This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft File: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft (raw, json) Hash identifier: h+uNyO29l5wVQR3yM0QquFc6vz+9LnmTVkljDE7dXOQ= Subject key identifier: 44:9D:55:F7:68:69:42:79:BC:36:53:D5:89:E3:41:3B:2D:42:30:B6 Authority key identifier: BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 Certificate issuer: /CN=A91324D4/serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Certificate serial: 069D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft Manifest number: 0681 Signing time: Sat 20 Dec 2025 21:53:25 +0000 Manifest this update: Sat 20 Dec 2025 21:53:24 +0000 Manifest next update: Sat 27 Dec 2025 21:53:24 +0000 Files and hashes: 1: v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl (hash: aNBv0R3fx+vQGB/5kXi6aBvVeVCiMdX17lJeMg3rQKE=) 2: 8A88CCDC667911EE9D7DA167C4F9AE02.roa (hash: 9S57tdyd45wHLsInsTnI/GZly1K4hEDfcQJTNYuSOFQ=) 3: 78345D00E01211ED8766DC5CC4F9AE02.roa (hash: CGANdjpj39CJWyCZVGb4EKEpCCBaXu9btf2XqDDOLY4=) 4: DD643EBCE00C11ED8C71C709C4F9AE02.roa (hash: tNDEmIxy5H25Y3zlO9rXFUC8hfA45BbpRsPK4rM8u7s=) 5: 236C6906A73F11EBA1751E33C4F9AE02.roa (hash: JyPetDHabfuANEcar/HU38MZvBtPYhC6A1gULHuakq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91324D4, serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Validity Not Before: Dec 20 21:53:24 2025 GMT Not After : Dec 27 21:53:24 2025 GMT Subject: CN=69471ad5-baa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:a8:20:76:a4:f3:b9:4b:d7:1c:8d:df:27: 94:51:44:e8:6e:69:0a:b2:37:7e:a2:5d:a2:18:07: 47:96:e3:5c:e8:19:0b:ba:a4:8c:1d:3d:9d:28:05: fb:01:8d:0b:30:6b:f0:a1:f6:9c:66:27:8e:66:de: 92:de:59:bc:ec:f0:87:0a:e1:8b:bd:9e:09:1a:0f: 69:18:3e:ff:8d:cd:cc:ea:26:35:bc:a1:0f:32:72: 2e:31:57:ff:f1:e0:ac:ff:ba:12:aa:e4:30:10:24: 24:e1:6a:7a:06:72:9e:ae:9d:fc:a8:37:d0:23:48: 07:5e:b3:1d:22:b9:cb:df:2c:14:63:25:1e:38:e5: 68:4d:3c:d0:40:13:ab:df:fd:29:39:52:1d:76:b1: 56:bb:14:d0:57:34:2a:00:95:b9:2e:d8:95:5e:94: 1a:d1:88:08:3d:c2:da:cc:91:e7:43:84:2c:e1:67: b2:fc:77:14:e6:a4:83:09:3d:c5:37:72:c4:f4:7c: 83:8f:db:cb:85:91:51:cb:8f:8b:c0:94:1e:26:f9: 5b:ed:bb:30:67:90:75:e9:bc:bc:58:f2:fe:18:55: 18:41:15:fa:5f:3c:02:80:c1:bc:b2:7a:fc:f0:35: f5:ca:6d:1b:8b:39:fd:36:09:71:7a:80:6e:25:c5: 77:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9D:55:F7:68:69:42:79:BC:36:53:D5:89:E3:41:3B:2D:42:30:B6 X509v3 Authority Key Identifier: