This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: W/QbM//3OKskVFIUxOFcoXZ48pMceggS6fAg5crZuto= Subject key identifier: 13:83:BB:54:92:27:8E:82:65:E7:87:8C:06:CE:76:CC:68:3D:DA:06 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1EAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1EA0 Signing time: Thu 18 Dec 2025 15:57:36 +0000 Manifest this update: Thu 18 Dec 2025 15:57:36 +0000 Manifest next update: Thu 25 Dec 2025 15:57:36 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: qLn0mppLpelO5hw35etj0WFi7ghpdYBhXkZVdygsPx8=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: Lxohf2VrEq5kdMHODmRZ0pz5VX7gk6t5HOgofkIu3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7850 (0x1eaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765, serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Dec 18 15:57:36 2025 GMT Not After : Dec 25 15:57:36 2025 GMT Subject: CN=69442470-7308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:3c:18:88:c3:70:1b:83:4b:97:b6:a5:6e: 78:3e:33:4e:4e:cd:14:9c:e4:aa:11:77:db:ea:35: f6:6c:8c:80:dc:dd:55:14:9f:92:4f:d3:1b:c7:ab: b6:59:9a:09:fa:4b:e6:f5:af:eb:36:c9:d3:d6:f1: a5:50:5b:3d:c6:33:62:f7:e2:6a:e7:a0:40:d9:29: ea:2b:f6:06:bb:f9:7a:f6:da:53:ef:64:8f:85:90: 6b:fb:51:32:aa:05:9d:fb:37:92:38:c9:02:20:02: f4:ef:0b:54:a5:46:de:31:73:f3:1b:6e:b5:ef:da: c8:9e:e6:89:27:4c:3f:23:47:02:4a:01:c6:f0:00: 7b:1f:1c:3e:99:7e:2d:eb:80:39:24:24:f8:b1:8b: 40:e7:86:9c:80:1d:1b:4a:af:8a:0d:75:0e:ca:99: 0e:2d:c8:ab:a8:c4:e7:84:35:bf:fe:39:98:98:99: fc:ae:3f:6a:1b:f2:f4:a4:f1:fe:65:71:d5:bc:e8: 86:bc:57:12:5e:97:dd:30:25:93:13:e5:34:83:52: dd:35:c9:8e:8a:ad:1b:47:21:f3:78:56:ca:75:66: fa:87:0f:fd:a0:ac:4d:9c:cb:1a:d9:17:90:c3:8d: ba:c8:aa:53:e6:9b:b6:98:c3:1e:dc:ed:59:2f:cc: 65:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:83:BB:54:92:27:8E:82:65:E7:87:8C:06:CE:76:CC:68:3D:DA:06 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b3:1c:44:e2:7a:7b:c6:26:bf:58:9b:0f:8b:95:2b:19:83: 51:12:56:fe:6d:d2:4f:5f:7d:99:ea:7f:73:78:7d:79:81:94: 0b:4f:9e:dc:3d:97:80:3a:a6:8f:f6:6a:ba:e2:9f:45:4c:d5: 2f:1e:5c:60:67:c4:31:e2:0e:ed:23:96:2b:6f:12:9b:97:8b: a2:23:fe:2c:72:23:6f:15:6a:7c:b4:8d:ae:98:c9:02:8c:dc: 3f:c8:07:a1:8d:b1:65:3e:14:ee:2e:33:72:8a:c9:fe:6f:ef: 5a:04:3b:1a:89:ec:87:ff:e2:6a:b9:30:e9:ab:38:31:f2:61: 45:e7:f6:f5:ad:95:90:98:e5:18:d2:97:4a:c9:05:d2:59:af: e7:53:44:43:b3:d0:e4:ef:3a:3d:40:82:36:14:8d:27:a7:0a: 92:79:9d:ed:8b:7e:5b:fc:61:01:74:4b:99:da:06:f1:e1:c3: dc:21:0a:75:9e:27:89:37:71:c9:22:f8:dd:aa:33:65:04:0c: bd:da:8c:57:80:2b:c2:73:9e:09:a7:1d:63:64:8a:64:d7:e6: 6f:ed:82:be:f8:37:b2:98:35:bc:92:56:e2:a6:db:6e:aa:db: 0a:33:76:fd:65:b1:57:b1:48:d4:00:ea:a7:fb:4e:9f:cf:78: 65:7b:ef:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjUxMjE4MTU1NzM2WhcNMjUxMjI1MTU1NzM2WjAYMRYwFAYD VQQDDA02OTQ0MjQ3MC03MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnaQ8GIjDcBuDS5e2pW54PjNOTs0UnOSqEXfb6jX2bIyA3N1VFJ+ST9Mbx6u2 WZoJ+kvm9a/rNsnT1vGlUFs9xjNi9+Jq56BA2SnqK/YGu/l69tpT72SPhZBr+1Ey qgWd+zeSOMkCIAL07wtUpUbeMXPzG26179rInuaJJ0w/I0cCSgHG8AB7Hxw+mX4t 64A5JCT4sYtA54acgB0bSq+KDXUOypkOLcirqMTnhDW//jmYmJn8rj9qG/L0pPH+ ZXHVvOiGvFcSXpfdMCWTE+U0g1LdNcmOiq0bRyHzeFbKdWb6hw/9oKxNnMsa2ReQ w426yKpT5pu2mMMe3O1ZL8xl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBODu1SS J46CZeeHjAbOdsxoPdoGMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASsxxE4np7xia/WJsPi5UrGYNRElb+bdJPX32Z6n9zeH15gZQLT57c PZeAOqaP9mq64p9FTNUvHlxgZ8Qx4g7tI5YrbxKbl4uiI/4sciNvFWp8tI2umMkC jNw/yAehjbFlPhTuLjNyisn+b+9aBDsaieyH/+JquTDpqzgx8mFF5/b1rZWQmOUY 0pdKyQXSWa/nU0RDs9Dk7zo9QII2FI0npwqSeZ3ti35b/GEBdEuZ2gbx4cPcIQp1 nieJN3HJIvjdqjNlBAy92oxXgCvCc54Jpx1jZIpk1+Zv7YK++DeymDW8klbipttu qtsKM3b9ZbFXsUjUAOqn+06fz3hle++m -----END CERTIFICATE-----Generated at Fri Dec 19 19:45:03 2025 by rpki-client