This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: kE00/d9Sc42yOPZcuPCQfveRv0w0JkJzCp1m68mE8lw= Subject key identifier: 25:38:89:FD:A7:B8:FC:DC:19:F9:47:38:7E:01:9B:03:1A:6E:81:F4 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 016E Signing time: Sun 21 Dec 2025 03:06:59 +0000 Manifest this update: Sun 21 Dec 2025 03:06:59 +0000 Manifest next update: Sun 28 Dec 2025 03:06:59 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: uzNAqVgHjuEgwpkSHbl/4o0F8iQxiBbQntEndPy3d4k=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Dec 21 03:06:59 2025 GMT Not After : Dec 28 03:06:59 2025 GMT Subject: CN=69476453-de00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ad:21:56:37:8c:09:5a:81:0e:36:16:35:9d: 00:d5:23:d1:60:0d:7f:1e:69:10:58:1a:09:7a:03: 27:a3:7c:91:84:15:11:4f:ee:25:4b:05:fc:88:bc: 9d:7c:46:79:7d:7f:0f:6b:d2:04:d1:c4:3a:ff:f3: e8:09:8f:34:88:a3:3a:65:e0:ec:ed:e5:e7:b7:b8: d8:5b:5f:91:a3:f0:31:bd:45:30:3f:d0:f1:eb:a6: 25:19:8d:49:ac:2c:b5:ed:fd:11:57:55:33:e8:16: 2f:18:79:d7:70:ae:95:a4:a2:dc:60:b5:22:3a:05: 55:16:c5:05:2a:d5:20:30:b1:05:0a:12:32:fb:d3: 97:fa:70:60:ae:11:4c:3d:67:90:bc:53:e2:fd:67: b2:bd:d3:ae:ab:aa:9e:e9:4d:d7:07:12:e4:16:1d: 2a:70:14:c8:bd:27:14:a9:2d:e7:06:7a:70:21:13: 53:ac:ef:36:31:8c:32:ea:73:0e:94:fe:45:7c:7d: 02:30:f5:1d:52:46:2f:5f:08:12:4c:0e:49:ba:59: 1a:a7:24:11:eb:f0:bb:3f:2b:5e:06:1e:2f:cc:25: e9:b0:01:9f:58:00:f9:d8:db:b3:ab:f9:aa:e7:78: de:a4:c6:e7:41:eb:d3:82:7f:a5:76:a8:65:00:22: a1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:38:89:FD:A7:B8:FC:DC:19:F9:47:38:7E:01:9B:03:1A:6E:81:F4 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f9:9f:9c:ef:f2:42:9d:74:4a:50:e1:27:16:e1:a9:a3:75: cb:56:17:d3:4a:bb:ab:bb:04:2b:0f:cb:59:d4:7f:dd:f4:a6: 85:a9:01:37:8c:7f:6b:26:19:69:b9:7b:56:f0:d8:87:7a:7a: 35:82:cd:5a:f9:08:b3:44:77:77:e8:b1:79:4b:ed:d1:0d:15: 31:d3:9f:27:52:91:80:d6:d9:c6:52:02:ff:57:11:28:79:23: c5:cc:9f:ab:40:cc:77:05:f2:a7:5a:3e:e0:67:ee:c7:81:f7: a4:fe:77:83:bc:71:a3:ce:33:55:58:bb:eb:fe:52:b4:80:d4: 44:bc:c8:f4:68:2c:56:1f:b7:c6:38:9e:04:87:04:a4:e9:e0: c8:c6:13:51:eb:ce:15:be:79:5e:ad:59:4e:ed:b9:7a:fd:98: 18:46:7a:78:05:24:63:e8:2e:d6:5c:10:e3:ce:b2:a2:c4:e8: 2d:6c:e5:b0:ba:23:8b:3f:ba:d7:b4:5d:ea:7e:69:31:2b:df: 89:f6:95:2e:47:31:71:25:2e:9c:58:a2:52:cc:e9:35:ee:91: bb:be:61:2e:a1:ad:aa:52:5c:b0:7d:ec:99:83:4d:14:ab:d3: 79:8e:39:61:52:13:d0:2f:5d:fe:4f:73:23:41:d9:c0:dc:aa: 85:4f:d1:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUxMjIxMDMwNjU5WhcNMjUxMjI4MDMwNjU5WjAYMRYwFAYD VQQDDA02OTQ3NjQ1My1kZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsK0hVjeMCVqBDjYWNZ0A1SPRYA1/HmkQWBoJegMno3yRhBURT+4lSwX8iLyd fEZ5fX8Pa9IE0cQ6//PoCY80iKM6ZeDs7eXnt7jYW1+Ro/AxvUUwP9Dx66YlGY1J rCy17f0RV1Uz6BYvGHnXcK6VpKLcYLUiOgVVFsUFKtUgMLEFChIy+9OX+nBgrhFM PWeQvFPi/WeyvdOuq6qe6U3XBxLkFh0qcBTIvScUqS3nBnpwIRNTrO82MYwy6nMO lP5FfH0CMPUdUkYvXwgSTA5JulkapyQR6/C7PyteBh4vzCXpsAGfWAD52Nuzq/mq 53jepMbnQevTgn+ldqhlACKhKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU4if2n uPzcGflHOH4BmwMaboH0MB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM+Z+c7/JCnXRKUOEnFuGpo3XLVhfTSruruwQrD8tZ1H/d9KaFqQE3 jH9rJhlpuXtW8NiHeno1gs1a+QizRHd36LF5S+3RDRUx058nUpGA1tnGUgL/VxEo eSPFzJ+rQMx3BfKnWj7gZ+7Hgfek/neDvHGjzjNVWLvr/lK0gNREvMj0aCxWH7fG OJ4EhwSk6eDIxhNR684VvnlerVlO7bl6/ZgYRnp4BSRj6C7WXBDjzrKixOgtbOWw uiOLP7rXtF3qfmkxK9+J9pUuRzFxJS6cWKJSzOk17pG7vmEuoa2qUlywfeyZg00U q9N5jjlhUhPQL13+T3MjQdnA3KqFT9Eh -----END CERTIFICATE-----Generated at Mon Dec 22 18:41:00 2025 by rpki-client