This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: RY+6wZsHpLhY5lv1Fmi+Ki0EHcbyeaHWcPYFUXdI1Vk= Subject key identifier: 27:D7:DD:F6:5E:34:BA:C6:51:BF:8D:13:43:91:47:C6:46:0C:11:BD Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 021F Signing time: Mon 29 Dec 2025 01:20:18 +0000 Manifest this update: Mon 29 Dec 2025 01:20:17 +0000 Manifest next update: Mon 05 Jan 2026 01:20:17 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: D5G4OkKC3mKmx7Yr5KNI8/VQi+N9POCjpivCv0/3/ko=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 01:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Dec 29 01:20:17 2025 GMT Not After : Jan 5 01:20:17 2026 GMT Subject: CN=6951d751-3e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6d:45:72:b4:86:1f:bd:f5:e1:c1:aa:4b:39: 05:a9:50:e0:c4:fb:4d:bc:69:a7:ec:9b:a9:14:df: 02:90:64:11:d5:a1:82:86:a9:07:82:3b:2d:51:bb: 3f:72:4a:50:8d:2b:fa:d7:2d:ad:ba:82:8e:bc:c4: 63:88:2b:84:b5:2a:ba:9e:86:d7:4f:c5:7a:24:8d: 16:df:97:b3:83:62:b5:1c:65:b5:a8:17:bb:e7:bf: a0:45:ff:b1:70:fe:ce:6b:cf:ff:74:d3:83:bd:bb: da:f6:ba:52:88:4a:78:df:02:c4:5f:0e:89:54:59: 5e:50:d3:48:27:84:40:eb:66:80:a0:93:41:f8:57: 99:db:c4:d9:6e:20:ab:d7:1a:7b:9e:62:5a:75:b8: c6:c5:02:fb:b2:ca:f8:16:5c:11:c1:64:72:a0:22: 04:f6:fe:0b:63:c6:6c:c7:28:ee:af:bf:ee:cc:b6: f8:10:20:5d:40:cb:2c:3c:bd:e5:20:f2:6b:70:c9: ef:19:89:52:45:53:f3:fc:18:00:92:99:60:5e:fa: f2:7f:3d:0d:f9:91:1f:31:a9:ae:df:8a:14:84:29: 8e:7e:f7:4a:a3:42:18:35:7d:04:90:20:65:0f:c1: 93:7b:8b:d9:f3:15:9f:c7:53:72:9c:4c:c5:49:98: c8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D7:DD:F6:5E:34:BA:C6:51:BF:8D:13:43:91:47:C6:46:0C:11:BD X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:94:f8:b8:ec:16:7d:20:aa:ac:9c:b5:04:56:83:cc:2f:14: 97:03:09:54:bd:d7:50:62:be:e7:5d:5b:ca:39:a6:cf:97:e7: e1:b3:6a:99:f4:5b:25:ab:30:9d:dc:e9:7c:3d:b9:e3:c1:40: 3d:14:bf:0f:33:ca:20:6f:c9:33:b1:e0:f4:51:67:4b:20:0a: 8c:99:80:ff:80:ef:59:61:00:0b:35:1a:26:0e:96:f4:f8:69: 04:1a:2f:93:03:b8:52:b8:5e:00:7b:29:ce:b1:84:27:42:12: c0:1f:67:54:b9:56:ee:77:ca:4e:68:5c:0c:99:14:eb:05:8b: c6:66:65:34:b3:5b:1f:a5:8b:4e:69:13:9a:4d:d3:e8:d6:01: ff:73:0f:ba:9e:fe:22:8c:0f:52:c6:7a:6a:a5:f0:80:bc:c5: 01:7c:8c:cd:fb:16:62:8c:66:de:19:a4:1a:a9:ae:c6:ef:ad: 32:6c:bb:e2:f6:e2:6b:f2:e2:76:41:d5:8b:07:7a:de:9b:53: 9d:c1:db:19:25:04:5d:34:85:25:26:f4:9f:fa:f8:b7:66:f4: 79:b0:b5:46:48:af:bb:2c:d5:06:cf:d5:6e:53:09:4b:9b:0a: ab:ea:48:d3:b7:72:db:60:98:f9:4f:e4:1f:44:0c:72:54:8d: 17:f2:9a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMjI5MDEyMDE3WhcNMjYwMTA1MDEyMDE3WjAYMRYwFAYD VQQDDA02OTUxZDc1MS0zZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvm1FcrSGH7314cGqSzkFqVDgxPtNvGmn7JupFN8CkGQR1aGChqkHgjstUbs/ ckpQjSv61y2tuoKOvMRjiCuEtSq6nobXT8V6JI0W35ezg2K1HGW1qBe757+gRf+x cP7Oa8//dNODvbva9rpSiEp43wLEXw6JVFleUNNIJ4RA62aAoJNB+FeZ28TZbiCr 1xp7nmJadbjGxQL7ssr4FlwRwWRyoCIE9v4LY8Zsxyjur7/uzLb4ECBdQMssPL3l IPJrcMnvGYlSRVPz/BgAkplgXvryfz0N+ZEfMamu34oUhCmOfvdKo0IYNX0EkCBl D8GTe4vZ8xWfx1NynEzFSZjINQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfX3fZe NLrGUb+NE0ORR8ZGDBG9MB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRlPi47BZ9IKqsnLUEVoPMLxSXAwlUvddQYr7nXVvKOabPl+fhs2qZ 9FslqzCd3Ol8PbnjwUA9FL8PM8ogb8kzseD0UWdLIAqMmYD/gO9ZYQALNRomDpb0 +GkEGi+TA7hSuF4AeynOsYQnQhLAH2dUuVbud8pOaFwMmRTrBYvGZmU0s1sfpYtO aROaTdPo1gH/cw+6nv4ijA9SxnpqpfCAvMUBfIzN+xZijGbeGaQaqa7G760ybLvi 9uJr8uJ2QdWLB3rem1OdwdsZJQRdNIUlJvSf+vi3ZvR5sLVGSK+7LNUGz9VuUwlL mwqr6kjTt3LbYJj5T+QfRAxyVI0X8prL -----END CERTIFICATE-----Generated at Tue Dec 30 20:20:56 2025 by rpki-client