This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft File: tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json) Hash identifier: MSOGhn9adNRFxaJoO+jRZZZOG71NBoNvBLEWUAdk+i8= Subject key identifier: 84:B9:48:70:49:8A:C9:4E:13:48:D7:A7:8B:2C:B4:32:18:C2:E2:81 Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A Certificate issuer: /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Certificate serial: 0ADD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft Manifest number: 0ACC Signing time: Mon 22 Dec 2025 18:55:59 +0000 Manifest this update: Mon 22 Dec 2025 18:55:59 +0000 Manifest next update: Mon 29 Dec 2025 18:55:59 +0000 Files and hashes: 1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: 2DwreV3NQR0Z0OdrmzPXBqihStMBkEA4qpiHY6oDc5Q=) 2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: yEtb/oBRu+Pt3DfxSeSuNm69CyCHMTAD09+IpcdOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2781 (0xadd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C230, serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A Validity Not Before: Dec 22 18:55:59 2025 GMT Not After : Dec 29 18:55:59 2025 GMT Subject: CN=6949943f-4443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:10:05:71:f7:9e:46:09:db:e0:19:b8:51: fa:95:be:d9:65:60:ee:84:fe:99:82:a7:c8:b5:f6: f4:43:73:b1:f5:c3:be:c2:4e:e2:cb:32:ae:25:4f: b7:5a:f0:45:6d:99:e5:5b:87:5e:ae:bf:cd:ec:e7: 08:1e:b7:b4:a7:d4:3e:61:ab:cb:c8:cb:68:74:e3: 85:ec:c0:87:41:b0:48:f4:7f:8b:66:0c:91:02:ef: 6c:db:f0:20:bb:7d:42:3e:0f:e1:c1:8e:da:8a:71: a2:13:93:43:3b:66:7c:43:3c:9d:bc:fb:4d:02:d5: e1:4f:6e:c5:fa:f1:bd:32:b0:0c:75:3c:e7:eb:ad: 88:5b:c2:99:77:09:4a:f5:bb:10:57:27:9e:f1:76: 39:12:00:a7:c0:78:2d:3c:d9:e8:5e:aa:95:b6:0f: e1:44:12:28:94:a5:09:6f:1b:48:8f:3e:6f:b0:69: 11:18:bb:33:fe:6b:0d:bb:b8:e0:89:61:c2:d7:10: a0:37:f0:0b:69:3a:8a:38:a4:4c:10:8f:71:b6:f4: 17:25:08:f2:98:e2:a0:b8:f3:3e:44:1a:c2:62:a0: b0:fb:31:23:87:7e:66:d2:61:fd:1a:f2:20:17:6e: a6:05:73:fb:82:f0:45:6e:78:0d:66:db:f0:1d:64: 6e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B9:48:70:49:8A:C9:4E:13:48:D7:A7:8B:2C:B4:32:18:C2:E2:81 X509v3 Authority Key Identifier: keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3c:22:6a:ca:dc:e8:b4:47:93:8e:8e:d5:f7:9e:83:c4:05: 3b:55:38:b7:c7:ac:3d:0d:03:e4:8c:00:9f:73:a3:f2:35:ca: 19:21:9a:07:f5:de:a9:34:df:0d:3e:8b:40:1d:e9:4f:8f:71: 44:89:8e:54:87:e3:cc:18:7a:91:75:6e:93:a0:5e:f1:a2:47: 3f:d0:3f:85:f4:2e:f7:9e:ee:de:a0:7c:03:dd:35:d2:cb:b9: 09:d8:88:d1:b9:69:52:21:73:83:92:21:c2:66:fe:69:6f:3d: ed:16:6d:4a:4b:54:4d:93:09:da:c4:e5:a3:9b:a3:2b:ac:20: 81:f4:23:3f:11:16:32:52:cb:c1:99:f0:1c:84:09:92:23:30: 0f:85:43:0c:0d:14:2e:a8:d0:83:bb:a5:f7:0e:af:54:bf:26: f8:2e:d7:c2:62:f8:31:f8:74:dd:d1:d5:e2:07:bd:8a:a3:04: aa:d8:78:a0:2a:73:b0:30:8e:c9:68:a3:63:89:31:51:76:71: 64:14:88:a5:5c:3d:c4:9d:d0:47:90:86:2d:7b:c8:59:14:af: 19:4c:c2:0a:81:2f:8f:d5:4a:12:8c:d7:6d:48:4d:1f:7b:73: 46:38:10:3b:db:bd:7c:29:01:17:77:7d:92:cf:3f:c3:42:11: d1:78:aa:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzAxMTAvBgNVBAUTKEI1RDQ2QzBGNzVCQkJGMjQxMTI5OEFFQkQyQjU2MkI1 QUE5NUVDNkEwHhcNMjUxMjIyMTg1NTU5WhcNMjUxMjI5MTg1NTU5WjAYMRYwFAYD VQQDDA02OTQ5OTQzZi00NDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunsQBXH3nkYJ2+AZuFH6lb7ZZWDuhP6ZgqfItfb0Q3Ox9cO+wk7iyzKuJU+3 WvBFbZnlW4derr/N7OcIHre0p9Q+YavLyMtodOOF7MCHQbBI9H+LZgyRAu9s2/Ag u31CPg/hwY7ainGiE5NDO2Z8QzydvPtNAtXhT27F+vG9MrAMdTzn662IW8KZdwlK 9bsQVyee8XY5EgCnwHgtPNnoXqqVtg/hRBIolKUJbxtIjz5vsGkRGLsz/msNu7jg iWHC1xCgN/ALaTqKOKRMEI9xtvQXJQjymOKguPM+RBrCYqCw+zEjh35m0mH9GvIg F26mBXP7gvBFbngNZtvwHWRudQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIS5SHBJ islOE0jXp4sstDIYwuKBMB8GA1UdIwQYMBaAFLXUbA91u78kESmK69K1YrWqlexq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMC8yOTU0QUJEQzY1 NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5UVJLWXJyMHJWaXRhcVY3 R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkUnNEM1c3dnlRUktZcnIwclZpdGFxVjdHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMC8yOTU0QUJEQzY1NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5 UVJLWXJyMHJWaXRhcVY3R28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGPCJqytzotEeTjo7V956DxAU7VTi3x6w9DQPkjACfc6PyNcoZIZoH 9d6pNN8NPotAHelPj3FEiY5Uh+PMGHqRdW6ToF7xokc/0D+F9C73nu7eoHwD3TXS y7kJ2IjRuWlSIXODkiHCZv5pbz3tFm1KS1RNkwnaxOWjm6MrrCCB9CM/ERYyUsvB mfAchAmSIzAPhUMMDRQuqNCDu6X3Dq9Uvyb4LtfCYvgx+HTd0dXiB72KowSq2Hig KnOwMI7JaKNjiTFRdnFkFIilXD3EndBHkIYte8hZFK8ZTMIKgS+P1UoSjNdtSE0f e3NGOBA72718KQEXd32Szz/DQhHReKq3 -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:07 2025 by rpki-client