This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft File: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft (raw, json) Hash identifier: aQYb8NxLfRQ2m2fA1HIAmbORaD1J+QT8l3ojnCpE9uU= Subject key identifier: 66:2A:34:AC:C7:A1:DE:50:1C:80:0C:B2:95:F8:A2:73:F9:60:BD:8B Authority key identifier: BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 Certificate issuer: /CN=A91324D4/serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft Manifest number: 0685 Signing time: Sun 28 Dec 2025 21:47:21 +0000 Manifest this update: Sun 28 Dec 2025 21:47:20 +0000 Manifest next update: Sun 04 Jan 2026 21:47:20 +0000 Files and hashes: 1: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl (hash: bgd11q9K3ovIYFHWgJkLC8Z/VjDdfCDI82DC4/BFpmo=) 2: 78345D00E01211ED8766DC5CC4F9AE02.roa (hash: CGANdjpj39CJWyCZVGb4EKEpCCBaXu9btf2XqDDOLY4=) 3: 8A88CCDC667911EE9D7DA167C4F9AE02.roa (hash: 9S57tdyd45wHLsInsTnI/GZly1K4hEDfcQJTNYuSOFQ=) 4: DD643EBCE00C11ED8C71C709C4F9AE02.roa (hash: tNDEmIxy5H25Y3zlO9rXFUC8hfA45BbpRsPK4rM8u7s=) 5: 236C6906A73F11EBA1751E33C4F9AE02.roa (hash: JyPetDHabfuANEcar/HU38MZvBtPYhC6A1gULHuakq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91324D4, serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Validity Not Before: Dec 28 21:47:20 2025 GMT Not After : Jan 4 21:47:20 2026 GMT Subject: CN=6951a569-5660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:6d:45:27:39:da:44:d3:69:b6:e8:65:7b: 10:b7:1e:be:75:9f:c6:37:28:d4:43:25:c9:ca:22: fc:90:be:33:6d:aa:60:aa:5b:8a:c2:46:d7:94:ae: 0e:87:e1:77:aa:9f:2e:90:f6:c4:f3:40:65:6a:ca: f3:fc:f8:a3:43:3f:6e:8e:49:38:d2:d0:eb:8a:96: 17:1f:ce:15:7e:27:0e:6a:fd:8a:44:67:ff:bf:45: 6e:a0:41:58:44:28:8b:83:ca:19:66:cf:49:64:16: c5:ba:61:82:36:c7:cf:80:7c:c5:14:44:bb:b2:b6: 30:81:3c:c4:dd:87:fd:1e:7e:d3:2d:a8:5a:60:75: 88:cb:16:d4:76:69:e3:0e:5f:24:ca:58:af:12:9e: d6:e2:27:ec:5c:28:f9:87:40:34:68:07:f1:5c:b5: 55:2c:8c:bb:7c:b5:03:37:38:2b:7e:8b:3e:bc:91: 18:00:d1:aa:8a:0b:62:01:e0:3f:b0:07:5e:94:91: eb:00:c0:00:50:1a:dd:8a:28:da:26:13:e8:c5:23: 4a:3c:0e:3b:c4:10:b7:1e:bd:a4:de:12:82:80:4a: e9:7f:ee:54:75:04:a0:a1:72:c5:1d:45:8e:6a:61: eb:e8:b2:bc:3c:92:46:16:b6:9f:39:3a:4f:dd:72: 50:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2A:34:AC:C7:A1:DE:50:1C:80:0C:B2:95:F8:A2:73:F9:60:BD:8B X509v3 Authority Key Identifier: