This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: d/EIPIKNwTaMwoEoJWClck1WiemtTZZ6QyS8iSpNvRs= Subject key identifier: 43:AD:F9:74:A8:1F:E4:FF:5F:E3:40:4F:56:BF:CA:0C:8F:2B:F5:65 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: C4 Signing time: Fri 19 Dec 2025 05:00:51 +0000 Manifest this update: Fri 19 Dec 2025 05:00:50 +0000 Manifest next update: Fri 26 Dec 2025 05:00:50 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: bRMQz5NK4vUd5pF2NeEEvw2uzvmP0Jzd3K9nlGZy0LY=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: c+aLqfbR3Fgu4NT0Rj31V85wle+td9tPpiQLLrA3X1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Dec 19 05:00:50 2025 GMT Not After : Dec 26 05:00:50 2025 GMT Subject: CN=6944dc02-93c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:49:17:7f:0c:8e:d8:24:f7:0f:d3:15:94:3b: 20:09:87:26:3a:ca:75:20:60:03:d1:5b:ab:36:e1: 9f:80:b5:72:2c:e5:32:21:9c:27:cb:26:81:05:b5: f7:cc:b5:87:ce:a3:fb:5f:46:a7:c2:44:ad:f4:90: 77:90:f4:63:8c:df:88:26:9b:9f:60:87:c1:bb:2b: 1f:d2:e8:7b:4d:8c:76:10:fd:83:50:9b:8e:19:38: 76:17:f9:26:2f:73:50:9b:9a:2a:a7:2e:da:fe:eb: 93:f8:48:a8:f2:e8:30:0e:de:21:94:de:df:19:55: a3:ce:c4:ee:fa:42:de:cb:98:88:c7:1e:50:f6:7d: 2f:a9:da:93:9d:13:ae:0f:ff:8d:62:98:25:70:c2: 68:99:3f:43:85:02:58:10:c7:7f:42:7a:8c:20:25: e4:b4:46:fc:e5:a8:9c:a4:f9:5f:dc:a7:da:55:a4: 85:3f:4c:85:ed:2c:92:7c:04:a4:36:26:8f:ba:81: bd:24:d7:5f:dc:d3:20:e1:8c:3d:22:5f:6a:9b:26: e9:51:75:ad:f1:a3:00:aa:ac:d9:13:d9:5c:a9:ab: 3a:6a:00:98:e1:79:47:49:b6:4c:4f:85:cb:16:24: 11:7f:26:8f:76:e4:94:7d:a6:a3:89:b6:3d:85:16: b1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AD:F9:74:A8:1F:E4:FF:5F:E3:40:4F:56:BF:CA:0C:8F:2B:F5:65 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:8f:77:5b:4e:a8:9d:84:6a:25:e2:c4:37:91:86:d3:3c:f6: 2f:dc:96:d5:87:e2:5f:4a:2c:dc:a7:d4:03:4f:7d:b3:e7:f8: 93:40:44:3b:91:37:bc:ea:ff:b7:90:6f:8a:17:36:c1:fd:d5: af:be:e9:d1:eb:18:85:35:22:17:aa:be:4d:df:bb:3b:1e:78: 15:f4:be:15:9b:c7:e9:38:3c:87:13:04:24:e9:1e:d9:32:d8: 9c:fc:df:f9:c6:9b:09:5b:4b:8d:57:b8:81:9e:ae:d8:5b:74: 05:ff:f6:5f:23:75:fa:5c:05:ab:2d:0a:ac:12:0a:c7:49:44: 5e:40:1f:55:bc:0f:2e:a4:ab:3d:71:f5:7a:e5:49:9d:d3:47: b1:18:bc:e4:62:d1:2f:02:ad:c2:09:30:c2:a2:b2:8c:24:fa: 51:59:f8:cb:c1:a9:c2:16:07:75:f9:1b:98:49:3d:a4:a8:84: 24:aa:5d:46:64:f5:45:b9:ce:74:d2:64:78:00:d1:72:17:7e: 5e:bb:25:fd:66:9c:eb:a3:15:32:dc:d5:1b:2c:1c:aa:4e:0a: 83:e9:0f:ed:4b:d9:ea:f0:da:7f:3f:5c:a9:67:7a:78:9a:26: 85:28:7a:46:72:cc:39:92:27:cf:ed:ba:aa:e5:a6:5d:a0:8e: 5e:4b:85:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKDRFNzU5QUIyREUyNDU0NjlGODMxMUI5MjczQjU1NTM4 N0U3NTBBOTAwHhcNMjUxMjE5MDUwMDUwWhcNMjUxMjI2MDUwMDUwWjAYMRYwFAYD VQQDDA02OTQ0ZGMwMi05M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0kXfwyO2CT3D9MVlDsgCYcmOsp1IGAD0VurNuGfgLVyLOUyIZwnyyaBBbX3 zLWHzqP7X0anwkSt9JB3kPRjjN+IJpufYIfBuysf0uh7TYx2EP2DUJuOGTh2F/km L3NQm5oqpy7a/uuT+Eio8ugwDt4hlN7fGVWjzsTu+kLey5iIxx5Q9n0vqdqTnROu D/+NYpglcMJomT9DhQJYEMd/QnqMICXktEb85aicpPlf3KfaVaSFP0yF7SySfASk NiaPuoG9JNdf3NMg4Yw9Il9qmybpUXWt8aMAqqzZE9lcqas6agCY4XlHSbZMT4XL FiQRfyaPduSUfaajibY9hRaxmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOt+XSo H+T/X+NAT1a/ygyPK/VlMB8GA1UdIwQYMBaAFE51mrLeJFRp+DEbknO1VTh+dQqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8wOEYwNTI2MEIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZHbjRNUnVTYzdWVk9INTFD cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi9Ubldhc3Q0a1ZH bjRNUnVTYzdWVk9INTFDcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoj3dbTqidhGol4sQ3kYbTPPYv3JbVh+JfSizcp9QDT32z5/iTQEQ7 kTe86v+3kG+KFzbB/dWvvunR6xiFNSIXqr5N37s7HngV9L4Vm8fpODyHEwQk6R7Z Mtic/N/5xpsJW0uNV7iBnq7YW3QF//ZfI3X6XAWrLQqsEgrHSUReQB9VvA8upKs9 cfV65Umd00exGLzkYtEvAq3CCTDCorKMJPpRWfjLwanCFgd1+RuYST2kqIQkql1G ZPVFuc500mR4ANFyF35euyX9ZpzroxUy3NUbLByqTgqD6Q/tS9nq8Np/P1ypZ3p4 miaFKHpGcsw5kifP7bqq5aZdoI5eS4UY -----END CERTIFICATE-----Generated at Sat Dec 20 05:15:09 2025 by rpki-client