This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: Z6zbItm3Mg2+tkZOYzspEJSuPRjDgL2T1G5mad9BCYg= Subject key identifier: F9:72:BD:E1:B1:18:66:FE:02:8B:2D:4E:66:5E:E9:86:F3:14:C7:8F Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0D12 Signing time: Thu 18 Dec 2025 20:02:55 +0000 Manifest this update: Thu 18 Dec 2025 20:02:54 +0000 Manifest next update: Thu 25 Dec 2025 20:02:54 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: ghnPSU/UYuT4/DqSa52XxXRQ7iMhT3CJ/2xlkdr7R/k=) 2: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: R9z8+TOIkB2HShaZE8kZf0+7pw9G6s/c+bvTwVe027E=) 3: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Dec 18 20:02:54 2025 GMT Not After : Dec 25 20:02:54 2025 GMT Subject: CN=69445dee-aa65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:6f:b9:4e:5d:2e:86:2d:6f:57:07:67:ca: d7:8f:34:36:5e:40:51:43:f6:da:f6:51:dc:18:b4: e0:d9:4f:42:e9:21:a3:46:cf:61:60:ae:17:69:8f: ca:d0:a1:65:22:4f:96:16:42:98:57:e2:67:eb:3a: b9:b5:8f:ea:57:05:a1:bc:bc:3a:5b:5a:80:41:c1: a2:6c:2a:da:61:d9:1f:48:33:56:94:b5:ab:69:d4: 5c:28:11:a2:4b:57:8e:42:4b:e3:be:0e:32:fe:50: 24:42:4c:8b:3e:d2:03:63:4a:6e:f3:3a:7d:c4:6d: ba:7d:f5:9f:11:24:71:57:28:ba:87:97:d7:b3:29: 37:45:f2:a6:02:be:7f:22:1c:78:5a:3b:79:f7:77: d5:d8:fb:12:b2:1d:a8:ae:ec:30:9a:8e:56:b7:96: 2e:18:61:b2:8c:29:a4:2e:38:0e:45:cd:9c:3c:0d: 28:a1:64:76:cc:7a:67:9c:16:16:0b:c1:dc:b8:38: 54:85:86:b7:da:a4:d7:02:ca:8b:27:85:b5:f2:df: e0:63:1c:04:97:b6:08:3a:9f:78:18:0d:e7:c7:f6: 84:84:bb:da:1c:c1:ee:fd:bc:86:1d:e8:78:7f:3a: 18:67:f0:1a:69:ac:d8:12:51:3f:08:58:93:7d:41: 6f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:72:BD:E1:B1:18:66:FE:02:8B:2D:4E:66:5E:E9:86:F3:14:C7:8F X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:d9:a6:c5:f6:74:69:aa:68:4e:db:64:e8:a8:86:a8:e5:89: d1:ee:25:0a:40:65:d1:88:ba:3d:d2:70:29:ba:12:e2:d8:2b: 6c:dc:f1:63:82:b6:04:48:ea:85:ae:22:1a:d6:7c:d9:8d:48: 7c:1f:ea:3b:a9:6d:67:fb:4b:44:17:bb:7d:d4:52:b8:32:7e: ea:52:0d:9e:98:59:2a:14:f8:b0:d3:3d:55:fb:3b:14:17:69: e7:08:ba:e5:18:08:f2:e0:e1:51:b6:24:e1:6e:7b:d7:d8:bd: 3e:a5:ea:2d:9e:79:30:19:fc:49:4a:d2:24:43:03:dc:2a:46: 2c:51:be:eb:52:13:cd:53:2c:bb:7d:fe:72:47:43:db:b1:eb: 31:c1:8a:08:25:54:22:72:64:1d:8a:b4:1e:cd:d2:49:95:92: 18:cb:26:b3:e8:a3:85:0e:93:70:33:2d:f6:38:84:c6:a7:20: 03:41:f5:7a:43:a9:31:c4:74:f8:b2:a4:c8:19:0e:2e:b4:9b: be:5f:d0:ae:83:9a:c5:67:aa:ea:cd:4d:ef:36:02:29:c7:7f: 7b:89:13:b9:42:9a:ad:ce:5f:d8:27:be:6d:6a:38:d8:77:5a: a9:db:9c:29:5c:88:6c:cf:0f:67:ae:0f:fd:05:8f:6f:35:e0: 44:08:32:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUxMjE4MjAwMjU0WhcNMjUxMjI1MjAwMjU0WjAYMRYwFAYD VQQDDA02OTQ0NWRlZS1hYTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3RvuU5dLoYtb1cHZ8rXjzQ2XkBRQ/ba9lHcGLTg2U9C6SGjRs9hYK4XaY/K 0KFlIk+WFkKYV+Jn6zq5tY/qVwWhvLw6W1qAQcGibCraYdkfSDNWlLWradRcKBGi S1eOQkvjvg4y/lAkQkyLPtIDY0pu8zp9xG26ffWfESRxVyi6h5fXsyk3RfKmAr5/ Ihx4Wjt593fV2PsSsh2oruwwmo5Wt5YuGGGyjCmkLjgORc2cPA0ooWR2zHpnnBYW C8HcuDhUhYa32qTXAsqLJ4W18t/gYxwEl7YIOp94GA3nx/aEhLvaHMHu/byGHeh4 fzoYZ/AaaazYElE/CFiTfUFvBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlyveGx GGb+AostTmZe6YbzFMePMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt2abF9nRpqmhO22ToqIao5YnR7iUKQGXRiLo90nApuhLi2Cts3PFj grYESOqFriIa1nzZjUh8H+o7qW1n+0tEF7t91FK4Mn7qUg2emFkqFPiw0z1V+zsU F2nnCLrlGAjy4OFRtiThbnvX2L0+peotnnkwGfxJStIkQwPcKkYsUb7rUhPNUyy7 ff5yR0PbsesxwYoIJVQicmQdirQezdJJlZIYyyaz6KOFDpNwMy32OITGpyADQfV6 Q6kxxHT4sqTIGQ4utJu+X9Cug5rFZ6rqzU3vNgIpx397iRO5Qpqtzl/YJ75tajjY d1qp25wpXIhszw9nrg/9BY9vNeBECDIN -----END CERTIFICATE-----Generated at Sat Dec 20 14:13:51 2025 by rpki-client