keyid:BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:84:21:28:a8:13:f4:e3:94:a7:d1:f2:e1:36:26:e6:15:64: b7:ac:55:eb:b8:3a:74:2c:05:d7:0d:69:2d:1b:35:83:43:eb: 2a:f1:12:e3:0c:47:fb:3f:7f:db:80:88:21:56:a6:ad:5a:01: e0:1f:ab:8c:49:4e:d6:a2:24:90:77:22:d7:b8:32:4e:f4:33: a0:a2:73:9e:35:68:ee:8d:86:ed:1f:11:7b:e1:8b:44:e0:7b: 1c:b8:e7:13:d6:fc:d5:3a:4b:30:9a:ae:c8:d7:0b:c6:e8:85: dc:fa:16:43:d6:69:51:48:09:02:c3:ee:d3:8e:e3:05:83:0a: 1d:3a:d3:37:54:b0:f1:f6:c9:35:21:c4:15:44:5e:03:9f:5d: 47:0e:db:39:f3:46:3a:f9:60:e0:24:a8:54:53:21:d9:de:f3: f1:4a:0c:89:e4:1d:aa:7a:70:fd:7e:75:ec:43:73:2e:7e:97: 60:33:a8:21:58:75:e5:38:f5:47:93:1f:65:3e:f8:83:0a:64: 46:b3:16:60:3e:ec:7c:68:a0:2f:2e:7a:83:c1:e3:ca:f9:3f: 77:7e:06:61:d5:94:ba:42:68:fc:78:5b:d6:b3:58:03:7b:b9: b3:f7:13:e8:4a:d2:cb:b5:28:6e:d4:6a:32:5a:65:d8:5f:58: a8:a6:db:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0RDQxMTAvBgNVBAUTKEJGNzRFN0U2MTRENEIyMkU0QjdGRTQwQjZCRUNFRkQx NzA1QUNGQzEwHhcNMjUxMjI4MjE0NzIwWhcNMjYwMTA0MjE0NzIwWjAYMRYwFAYD VQQDDA02OTUxYTU2OS01NjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZltRSc52kTTabboZXsQtx6+dZ/GNyjUQyXJyiL8kL4zbapgqluKwkbXlK4O h+F3qp8ukPbE80Blasrz/PijQz9ujkk40tDripYXH84VficOav2KRGf/v0VuoEFY RCiLg8oZZs9JZBbFumGCNsfPgHzFFES7srYwgTzE3Yf9Hn7TLahaYHWIyxbUdmnj Dl8kylivEp7W4ifsXCj5h0A0aAfxXLVVLIy7fLUDNzgrfos+vJEYANGqigtiAeA/ sAdelJHrAMAAUBrdiijaJhPoxSNKPA47xBC3Hr2k3hKCgErpf+5UdQSgoXLFHUWO amHr6LK8PJJGFrafOTpP3XJQbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYqNKzH od5QHIAMspX4onP5YL2LMB8GA1UdIwQYMBaAFL905+YU1LIuS3/kC2vs79FwWs/B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjRENC8xQTZFNzUxQ0E3 MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNpNUxmLVFMYS16djBYQmF6 OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YzVG41aFRVc2k1TGYtUUxhLXp2MFhCYXo4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjRENC8xQTZFNzUxQ0E3MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNp NUxmLVFMYS16djBYQmF6OEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGhCEoqBP045Sn0fLhNibmFWS3rFXruDp0LAXXDWktGzWDQ+sq8RLj DEf7P3/bgIghVqatWgHgH6uMSU7WoiSQdyLXuDJO9DOgonOeNWjujYbtHxF74YtE 4HscuOcT1vzVOkswmq7I1wvG6IXc+hZD1mlRSAkCw+7TjuMFgwodOtM3VLDx9sk1 IcQVRF4Dn11HDts580Y6+WDgJKhUUyHZ3vPxSgyJ5B2qenD9fnXsQ3MufpdgM6gh WHXlOPVHkx9lPviDCmRGsxZgPux8aKAvLnqDwePK+T93fgZh1ZS6Qmj8eFvWs1gD e7mz9xPoStLLtShu1GoyWmXYX1ioptuN -----END CERTIFICATE-----Generated at Tue Dec 30 04:33:53 2025 by rpki-client