This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft File: tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft (raw, json) Hash identifier: F7oeptOwegSG+uL1EA/Qbxet3Xma5VLmisupEoWZcug= Subject key identifier: EF:55:FA:71:2D:89:DB:C6:C3:0E:8A:6A:94:51:2B:4F:72:72:5A:81 Authority key identifier: B6:02:1E:EE:68:36:05:AA:06:4B:06:D3:4B:E3:31:A8:6A:8D:1E:3E Certificate issuer: /CN=A91BA0AE/serialNumber=B6021EEE683605AA064B06D34BE331A86A8D1E3E Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft Manifest number: 0B0A Signing time: Sun 28 Dec 2025 19:50:50 +0000 Manifest this update: Sun 28 Dec 2025 19:50:50 +0000 Manifest next update: Sun 04 Jan 2026 19:50:50 +0000 Files and hashes: 1: tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl (hash: vCM1g3/XtC93IZonBM8o0gP1QVrSG1C9+oTYMuNhLBU=) 2: 6897097E6C6311EDBCFA073FC4F9AE02.roa (hash: lK+kMuCLsShhM34gwZZ5PMShxjGc2oEA6OyzV2OygRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=B6021EEE683605AA064B06D34BE331A86A8D1E3E Validity Not Before: Dec 28 19:50:50 2025 GMT Not After : Jan 4 19:50:50 2026 GMT Subject: CN=69518a1a-123c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:33:30:be:68:b0:02:f1:00:aa:83:dd:3b: 2c:03:02:55:96:60:70:f1:78:86:51:61:79:14:4b: 02:57:be:5b:92:92:4a:b3:fe:b1:d4:bb:4e:b3:09: a8:53:43:f2:ab:1b:e3:c1:72:7b:37:b7:30:9a:25: 90:da:45:95:4f:fd:6e:32:0e:c6:30:fb:27:2a:1b: 8b:35:53:6d:7a:45:2c:dd:1c:9e:19:ea:b0:eb:ea: 45:f4:bd:25:36:ff:03:e7:c0:28:5b:9d:7a:e5:9f: b7:f5:c1:94:e9:b4:42:c2:c4:bb:9b:61:34:34:fd: 77:73:ff:63:7d:9b:4b:14:2d:54:13:c5:07:6a:6b: 23:e5:f4:66:86:db:af:0b:48:5c:64:39:14:fd:d9: 6c:35:1d:3d:fe:86:11:79:b6:b1:01:99:d3:d5:e8: 75:b5:7f:bb:4c:0b:33:eb:53:dd:01:9f:c2:a1:b6: f4:ab:88:d6:6f:02:55:2f:34:65:74:01:da:96:d5: 01:44:f2:1b:72:39:d3:a0:ca:1a:ef:07:b7:5e:1d: 51:c4:e3:db:0b:0d:a9:3f:b1:ba:9e:4d:db:e8:f8: f4:5d:35:8a:0d:c3:7d:1a:c1:e7:ad:3c:59:9b:b9: 89:2a:0f:4a:69:f2:ea:d7:5c:6b:da:73:8f:82:93: 59:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:55:FA:71:2D:89:DB:C6:C3:0E:8A:6A:94:51:2B:4F:72:72:5A:81 X509v3 Authority Key Identifier: keyid:B6:02:1E:EE:68:36:05:AA:06:4B:06:D3:4B:E3:31:A8:6A:8D:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgIe7mg2BaoGSwbTS-MxqGqNHj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/tgIe7mg2BaoGSwbTS-MxqGqNHj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:5c:39:21:f3:41:42:8e:fd:f4:7e:46:e7:ce:12:66:22:fb: 66:e1:f6:d2:92:82:5e:d4:83:9c:40:9e:0e:f3:e0:86:9e:42: af:e7:b2:54:47:ab:51:6f:33:43:ac:5c:bf:fb:b1:c7:77:36: 96:af:ad:88:b8:f5:ec:bd:09:db:49:1b:f2:74:ee:fa:52:38: 82:1d:43:9a:fb:c9:75:74:e3:84:18:f9:90:63:65:f5:24:d4: a9:3b:6f:7c:dd:d6:be:94:83:57:f0:c4:bd:fb:cb:62:6b:b3: f6:16:32:1b:c7:07:75:b3:c7:8b:f2:47:34:42:6c:c9:d8:30: 10:88:18:2c:37:b2:dc:34:c2:09:69:9c:a5:41:7e:46:7a:89: 56:63:6f:cd:c7:bb:02:c4:c1:b8:6c:00:98:34:86:8d:ad:6f: e5:1d:2f:ea:14:0f:39:64:39:60:bf:62:03:5a:88:a0:88:21: c3:95:a5:aa:e2:46:4d:9e:12:5d:d1:62:7e:30:ff:98:6b:eb: 14:a6:f5:5b:6e:f8:72:91:a3:29:10:49:f9:74:c2:01:54:c8: eb:c6:c3:f7:43:34:54:74:65:39:e6:7a:e0:76:23:5f:72:78: af:ba:e4:86:bc:24:a7:1f:8a:e4:80:81:88:fe:a2:a2:23:1c: be:fe:41:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKEI2MDIxRUVFNjgzNjA1QUEwNjRCMDZEMzRCRTMzMUE4 NkE4RDFFM0UwHhcNMjUxMjI4MTk1MDUwWhcNMjYwMTA0MTk1MDUwWjAYMRYwFAYD VQQDDA02OTUxOGExYS0xMjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWQzML5osALxAKqD3TssAwJVlmBw8XiGUWF5FEsCV75bkpJKs/6x1LtOswmo U0PyqxvjwXJ7N7cwmiWQ2kWVT/1uMg7GMPsnKhuLNVNtekUs3RyeGeqw6+pF9L0l Nv8D58AoW5165Z+39cGU6bRCwsS7m2E0NP13c/9jfZtLFC1UE8UHamsj5fRmhtuv C0hcZDkU/dlsNR09/oYRebaxAZnT1eh1tX+7TAsz61PdAZ/Cobb0q4jWbwJVLzRl dAHaltUBRPIbcjnToMoa7we3Xh1RxOPbCw2pP7G6nk3b6Pj0XTWKDcN9GsHnrTxZ m7mJKg9KafLq11xr2nOPgpNZQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9V+nEt idvGww6KapRRK09yclqBMB8GA1UdIwQYMBaAFLYCHu5oNgWqBksG00vjMahqjR4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi90Z0llN21nMkJhb0dTd2JUUy1NeHFHcU5I ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnSWU3bWcyQmFvR1N3YlRTLU14cUdxTkhqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi90Z0llN21nMkJh b0dTd2JUUy1NeHFHcU5IajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+XDkh80FCjv30fkbnzhJmIvtm4fbSkoJe1IOcQJ4O8+CGnkKv57JU R6tRbzNDrFy/+7HHdzaWr62IuPXsvQnbSRvydO76UjiCHUOa+8l1dOOEGPmQY2X1 JNSpO2983da+lINX8MS9+8tia7P2FjIbxwd1s8eL8kc0QmzJ2DAQiBgsN7LcNMIJ aZylQX5GeolWY2/Nx7sCxMG4bACYNIaNrW/lHS/qFA85ZDlgv2IDWoigiCHDlaWq 4kZNnhJd0WJ+MP+Ya+sUpvVbbvhykaMpEEn5dMIBVMjrxsP3QzRUdGU55nrgdiNf cnivuuSGvCSnH4rkgIGI/qKiIxy+/kHS -----END CERTIFICATE-----Generated at Tue Dec 30 08:53:12 2025 by rpki-client