keyid:BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:41:f3:d7:41:98:c5:67:8f:f7:de:35:2c:96:30:8e:65:20: 2e:b4:49:15:f8:f7:3b:dd:ae:d5:c0:e4:99:e1:ab:c0:0b:c3: 23:35:cf:45:56:9f:28:2c:4a:b6:f7:5c:28:df:cc:8e:8a:78: ae:c9:52:35:39:68:79:82:74:04:bf:0c:6b:4c:ad:3e:1a:66: ed:9b:b2:4e:3f:67:3a:81:9f:3c:b3:c4:96:d9:b8:56:3d:31: 61:17:5c:58:43:ca:77:bf:fd:08:2e:16:e4:2e:12:0a:f1:1d: 01:7a:86:dc:50:c1:a7:dd:f0:c3:0a:64:e3:4a:99:17:23:96: 38:b3:eb:c2:61:87:bc:41:b1:17:33:04:cf:27:09:50:5c:88: ef:54:3b:42:54:03:41:df:c4:c0:41:9b:e1:14:a3:c0:ef:0f: ad:bc:55:4a:ce:66:96:61:fe:ef:6b:d6:db:96:c1:f3:38:7a: 18:f3:ea:af:84:34:9f:08:2f:9b:d3:b5:d6:2d:31:19:d1:ab: af:9c:61:00:5c:30:d7:43:16:2f:9a:55:0d:91:7a:9e:58:71: c9:3b:2f:fe:6b:cd:ce:18:13:3b:6d:3b:09:b4:14:5c:0d:5f: 2d:cc:d3:01:a8:83:16:74:a2:f2:c0:20:a5:7d:ad:b9:8e:17: d2:29:d1:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0RDQxMTAvBgNVBAUTKEJGNzRFN0U2MTRENEIyMkU0QjdGRTQwQjZCRUNFRkQx NzA1QUNGQzEwHhcNMjUxMjIwMjE1MzI0WhcNMjUxMjI3MjE1MzI0WjAYMRYwFAYD VQQDDA02OTQ3MWFkNS1iYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fuoIHak87lL1xyN3yeUUUTobmkKsjd+ol2iGAdHluNc6BkLuqSMHT2dKAX7 AY0LMGvwofacZieOZt6S3lm87PCHCuGLvZ4JGg9pGD7/jc3M6iY1vKEPMnIuMVf/ 8eCs/7oSquQwECQk4Wp6BnKerp38qDfQI0gHXrMdIrnL3ywUYyUeOOVoTTzQQBOr 3/0pOVIddrFWuxTQVzQqAJW5LtiVXpQa0YgIPcLazJHnQ4Qs4Wey/HcU5qSDCT3F N3LE9HyDj9vLhZFRy4+LwJQeJvlb7bswZ5B16by8WPL+GFUYQRX6XzwCgMG8snr8 8DX1ym0bizn9NglxeoBuJcV3KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESdVfdo aUJ5vDZT1YnjQTstQjC2MB8GA1UdIwQYMBaAFL905+YU1LIuS3/kC2vs79FwWs/B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjRENC8xQTZFNzUxQ0E3 MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNpNUxmLVFMYS16djBYQmF6 OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YzVG41aFRVc2k1TGYtUUxhLXp2MFhCYXo4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjRENC8xQTZFNzUxQ0E3MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNp NUxmLVFMYS16djBYQmF6OEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhQfPXQZjFZ4/33jUsljCOZSAutEkV+Pc73a7VwOSZ4avAC8MjNc9F Vp8oLEq291wo38yOiniuyVI1OWh5gnQEvwxrTK0+Gmbtm7JOP2c6gZ88s8SW2bhW PTFhF1xYQ8p3v/0ILhbkLhIK8R0BeobcUMGn3fDDCmTjSpkXI5Y4s+vCYYe8QbEX MwTPJwlQXIjvVDtCVANB38TAQZvhFKPA7w+tvFVKzmaWYf7va9bblsHzOHoY8+qv hDSfCC+b07XWLTEZ0auvnGEAXDDXQxYvmlUNkXqeWHHJOy/+a83OGBM7bTsJtBRc DV8tzNMBqIMWdKLywCClfa25jhfSKdF3 -----END CERTIFICATE-----Generated at Sun Dec 21 19:18:51 2025 by rpki-client