:e0:48:20:37:24:84:08: a0:c6:38:e0:c4:f9:b2:e5:6d:95:78:ba:1d:67:3e: bc:4f:8c:1f:52:10:f5:c0:ca:5d:fc:15:f1:71:e8: 55:62:84:20:df:b6:02:f3:2d:11:41:16:79:b1:7d: 53:5f:e4:83:1f:8b:00:b8:97:50:71:5d:3a:d3:a4: 41:8d:df:5c:3e:25:64:dd:25:4e:df:1c:08:27:81: a5:dd:c3:4b:ea:d1:52:25:51:92:60:54:5f:60:3c: e6:ca:8e:02:30:87:30:ef:69:e1:c0:c3:4b:95:15: 43:7a:58:81:b8:50:3b:1d:47:cc:b3:fd:cc:3b:32: e6:1e:bb:0c:25:a6:0b:b1:f2:2b:54:de:ef:5f:6d: ad:b3:2f:ba:a1:18:11:e6:e6:f2:0b:77:c5:3c:2a: 9b:a4:fc:2f:be:72:d1:dc:2e:b5:91:9a:bc:ae:78: be:53:6f:07:5a:13:47:02:fb:7b:52:93:62:92:7b: f2:93:50:35:86:d2:34:da:0c:c4:1b:90:9a:12:ee: 25:68:ae:43:74:79:35:0c:29:cc:76:04:b9:3b:2c: 14:77:fb:bf:fa:4c:7b:ca:c2:9f:81:06:19:68:11: b7:df:d1:5a:2c:3a:d3:7f:db:5c:cd:25:e2:5b:c7: 4c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:34:10:C4:E0:20:D9:2E:A5:E7:F7:28:3B:97:64:4A:E9:86:D8:E9 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:36:fc:5a:8c:bc:ed:92:2c:ef:70:4a:1a:91:0f:93:8d:49: ef:7e:d5:94:73:5d:09:b1:47:1a:07:97:2a:43:8b:47:16:d7: d3:df:ce:ab:1e:ad:94:48:c4:b7:a3:b8:e7:dd:ba:38:7e:75: e3:85:33:0b:4e:eb:19:e6:a4:e5:74:43:7e:65:bf:b9:44:69: dc:1d:61:8f:c1:ac:15:4e:a7:b0:1b:3d:54:53:77:00:bc:7f: e3:cb:41:7b:46:b4:ba:4c:e5:5f:70:e2:48:bb:ba:eb:f4:bb: e6:2c:6e:af:12:fa:fc:f0:dc:7b:28:b7:d3:89:51:b3:ff:ff: 65:53:1c:3e:1a:99:69:d7:01:f6:cf:9c:a9:73:9e:f0:70:0f: 54:a7:e4:fc:96:78:7e:4a:5d:b4:43:02:ae:c4:98:b3:3e:82: d5:27:10:b6:d2:6d:74:39:ac:61:6e:0c:09:c6:5a:d2:9c:a5: 09:0f:c5:1b:7b:39:1e:a7:6f:05:9a:61:95:eb:fd:4d:80:6b: b9:e1:c5:42:23:c9:f9:b4:a3:62:d8:9e:a8:ba:a9:b9:b8:d5: 9c:91:3b:e9:dc:7d:ce:f8:9b:29:44:69:a1:dc:d8:66:a7:c4: bf:40:9c:7e:94:a2:7f:5b:9f:0d:67:6a:d6:84:48:45:93:45: 76:f4:00:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjUxMjI4MTYzNjA5WhcNMjYwMTA0MTYzNjA5WjAYMRYwFAYD VQQDDA02OTUxNWM3YS0xMjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18Rl0YShaeBIIDckhAigxjjgxPmy5W2VeLodZz68T4wfUhD1wMpd/BXxcehV YoQg37YC8y0RQRZ5sX1TX+SDH4sAuJdQcV0606RBjd9cPiVk3SVO3xwIJ4Gl3cNL 6tFSJVGSYFRfYDzmyo4CMIcw72nhwMNLlRVDeliBuFA7HUfMs/3MOzLmHrsMJaYL sfIrVN7vX22tsy+6oRgR5ubyC3fFPCqbpPwvvnLR3C61kZq8rni+U28HWhNHAvt7 UpNiknvyk1A1htI02gzEG5CaEu4laK5DdHk1DCnMdgS5OywUd/u/+kx7ysKfgQYZ aBG339FaLDrTf9tczSXiW8dMSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQ0EMTg INkupef3KDuXZErphtjpMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLNvxajLztkizvcEoakQ+TjUnvftWUc10JsUcaB5cqQ4tHFtfT386r Hq2USMS3o7jn3bo4fnXjhTMLTusZ5qTldEN+Zb+5RGncHWGPwawVTqewGz1UU3cA vH/jy0F7RrS6TOVfcOJIu7rr9LvmLG6vEvr88Nx7KLfTiVGz//9lUxw+Gplp1wH2 z5ypc57wcA9Up+T8lnh+Sl20QwKuxJizPoLVJxC20m10OaxhbgwJxlrSnKUJD8Ub ezkep28FmmGV6/1NgGu54cVCI8n5tKNi2J6ouqm5uNWckTvp3H3O+JspRGmh3Nhm p8S/QJx+lKJ/W58NZ2rWhEhFk0V29ADk -----END CERTIFICATE-----Generated at Sun Dec 28 21:42:13 2025 by rpki-client