This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: c8VlDO0YjrMWXpwlDeDDy66KhF4GclIOLb/4BjaSu20= Subject key identifier: 92:6A:D8:98:F0:98:03:5D:DE:CF:24:10:3C:A2:C6:08:5F:FD:70:D0 Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 29BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 29AA Signing time: Thu 18 Dec 2025 15:32:14 +0000 Manifest this update: Thu 18 Dec 2025 15:32:14 +0000 Manifest next update: Thu 25 Dec 2025 15:32:14 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: AAsJPTw55opUx+w2WppZvTQ+6vQez5ez54uO9a1x+2Q=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: XWmzI2yeMf3apt5DHsKgv60jONcTAI6E+TZgl5OMpW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10687 (0x29bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Dec 18 15:32:14 2025 GMT Not After : Dec 25 15:32:14 2025 GMT Subject: CN=69441e7e-90cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2b:c1:72:9b:d1:ee:81:17:a3:ff:5c:38:34: b6:31:0a:b8:a2:c0:46:f8:cb:0a:af:84:1f:e5:f5: 6d:b7:59:b0:e8:3f:b3:c4:5a:20:87:4b:e2:db:1f: cb:d6:9c:c5:8f:d9:14:f6:d3:d3:c7:5e:33:00:8d: 3f:a7:88:8b:fe:96:f5:fa:2c:a4:87:53:98:3d:2e: 9a:79:f6:88:a5:a0:ca:6e:24:1d:f0:2c:2c:7c:8f: bf:f6:d2:47:ca:16:a7:cd:aa:f1:40:57:37:23:da: 27:b2:7a:35:da:0c:fc:55:78:f5:6b:fc:3d:c1:e7: 4a:c8:d2:3a:79:4e:62:9f:99:03:c4:49:b2:4f:ce: 46:b3:3e:81:79:50:c1:49:ca:a9:6a:79:1d:c4:1d: 75:a2:0b:96:6a:34:01:fa:89:69:b8:17:57:49:d6: b1:01:4a:50:12:81:83:b2:09:ee:09:97:b1:8f:c1: f3:6e:bb:f4:fe:46:97:ea:c5:01:af:af:6c:37:7a: 05:d0:98:44:b2:e3:9c:2d:36:26:db:49:e3:76:44: 35:28:2e:6b:97:f6:59:2d:ec:7d:65:ce:de:44:36: c9:cb:49:7f:df:e9:84:0b:8e:62:0c:ce:c0:69:e4: a1:f1:58:08:6a:12:d4:4c:c8:9d:e0:f7:09:0e:f2: 52:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6A:D8:98:F0:98:03:5D:DE:CF:24:10:3C:A2:C6:08:5F:FD:70:D0 X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:fc:dd:b4:0d:ac:d5:71:c6:04:7f:8e:b0:35:90:03:a2:cc: 7c:25:11:5d:7d:e4:cc:74:1e:d5:9a:99:67:5c:d8:10:fe:27: 2d:c3:4a:fa:dc:88:af:45:a8:24:fd:e7:b0:18:a6:4c:06:33: de:48:da:4c:3a:52:2c:7b:97:40:8e:55:75:25:32:ba:9f:e8: 42:ee:93:45:56:c6:2e:1b:17:4b:4e:a6:b3:0d:e2:1a:a2:07: 06:50:0c:da:32:c9:0c:69:26:1e:5a:01:d5:52:fa:f9:90:89: 2c:82:5a:cd:18:d2:0b:4c:4a:5a:fb:65:24:3a:f9:c6:a7:32: d5:38:c3:a0:3a:f9:53:79:84:fd:0e:40:2f:3d:a5:bc:28:d9: a8:c2:19:91:bb:ca:75:79:92:ce:3a:0b:14:bf:32:a7:87:cf: f6:cf:c7:25:ee:bd:23:d1:e4:34:d2:08:bf:a2:04:5f:24:7e: 81:c4:df:ca:7f:cf:fe:e3:e2:38:76:9c:fc:76:c7:14:e8:6f: c6:5f:dc:5d:c2:76:1c:58:b9:69:78:51:40:36:5b:7b:fe:99: 00:70:94:bd:59:1d:5e:cd:e0:9d:1d:81:7d:64:1e:9a:55:a2: 05:0b:6e:51:64:58:37:9e:6b:51:b4:f6:cf:57:3e:30:72:a3: 3b:0f:04:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjUxMjE4MTUzMjE0WhcNMjUxMjI1MTUzMjE0WjAYMRYwFAYD VQQDDA02OTQ0MWU3ZS05MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyvBcpvR7oEXo/9cODS2MQq4osBG+MsKr4Qf5fVtt1mw6D+zxFogh0vi2x/L 1pzFj9kU9tPTx14zAI0/p4iL/pb1+iykh1OYPS6aefaIpaDKbiQd8CwsfI+/9tJH yhanzarxQFc3I9onsno12gz8VXj1a/w9wedKyNI6eU5in5kDxEmyT85Gsz6BeVDB ScqpankdxB11oguWajQB+olpuBdXSdaxAUpQEoGDsgnuCZexj8Hzbrv0/kaX6sUB r69sN3oF0JhEsuOcLTYm20njdkQ1KC5rl/ZZLex9Zc7eRDbJy0l/3+mEC45iDM7A aeSh8VgIahLUTMid4PcJDvJS8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJq2Jjw mANd3s8kEDyixghf/XDQMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ/N20DazVccYEf46wNZADosx8JRFdfeTMdB7VmplnXNgQ/ictw0r6 3IivRagk/eewGKZMBjPeSNpMOlIse5dAjlV1JTK6n+hC7pNFVsYuGxdLTqazDeIa ogcGUAzaMskMaSYeWgHVUvr5kIksglrNGNILTEpa+2UkOvnGpzLVOMOgOvlTeYT9 DkAvPaW8KNmowhmRu8p1eZLOOgsUvzKnh8/2z8cl7r0j0eQ00gi/ogRfJH6BxN/K f8/+4+I4dpz8dscU6G/GX9xdwnYcWLlpeFFANlt7/pkAcJS9WR1ezeCdHYF9ZB6a VaIFC25RZFg3nmtRtPbPVz4wcqM7DwS/ -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:19 2025 by rpki-client