This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: GBcQhQnmflD7IPc+ZCZzIhy/S0XbpxBw5YvpdX94a9g= Subject key identifier: F1:7D:06:D7:DA:1E:3B:D3:A7:43:29:45:91:D5:31:3E:CB:87:D0:3E Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 8C Signing time: Sun 21 Dec 2025 05:41:34 +0000 Manifest this update: Sun 21 Dec 2025 05:41:33 +0000 Manifest next update: Sun 28 Dec 2025 05:41:33 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: gfuB5D6yVFaI9SCqoPCt85kfbVGIDccayEvpEaCyJUY=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: LFQa37q/cBpLbTU9VfVNZw79cN64ozdrBS9Unjdq4XE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Dec 21 05:41:33 2025 GMT Not After : Dec 28 05:41:33 2025 GMT Subject: CN=6947888e-8edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:b8:8a:a3:a1:d1:1f:00:a7:94:8b:90:30: 53:c1:29:3d:54:ee:05:cb:bd:7a:71:1b:90:68:8a: fa:d5:12:48:93:1a:e5:36:51:75:b6:7d:56:d1:76: f6:03:15:f3:45:b6:fd:81:a8:63:2d:59:03:63:b7: f3:7a:28:e5:d9:64:9a:21:dc:37:fd:96:78:91:45: 33:2d:a3:da:e3:6f:6c:41:d4:d1:42:01:df:37:d3: 89:3f:9f:28:ec:ee:46:d1:33:c6:c9:68:3b:fe:40: 17:ae:c4:e4:61:b3:60:01:62:06:22:48:32:4f:70: 17:46:62:8f:a3:19:8b:e6:15:b1:b7:16:80:ab:cb: e2:58:05:3c:7e:46:f2:80:15:61:79:6f:f9:26:7c: 98:3a:e7:95:9d:28:b6:64:c0:6f:3c:2d:c4:ff:5c: 48:46:c2:3d:ef:9b:ea:0c:60:40:12:bc:a9:4b:a5: bf:5d:20:02:0d:e2:6b:66:8c:55:18:68:76:4d:10: 69:71:b3:5b:65:da:d2:66:ac:31:d2:3d:44:0f:5f: ad:65:d8:57:a6:28:55:d0:15:84:8c:e9:3b:c9:44: 28:4e:60:77:b2:2a:16:b2:5d:08:32:9c:e8:be:48: de:b0:f4:9d:b8:61:fd:73:be:02:f4:d7:49:79:44: 7f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7D:06:D7:DA:1E:3B:D3:A7:43:29:45:91:D5:31:3E:CB:87:D0:3E X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:54:53:0a:f7:4d:c3:0f:b1:36:f0:4f:84:06:3b:27:5f:ef: 9a:21:6b:82:fa:79:e3:90:dc:47:08:96:a5:89:dd:c2:6d:76: ff:62:f9:13:c8:ab:8a:44:24:7b:54:78:ab:df:91:f9:15:6b: 2b:77:e0:2d:f0:40:90:d0:16:65:af:ba:15:81:fb:e5:a0:9e: 25:5a:92:6f:03:1f:79:16:6b:66:8d:9b:b4:c0:e2:8b:1e:dc: 3f:6f:ca:7a:18:f6:a2:26:ff:9e:64:54:72:70:66:51:ef:1a: be:25:19:a4:76:f6:9d:14:c7:ff:5c:7c:25:99:04:fd:0f:47: ff:6d:66:34:21:28:04:63:cf:89:78:6a:5c:bf:8c:1c:a0:08: 5f:e4:80:98:86:94:fe:48:3d:2b:3b:f2:8d:64:d0:96:0f:65: 39:f1:ff:64:c7:ee:c8:00:02:2e:87:ca:61:63:f5:f1:ae:60: dd:f6:b1:04:ae:b6:01:7f:93:5d:bb:8e:5d:b2:c2:02:f5:87: 47:b7:34:b5:57:49:8c:64:68:68:fc:3a:1f:68:97:c1:c2:a6: 37:9a:bb:df:84:69:65:21:b5:24:03:df:0b:3c:42:b5:18:5d: 59:66:a2:2b:39:86:0a:81:a8:33:01:4b:5c:44:15:f0:3d:4f: 14:45:6f:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKEI3NDY0MjRFMzRFODk5RTE0Q0QzMzlEMDczQkI1RjQ5 MThGRDA3ODcwHhcNMjUxMjIxMDU0MTMzWhcNMjUxMjI4MDU0MTMzWjAYMRYwFAYD VQQDDA02OTQ3ODg4ZS04ZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVK4iqOh0R8Ap5SLkDBTwSk9VO4Fy716cRuQaIr61RJIkxrlNlF1tn1W0Xb2 AxXzRbb9gahjLVkDY7fzeijl2WSaIdw3/ZZ4kUUzLaPa429sQdTRQgHfN9OJP58o 7O5G0TPGyWg7/kAXrsTkYbNgAWIGIkgyT3AXRmKPoxmL5hWxtxaAq8viWAU8fkby gBVheW/5JnyYOueVnSi2ZMBvPC3E/1xIRsI975vqDGBAErypS6W/XSACDeJrZoxV GGh2TRBpcbNbZdrSZqwx0j1ED1+tZdhXpihV0BWEjOk7yUQoTmB3sioWsl0IMpzo vkjesPSduGH9c74C9NdJeUR/HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF9Btfa HjvTp0MpRZHVMT7Lh9A+MB8GA1UdIwQYMBaAFLdGQk406JnhTNM50HO7X0kY/QeH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy85MzZCNDMzMjBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi90MFpDVGpUb21lRk0wem5RYzd0ZlNSajlC NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy85MzZCNDMzMjBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi90MFpDVGpUb21l Rk0wem5RYzd0ZlNSajlCNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4VFMK903DD7E28E+EBjsnX++aIWuC+nnjkNxHCJalid3CbXb/YvkT yKuKRCR7VHir35H5FWsrd+At8ECQ0BZlr7oVgfvloJ4lWpJvAx95FmtmjZu0wOKL Htw/b8p6GPaiJv+eZFRycGZR7xq+JRmkdvadFMf/XHwlmQT9D0f/bWY0ISgEY8+J eGpcv4wcoAhf5ICYhpT+SD0rO/KNZNCWD2U58f9kx+7IAAIuh8phY/XxrmDd9rEE rrYBf5Ndu45dssIC9YdHtzS1V0mMZGho/DofaJfBwqY3mrvfhGllIbUkA98LPEK1 GF1ZZqIrOYYKgagzAUtcRBXwPU8URW/n -----END CERTIFICATE-----Generated at Sun Dec 21 13:42:05 2025 by rpki-client