This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: JlD2GqgwVNEo/QiZbpVSdXRoFb87AucvwPvALhyQtec= Subject key identifier: 45:54:2A:30:61:F4:54:7A:6B:68:5F:38:F0:79:F7:E6:03:74:CA:39 Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: 011F Signing time: Wed 03 Dec 2025 03:12:15 +0000 Manifest this update: Wed 03 Dec 2025 03:12:15 +0000 Manifest next update: Wed 10 Dec 2025 03:12:15 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: KLmiCZoHaxgrtVBHRV7zF0pf+eS/hUcx29FuTE6W0Iw=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: DqAscZot5tvFIRSwhun0FkboyMxWikjQ2XKpTFYg9ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 03:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Dec 3 03:12:15 2025 GMT Not After : Dec 10 03:12:15 2025 GMT Subject: CN=692faa8f-4051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:46:e5:9d:4f:73:2f:d7:70:77:3d:8f:af: d2:04:7c:8a:b2:da:36:88:95:99:37:b4:65:b9:bf: 27:60:1b:10:5d:dc:57:4c:f3:a6:84:27:7b:bf:57: f6:30:01:16:de:22:51:09:9b:bc:02:2f:47:6c:0a: 1d:5d:36:cb:26:18:e9:39:20:44:08:c1:42:b2:51: 42:bf:07:85:fc:f8:3f:54:cb:49:a7:93:84:4d:f0: 31:a8:bd:9f:07:c4:70:b7:c3:70:68:32:f5:9e:89: c0:37:f5:17:5d:09:fb:01:fd:8e:ef:92:f3:73:01: a3:de:49:17:7e:d1:39:f5:f7:8c:b9:09:ff:98:6a: 1c:e7:79:49:9c:c1:59:8e:3d:2e:a9:3d:a7:ea:8d: 8d:9e:47:76:a5:c4:73:69:b2:e1:48:04:64:17:3e: 7b:56:0a:bc:00:ce:ec:a3:33:df:e7:94:d8:9c:b8: 29:cb:7a:92:6f:c9:98:26:08:08:20:a7:57:62:54: 8a:27:0e:b1:7f:94:e1:86:46:b9:83:7b:cc:a1:10: bf:66:dd:9b:e9:45:95:be:39:66:40:80:14:27:53: 3b:0d:cf:de:a6:3f:7a:f8:e0:a0:1d:be:a0:95:3b: 27:73:3f:8c:2a:69:ad:91:af:90:28:18:81:dd:fb: c8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:54:2A:30:61:F4:54:7A:6B:68:5F:38:F0:79:F7:E6:03:74:CA:39 X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:28:c7:2f:60:57:de:79:d5:0e:33:ba:0a:0a:e0:cb:4c:a2: 6d:6a:60:99:95:58:2c:f7:e5:c0:21:7d:f2:dd:11:ee:99:6b: 4d:c0:59:b5:6d:74:b1:53:a8:45:3b:25:b7:0c:74:b4:d0:ae: 55:7a:0f:c8:6e:a8:24:bb:75:47:da:55:71:0e:d6:b6:e4:31: 47:65:4d:c3:b7:d5:ec:40:2f:33:e9:ad:de:2a:03:5f:ab:59: 8a:ea:35:37:20:57:5d:3c:e3:63:f0:fa:73:e4:92:67:e7:20: 68:a5:c8:13:51:4e:14:ef:bc:0a:06:e6:8d:7a:76:32:09:45: 7f:32:58:7b:79:75:dd:f8:47:cb:5a:35:8f:c5:ab:6c:ba:4e: a0:9b:3d:61:28:d6:b2:de:2d:ca:de:c5:12:72:8a:67:cb:8c: 54:fd:4f:41:af:22:34:02:4c:a5:89:03:d3:d2:de:b0:75:f0: ff:30:ed:e1:6f:2d:0f:ac:da:d8:64:3a:35:11:fe:97:4e:9f: ec:48:43:15:77:7b:a2:da:af:da:26:e7:fe:a6:4b:12:82:3a: 8c:06:da:07:0c:2d:0d:09:e7:e3:c3:76:04:c9:95:37:c2:31: b9:c0:bb:8f:00:f7:f4:94:be:5d:59:df:63:f1:92:2a:6c:bf: 66:cf:8a:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUxMjAzMDMxMjE1WhcNMjUxMjEwMDMxMjE1WjAYMRYwFAYD VQQDEw02OTJmYWE4Zi00MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP5G5Z1Pcy/XcHc9j6/SBHyKsto2iJWZN7Rlub8nYBsQXdxXTPOmhCd7v1f2 MAEW3iJRCZu8Ai9HbAodXTbLJhjpOSBECMFCslFCvweF/Pg/VMtJp5OETfAxqL2f B8Rwt8NwaDL1nonAN/UXXQn7Af2O75LzcwGj3kkXftE59feMuQn/mGoc53lJnMFZ jj0uqT2n6o2Nnkd2pcRzabLhSARkFz57Vgq8AM7sozPf55TYnLgpy3qSb8mYJggI IKdXYlSKJw6xf5Thhka5g3vMoRC/Zt2b6UWVvjlmQIAUJ1M7Dc/epj96+OCgHb6g lTsncz+MKmmtka+QKBiB3fvI/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVUKjBh 9FR6a2hfOPB59+YDdMo5MB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8KMcvYFfeedUOM7oKCuDLTKJtamCZlVgs9+XAIX3y3RHumWtNwFm1 bXSxU6hFOyW3DHS00K5Veg/Ibqgku3VH2lVxDta25DFHZU3Dt9XsQC8z6a3eKgNf q1mK6jU3IFddPONj8Ppz5JJn5yBopcgTUU4U77wKBuaNenYyCUV/Mlh7eXXd+EfL WjWPxatsuk6gmz1hKNay3i3K3sUScopny4xU/U9BryI0AkyliQPT0t6wdfD/MO3h by0PrNrYZDo1Ef6XTp/sSEMVd3ui2q/aJuf+pksSgjqMBtoHDC0NCefjw3YEyZU3 wjG5wLuPAPf0lL5dWd9j8ZIqbL9mz4pb -----END CERTIFICATE-----Generated at Wed Dec 3 16:08:29 2025 by rpki-client