This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: iGqbzq3U3CbfVqVfx7l68vop7iLZJr3H1idJEtnUkNo= Subject key identifier: E8:BE:71:E5:74:FB:CE:2E:69:D0:87:3F:78:BE:11:67:12:49:1F:C9 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 79 Signing time: Mon 29 Dec 2025 05:48:08 +0000 Manifest this update: Mon 29 Dec 2025 05:48:08 +0000 Manifest next update: Mon 05 Jan 2026 05:48:08 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: bEai9ocvQnaM5rubgLHGeqTjHG84B9A/0ZLiKLPa6wc=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Dec 29 05:48:08 2025 GMT Not After : Jan 5 05:48:08 2026 GMT Subject: CN=69521618-a9a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2c:02:b2:8e:2d:29:1d:29:6a:4b:1e:13:02: a4:f5:a4:32:ba:26:cc:3f:c2:9f:32:f1:39:0d:62: ae:ea:a7:a6:ce:76:e6:70:d2:21:fa:87:51:3d:4e: b2:9c:81:ab:28:54:b3:e4:da:c7:5d:57:29:bb:9d: ea:65:c5:f2:91:ee:19:f5:aa:c6:b6:09:b5:2e:a9: 8a:c0:4e:ee:da:f5:92:67:7f:7c:ed:e2:d1:f9:fa: 98:45:69:24:c2:15:87:3b:f8:51:4b:c6:72:a0:44: 9c:ad:c1:1e:0d:6a:d9:99:00:ef:99:c4:b9:da:f5: 5e:54:5d:35:66:51:7a:21:e2:df:ce:ae:f3:ed:4c: 1b:13:b6:f1:19:e1:e0:fd:1a:82:a7:97:fa:ed:f8: 8b:ae:8b:42:a7:a8:30:01:d2:f6:51:48:50:b2:fb: 22:ee:e4:53:2e:12:5e:f4:1f:8b:3a:ef:06:8a:0e: c5:f5:97:a6:fb:1b:bb:bf:86:2d:90:ad:ce:91:82: 1e:aa:c3:68:35:20:ec:fa:be:38:16:72:dd:12:11: bb:e0:82:1f:65:e0:cc:70:68:b4:58:e7:58:a6:c4: 33:24:23:2f:73:c0:80:13:19:4b:a8:62:6d:0c:9b: 1b:16:94:f6:d9:5b:94:8f:b9:37:11:27:53:e3:c3: 51:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:BE:71:E5:74:FB:CE:2E:69:D0:87:3F:78:BE:11:67:12:49:1F:C9 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:75:01:94:ab:d9:51:d8:4d:6f:c1:19:cf:1f:79:4a:82:e9: 2a:23:26:69:b6:9c:82:f3:15:78:64:4b:1f:a6:2b:d1:07:35: 2d:88:27:fb:36:c4:fb:db:7c:96:34:44:4c:58:d3:9a:2d:36: cc:20:37:28:7f:b2:54:0f:d0:a5:c0:1d:86:c4:d0:84:01:c1: fa:07:ec:5e:de:e9:ef:ce:6a:61:5a:04:e1:fa:9a:aa:5f:7a: b1:e7:4f:07:9c:ab:27:58:36:69:c3:35:fb:a4:75:2c:13:fd: c9:10:9a:52:20:c6:97:62:67:ec:44:21:83:6e:e8:64:04:1d: 9d:45:7c:11:75:f6:35:4a:a7:c6:3f:7a:e3:f6:42:f7:3c:98: 13:05:42:05:57:f8:5f:1e:ca:46:5a:19:1c:1f:d4:e0:2b:cc: 49:3c:ce:0c:18:a7:f7:20:a5:e2:95:0f:08:4e:97:1d:82:45: 34:62:93:9a:f8:78:1f:66:67:92:ae:f4:56:dd:78:8a:4c:c6: d5:fd:0e:28:09:eb:7c:ce:0c:7e:55:26:52:6b:0b:91:d2:43: f5:88:39:95:fc:8b:71:2b:f5:fe:bc:c6:b8:26:ec:e0:30:8a: bb:4b:17:71:0c:a6:9f:3d:81:2f:85:f7:11:10:8f:66:16:b9: 4c:64:2d:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTEyMjkwNTQ4MDhaFw0yNjAxMDUwNTQ4MDhaMBgxFjAUBgNV BAMMDTY5NTIxNjE4LWE5YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiLAKyji0pHSlqSx4TAqT1pDK6Jsw/wp8y8TkNYq7qp6bOduZw0iH6h1E9TrKc gasoVLPk2sddVym7neplxfKR7hn1qsa2CbUuqYrATu7a9ZJnf3zt4tH5+phFaSTC FYc7+FFLxnKgRJytwR4NatmZAO+ZxLna9V5UXTVmUXoh4t/OrvPtTBsTtvEZ4eD9 GoKnl/rt+Iuui0KnqDAB0vZRSFCy+yLu5FMuEl70H4s67waKDsX1l6b7G7u/hi2Q rc6Rgh6qw2g1IOz6vjgWct0SEbvggh9l4MxwaLRY51imxDMkIy9zwIATGUuoYm0M mxsWlPbZW5SPuTcRJ1Pjw1HdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6L5x5XT7 zi5p0Ic/eL4RZxJJH8kwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJZ1AZSr2VHYTW/BGc8feUqC6SojJmm2nILzFXhkSx+mK9EHNS2IJ/s2 xPvbfJY0RExY05otNswgNyh/slQP0KXAHYbE0IQBwfoH7F7e6e/OamFaBOH6mqpf erHnTwecqydYNmnDNfukdSwT/ckQmlIgxpdiZ+xEIYNu6GQEHZ1FfBF19jVKp8Y/ euP2Qvc8mBMFQgVX+F8eykZaGRwf1OArzEk8zgwYp/cgpeKVDwhOlx2CRTRik5r4 eB9mZ5Ku9FbdeIpMxtX9DigJ63zODH5VJlJrC5HSQ/WIOZX8i3Er9f68xrgm7OAw irtLF3EMpp89gS+F9xEQj2YWuUxkLbg= -----END CERTIFICATE-----Generated at Wed Dec 31 03:46:52 2025 by rpki-client