This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: xSvJRz8gteJLw+b7GwmbMCpmRQJ6YqXgxnVB7w5zR0A= Subject key identifier: 5A:2D:91:59:72:DD:A8:D5:CC:26:EA:F7:C6:23:2F:55:B1:42:9E:C2 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 0811 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 0811 Signing time: Thu 18 Dec 2025 20:25:19 +0000 Manifest this update: Thu 18 Dec 2025 20:25:18 +0000 Manifest next update: Thu 25 Dec 2025 20:25:18 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: OggrY16QWHBZdiT8Z0Ofnz0rFrSciF2YKFKS7ZBcrb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2065 (0x811) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Dec 18 20:25:18 2025 GMT Not After : Dec 25 20:25:18 2025 GMT Subject: CN=6944632f-416e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e3:73:8d:ae:7d:c8:6f:a5:55:3a:f2:99:e8: 8f:1d:2a:94:da:0a:9d:2e:93:96:45:9c:fd:93:38: c9:49:14:03:ad:f8:08:f5:7c:b9:35:e3:96:3b:e2: 70:cb:87:07:a2:40:fd:90:53:a6:28:97:17:aa:3c: a2:a4:46:b5:a1:77:7e:32:29:f4:03:03:c3:dc:97: c0:ae:b6:27:a3:9d:57:36:c9:64:fd:9d:31:28:61: b1:65:35:81:3b:40:aa:38:6e:19:57:58:15:20:30: 87:1c:7f:ca:c2:44:85:12:da:38:c9:f3:8f:6a:f5: 21:d8:71:a4:a8:68:c5:2c:12:1d:a0:8f:45:3b:12: 02:8b:e7:00:11:55:db:4f:95:69:33:90:64:25:9c: e5:e5:b9:dc:d5:4e:40:de:a2:0f:3f:5c:b4:a8:ea: ec:7f:d1:ff:59:8d:6f:63:36:f5:74:f9:5e:64:29: 7c:c6:48:2d:f9:4b:8c:74:d4:06:c4:d5:db:f9:98: 6a:49:34:b9:12:18:88:db:f4:5c:2e:46:89:22:d9: a9:ac:ce:a1:6e:ac:b1:d0:99:08:92:9e:cf:6c:ce: 38:54:8a:4c:a0:00:9d:b0:53:87:cb:af:18:5f:05: 30:2b:95:1c:1f:4e:fe:b5:98:a2:9e:6c:e4:28:ca: 22:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:2D:91:59:72:DD:A8:D5:CC:26:EA:F7:C6:23:2F:55:B1:42:9E:C2 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:db:fe:20:49:c8:d4:50:47:de:1a:b3:9e:48:c5:0d:15:76: 22:3c:c4:ef:f5:90:ae:da:89:70:85:25:da:e6:8b:c7:ee:5a: 6a:09:70:e3:67:9b:bd:94:49:1c:b0:8b:1d:53:b7:49:07:f8: 4a:3b:e2:16:44:17:ac:2a:26:d7:c5:34:7f:8c:0b:35:1d:fd: 41:f3:19:ff:e7:89:00:8e:0b:1e:c3:8b:f3:49:d0:d1:82:d4: 47:69:34:69:50:da:25:6e:a0:cc:97:f1:ea:2b:bb:cc:5d:e6: da:0d:78:99:91:c4:8b:d7:e1:79:8f:74:21:7c:c7:52:4e:0b: 04:41:09:64:dc:71:83:08:dd:c9:ac:8b:30:75:6a:3e:1d:46: 67:d5:ec:e9:c4:9c:cd:4b:25:d0:f4:57:65:1c:61:4e:74:85: e3:66:8b:9a:87:1e:da:d5:db:e7:c2:da:9f:e7:49:9f:7a:cd: d0:43:86:e7:ad:cd:4f:73:64:0f:aa:c9:25:93:5f:56:54:c4: b4:4c:7f:32:79:cb:e0:b7:a3:ae:eb:53:60:5c:57:7b:ea:61: 26:3e:5b:ea:be:6c:94:bc:a2:55:87:b0:d1:1c:a5:78:39:38: 10:1c:c4:74:84:21:89:ee:d7:8d:31:ce:ff:8b:47:97:37:83: 4e:5b:fa:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUxMjE4MjAyNTE4WhcNMjUxMjI1MjAyNTE4WjAYMRYwFAYD VQQDDA02OTQ0NjMyZi00MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ONzja59yG+lVTrymeiPHSqU2gqdLpOWRZz9kzjJSRQDrfgI9Xy5NeOWO+Jw y4cHokD9kFOmKJcXqjyipEa1oXd+Min0AwPD3JfArrYno51XNslk/Z0xKGGxZTWB O0CqOG4ZV1gVIDCHHH/KwkSFEto4yfOPavUh2HGkqGjFLBIdoI9FOxICi+cAEVXb T5VpM5BkJZzl5bnc1U5A3qIPP1y0qOrsf9H/WY1vYzb1dPleZCl8xkgt+UuMdNQG xNXb+ZhqSTS5EhiI2/RcLkaJItmprM6hbqyx0JkIkp7PbM44VIpMoACdsFOHy68Y XwUwK5UcH07+tZiinmzkKMoiqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFotkVly 3ajVzCbq98YjL1WxQp7CMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC2/4gScjUUEfeGrOeSMUNFXYiPMTv9ZCu2olwhSXa5ovH7lpqCXDj Z5u9lEkcsIsdU7dJB/hKO+IWRBesKibXxTR/jAs1Hf1B8xn/54kAjgsew4vzSdDR gtRHaTRpUNolbqDMl/HqK7vMXebaDXiZkcSL1+F5j3QhfMdSTgsEQQlk3HGDCN3J rIswdWo+HUZn1ezpxJzNSyXQ9FdlHGFOdIXjZouahx7a1dvnwtqf50mfes3QQ4bn rc1Pc2QPqsklk19WVMS0TH8yecvgt6Ou61NgXFd76mEmPlvqvmyUvKJVh7DRHKV4 OTgQHMR0hCGJ7teNMc7/i0eXN4NOW/r4 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:16 2025 by rpki-client