This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: NfyLSfskGvmi1oFVAEsV8Du0h3SeVv8hzNuD4sklFYU= Subject key identifier: AD:44:7D:6F:8B:BE:9F:F7:9E:85:6F:53:5B:56:20:2C:50:BE:59:1C Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 0524 Signing time: Sat 06 Dec 2025 22:18:40 +0000 Manifest this update: Sat 06 Dec 2025 22:18:40 +0000 Manifest next update: Sat 13 Dec 2025 22:18:40 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: uICuQreS9dNnNQGKaTiG5n4rWYzKrenT2v3LuM3w5vU=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: khCBRdWb426Yvsw+599qbEndOMTiul2nlL/4zC73sHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Dec 6 22:18:40 2025 GMT Not After : Dec 13 22:18:40 2025 GMT Subject: CN=6934abc0-5a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:ca:99:c6:79:eb:60:e4:72:29:78:0c:10: 5c:6e:14:04:d4:a8:f7:99:82:da:50:ba:47:8b:ca: 99:9f:0c:10:4f:dd:d4:6d:7f:46:ed:66:df:27:c5: 49:f0:76:6e:17:1c:c0:d3:01:b0:92:51:3d:32:f5: d4:3c:71:5a:13:47:fc:70:a8:8c:47:f2:ea:5e:5f: 69:0c:c6:af:60:07:7e:a1:13:94:8b:c8:32:26:e8: 6d:25:09:4e:f7:fb:82:b7:b6:c3:37:c3:2e:66:20: b4:37:85:78:fe:ad:3d:56:28:0d:7d:72:55:a7:c0: c5:1f:d5:99:cf:9a:f4:19:68:30:7c:73:9f:2e:d6: a7:0b:04:23:46:2d:75:a7:e6:e2:57:66:85:74:c6: 55:f8:de:c2:fc:60:28:52:e8:d4:22:13:89:ad:2a: 3f:ff:8c:e6:12:c6:f7:fa:34:8b:e1:60:61:db:26: d5:e6:03:73:31:9a:19:bb:1d:f0:aa:ec:a8:45:ef: 3f:fe:2d:5f:62:00:49:a9:b7:36:62:03:e0:91:93: 17:6d:6d:42:d3:d8:a0:c9:3e:67:e7:94:d3:e3:73: 26:29:9a:3c:62:7f:62:27:73:43:44:5f:fa:3c:99: 0a:91:6d:dd:6b:8a:90:0a:02:b5:54:7f:06:fb:95: 87:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:44:7D:6F:8B:BE:9F:F7:9E:85:6F:53:5B:56:20:2C:50:BE:59:1C X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bf:f8:77:d8:55:24:0b:64:7f:d1:c1:ab:96:2a:16:db:26: 9a:66:82:cf:b4:64:d3:2e:a3:1d:7d:21:7c:96:76:df:59:92: f8:d5:66:a0:fa:e0:0e:41:0b:43:d8:c7:eb:14:97:3b:1f:c2: bf:d2:1c:fe:9d:db:5c:7a:73:0f:8f:ab:0c:62:80:c7:47:e4: 87:38:80:bf:e4:fa:5c:58:f0:2d:64:43:52:16:d2:8d:eb:40: f8:4e:73:67:10:d6:fc:e9:d4:98:f3:bc:b1:99:8d:2b:38:8a: 0c:a6:62:b9:b4:4c:e4:ff:8a:66:37:31:98:6d:86:fa:98:7b: 8d:57:f3:87:a8:0a:c4:8a:49:eb:a7:4c:b5:96:b5:fd:76:ac: d9:ff:f6:af:8e:1b:bf:48:53:b1:4b:e9:49:97:97:f7:c0:b5: 3f:b8:c8:13:b1:1f:7f:7b:04:6f:f1:44:12:90:53:af:cd:13: 7e:24:e0:b4:1a:3f:d4:2e:59:c8:42:a9:26:c5:73:ec:ed:8e: 1c:e0:33:3b:ed:0d:ce:45:ed:e5:7f:d7:ed:26:43:a1:0f:a3: df:9b:57:6a:03:43:b9:76:1c:dc:00:27:55:80:07:58:68:e8: d7:20:ca:cf:e8:6b:8d:bd:0d:6f:af:cf:2b:4e:fd:d6:ba:94: ef:8c:38:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjUxMjA2MjIxODQwWhcNMjUxMjEzMjIxODQwWjAYMRYwFAYD VQQDEw02OTM0YWJjMC01YTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vDKmcZ562Dkcil4DBBcbhQE1Kj3mYLaULpHi8qZnwwQT93UbX9G7WbfJ8VJ 8HZuFxzA0wGwklE9MvXUPHFaE0f8cKiMR/LqXl9pDMavYAd+oROUi8gyJuhtJQlO 9/uCt7bDN8MuZiC0N4V4/q09VigNfXJVp8DFH9WZz5r0GWgwfHOfLtanCwQjRi11 p+biV2aFdMZV+N7C/GAoUujUIhOJrSo//4zmEsb3+jSL4WBh2ybV5gNzMZoZux3w quyoRe8//i1fYgBJqbc2YgPgkZMXbW1C09igyT5n55TT43MmKZo8Yn9iJ3NDRF/6 PJkKkW3da4qQCgK1VH8G+5WHFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1EfW+L vp/3noVvU1tWICxQvlkcMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjv/h32FUkC2R/0cGrlioW2yaaZoLPtGTTLqMdfSF8lnbfWZL41Wag +uAOQQtD2MfrFJc7H8K/0hz+ndtcenMPj6sMYoDHR+SHOIC/5PpcWPAtZENSFtKN 60D4TnNnENb86dSY87yxmY0rOIoMpmK5tEzk/4pmNzGYbYb6mHuNV/OHqArEiknr p0y1lrX9dqzZ//avjhu/SFOxS+lJl5f3wLU/uMgTsR9/ewRv8UQSkFOvzRN+JOC0 Gj/ULlnIQqkmxXPs7Y4c4DM77Q3ORe3lf9ftJkOhD6Pfm1dqA0O5dhzcACdVgAdY aOjXIMrP6GuNvQ1vr88rTv3WupTvjDjm -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:37 2025 by rpki-client