This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: qFe+o35A44Pq2IotxuQKjZcMITmyIk5aZlV1p6zrzeo= Subject key identifier: 8C:C8:3A:57:BA:82:0E:10:B8:DF:04:F3:36:98:1B:B4:7B:05:DA:F8 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08AB Signing time: Thu 18 Dec 2025 20:02:35 +0000 Manifest this update: Thu 18 Dec 2025 20:02:35 +0000 Manifest next update: Thu 25 Dec 2025 20:02:35 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: KsssUrHNMd2M3xpCB4aVZlzVWIAT3GjLR3ley/0Et/g=) 2: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 3: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Dec 18 20:02:35 2025 GMT Not After : Dec 25 20:02:35 2025 GMT Subject: CN=69445ddb-8607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:12:01:97:b0:e4:2b:a8:31:fe:ea:6e:ab:56: 36:9c:18:fe:da:d8:1d:0d:4c:d9:76:59:10:90:2b: e0:a8:ec:cc:4e:70:ff:73:48:19:da:4d:35:e0:24: 9f:6d:e7:94:bb:c6:1d:df:67:4f:4b:7e:52:1d:fc: 23:ac:9d:c3:29:cf:81:ca:e5:45:84:dd:f4:0c:96: 35:7a:fd:6e:d2:b5:7f:bb:b6:ad:e6:4f:39:31:f4: 34:02:01:74:2c:1e:45:82:9e:78:c7:5d:62:8b:ea: 1d:5d:35:43:bb:9c:a5:30:2e:b7:90:6b:73:fb:da: 81:5b:e2:4a:79:48:90:4f:4d:b7:63:03:4d:86:d9: 62:77:a7:c6:51:80:c4:d5:13:de:db:4e:b0:63:f2: b2:ae:29:a6:0c:96:0a:e1:83:7d:25:15:15:68:e4: f7:d4:c9:5d:24:90:01:f3:33:fc:76:63:2d:20:0b: c8:ea:54:71:63:7e:1e:8c:79:3a:9c:3f:9c:80:2e: 3f:1d:18:76:4c:25:e3:94:00:4f:59:50:0a:bd:6c: d1:81:ea:99:4f:33:84:24:ac:cd:58:c3:a2:31:a6: d5:c5:48:09:f2:4b:d3:30:2e:2e:b7:d2:81:4a:d8: ce:fd:26:c1:5b:3c:1e:43:43:9a:2c:ae:e1:f1:db: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C8:3A:57:BA:82:0E:10:B8:DF:04:F3:36:98:1B:B4:7B:05:DA:F8 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:d8:ad:d1:7f:ca:6a:0e:80:59:2f:a4:36:e5:88:2b:be:91: 7f:6b:79:50:b6:fb:68:11:56:54:db:66:95:36:44:ef:51:47: 40:5d:10:ac:e0:56:8b:f8:06:7d:36:00:fd:29:91:0a:76:57: 7d:1e:0e:4c:43:1b:e5:b4:9f:40:c6:da:21:83:a9:05:5e:31: 82:9b:14:c0:90:ce:f9:0c:3d:c7:f7:6e:75:e4:75:a2:0d:18: af:26:ac:61:7d:e1:d1:ac:ec:14:c1:94:f1:f2:c6:26:d8:2e: db:d8:e5:26:b1:2f:7b:d3:ae:af:81:19:f0:cd:19:3c:d5:26: 54:a2:d2:b3:e4:84:c0:f9:19:9d:13:39:87:d0:e9:45:8b:b3: 5e:78:45:45:4a:0b:94:40:10:9c:e3:6a:7c:28:ca:66:e7:2d: 18:09:6c:df:d7:b6:04:cf:ac:ff:1e:12:7e:46:02:5f:a3:8a: 2c:5c:00:a6:05:5f:cb:98:d0:eb:d9:8a:fd:61:c4:84:a2:08: c3:78:cc:ab:81:99:a8:c8:29:da:dc:cf:5e:a2:20:63:ed:01: 2c:5b:4d:ad:1d:3f:0c:44:2f:b3:a9:30:fc:9f:81:8f:6f:b7: 08:8b:44:70:ff:d0:5d:20:bd:fa:11:1f:f4:8e:4d:8d:4d:49: da:d5:e4:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUxMjE4MjAwMjM1WhcNMjUxMjI1MjAwMjM1WjAYMRYwFAYD VQQDDA02OTQ0NWRkYi04NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhIBl7DkK6gx/upuq1Y2nBj+2tgdDUzZdlkQkCvgqOzMTnD/c0gZ2k014CSf beeUu8Yd32dPS35SHfwjrJ3DKc+ByuVFhN30DJY1ev1u0rV/u7at5k85MfQ0AgF0 LB5Fgp54x11ii+odXTVDu5ylMC63kGtz+9qBW+JKeUiQT023YwNNhtlid6fGUYDE 1RPe206wY/KyrimmDJYK4YN9JRUVaOT31MldJJAB8zP8dmMtIAvI6lRxY34ejHk6 nD+cgC4/HRh2TCXjlABPWVAKvWzRgeqZTzOEJKzNWMOiMabVxUgJ8kvTMC4ut9KB StjO/SbBWzweQ0OaLK7h8dvddQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzIOle6 gg4QuN8E8zaYG7R7Bdr4MB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi2K3Rf8pqDoBZL6Q25YgrvpF/a3lQtvtoEVZU22aVNkTvUUdAXRCs 4FaL+AZ9NgD9KZEKdld9Hg5MQxvltJ9Axtohg6kFXjGCmxTAkM75DD3H92515HWi DRivJqxhfeHRrOwUwZTx8sYm2C7b2OUmsS97066vgRnwzRk81SZUotKz5ITA+Rmd EzmH0OlFi7NeeEVFSguUQBCc42p8KMpm5y0YCWzf17YEz6z/HhJ+RgJfo4osXACm BV/LmNDr2Yr9YcSEogjDeMyrgZmoyCna3M9eoiBj7QEsW02tHT8MRC+zqTD8n4GP b7cIi0Rw/9BdIL36ER/0jk2NTUna1eTK -----END CERTIFICATE-----Generated at Sat Dec 20 05:16:51 2025 by rpki-client