This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft File: TH2sISA9rkFsH87q_FVlcgIiCKE.mft (raw, json) Hash identifier: 626sIl9w2RnV0wlEkvk7M2TtqRYfp0aGjQ2uVPW8sVI= Subject key identifier: F8:94:60:D0:0E:55:43:86:64:F5:72:13:0C:43:04:8A:AA:4F:09:30 Authority key identifier: 4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 Certificate issuer: /CN=A91C0CD5/serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft Manifest number: 01D9 Signing time: Tue 23 Dec 2025 01:53:56 +0000 Manifest this update: Tue 23 Dec 2025 01:53:55 +0000 Manifest next update: Tue 30 Dec 2025 01:53:55 +0000 Files and hashes: 1: TH2sISA9rkFsH87q_FVlcgIiCKE.crl (hash: pBkbXWQflECN86XQbAFmReSdzWnnrhs7DNIk0g3OxNU=) 2: 6EB972341D6011EEB28A4323C4F9AE02.roa (hash: V7+xw0Oh19sCCsRJ/3dn3BE03yFJdR1cttirX6vRQc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0CD5, serialNumber=4C7DAC21203DAE416C1FCEEAFC556572022208A1 Validity Not Before: Dec 23 01:53:55 2025 GMT Not After : Dec 30 01:53:55 2025 GMT Subject: CN=6949f634-0cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:83:1d:12:f6:1d:57:2e:18:5a:5c:ed:cc: e7:d0:6b:8e:a0:b7:38:d0:e3:01:03:59:75:c6:fa: 55:bc:eb:c7:36:70:56:8c:bf:1a:30:77:17:64:ff: 4e:4a:74:ac:42:15:80:a9:be:a9:17:d6:e9:4b:89: 87:d5:bc:8a:42:01:c9:ca:2b:50:20:38:2f:3a:95: 2d:ab:6e:f5:42:e0:78:06:fa:84:56:df:18:a7:59: 0c:30:c9:a8:ff:4f:09:86:e1:6d:e9:38:94:d4:38: 20:f0:ac:39:a1:3f:c3:16:da:13:f4:33:49:f1:7b: 80:f0:90:65:93:ab:7b:a8:23:af:5f:98:47:53:37: d6:2d:17:c0:ed:5e:be:69:d0:da:02:58:8a:22:52: 08:09:62:06:bb:46:33:bf:ac:59:cf:d3:f2:1f:ec: ac:fe:99:b3:aa:57:2a:75:8a:37:19:64:e9:a3:4e: ae:be:df:88:e6:fc:77:d9:c6:2d:e9:e6:f1:53:71: 0b:87:6e:13:be:91:7f:67:32:25:ae:44:45:e6:11: e3:4f:eb:8c:d0:42:36:41:1b:2d:09:5f:05:d6:99: a3:c9:d6:76:a8:76:8f:62:2d:c3:d3:fc:5f:3b:7a: 11:cf:9f:af:92:74:8d:a5:74:57:d3:72:1d:cd:9c: 86:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:94:60:D0:0E:55:43:86:64:F5:72:13:0C:43:04:8A:AA:4F:09:30 X509v3 Authority Key Identifier: keyid:4C:7D:AC:21:20:3D:AE:41:6C:1F:CE:EA:FC:55:65:72:02:22:08:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TH2sISA9rkFsH87q_FVlcgIiCKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0CD5/CD2B4B441D0B11EE87048A4CC4F9AE02/TH2sISA9rkFsH87q_FVlcgIiCKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:4f:50:f2:8f:65:65:1a:0d:ca:ae:c3:2f:68:0f:82:38:0a: df:9e:dd:0d:62:1a:27:ab:45:63:a7:0c:f3:7f:fa:2e:ab:bf: 11:12:d3:3e:9a:d5:d6:19:8f:49:0d:74:f7:75:1e:e4:e8:4c: de:e6:a7:35:34:2e:87:c6:e1:d0:16:7c:2b:58:c1:4e:46:bf: d9:a3:cf:c5:d1:28:39:af:60:2e:3a:e8:1b:fc:7e:3a:f1:50: b6:07:c0:0c:7e:0c:4f:bc:39:a2:7f:8e:dc:ef:47:c2:a4:34: fe:89:23:8a:a5:14:02:cd:9d:5e:8d:7b:86:e7:16:a7:89:d7: a6:38:91:a7:45:72:ae:b7:13:23:ae:21:07:b3:88:28:68:0a: 22:c5:c8:00:4b:54:85:ba:93:8f:41:65:d8:b6:79:7c:b5:fe: 76:50:28:1d:3b:21:6a:04:da:11:e8:89:23:06:3c:d1:d3:78: b4:65:ff:c5:20:f2:ab:0f:ef:86:86:47:27:06:2b:9c:f1:0f: ed:2c:69:ac:1d:ae:e5:d2:ad:23:84:0a:8a:20:92:b7:b6:75: 3e:6f:46:98:88:a9:3d:48:ac:a4:8a:6f:47:77:ba:97:67:b8: 33:cc:41:9b:7e:89:16:04:c9:94:4f:70:82:77:4c:b5:e1:70: eb:c6:20:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDRDUxMTAvBgNVBAUTKDRDN0RBQzIxMjAzREFFNDE2QzFGQ0VFQUZDNTU2NTcy MDIyMjA4QTEwHhcNMjUxMjIzMDE1MzU1WhcNMjUxMjMwMDE1MzU1WjAYMRYwFAYD VQQDDA02OTQ5ZjYzNC0wY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxODHRL2HVcuGFpc7czn0GuOoLc40OMBA1l1xvpVvOvHNnBWjL8aMHcXZP9O SnSsQhWAqb6pF9bpS4mH1byKQgHJyitQIDgvOpUtq271QuB4BvqEVt8Yp1kMMMmo /08JhuFt6TiU1Dgg8Kw5oT/DFtoT9DNJ8XuA8JBlk6t7qCOvX5hHUzfWLRfA7V6+ adDaAliKIlIICWIGu0Yzv6xZz9PyH+ys/pmzqlcqdYo3GWTpo06uvt+I5vx32cYt 6ebxU3ELh24TvpF/ZzIlrkRF5hHjT+uM0EI2QRstCV8F1pmjydZ2qHaPYi3D0/xf O3oRz5+vknSNpXRX03IdzZyGTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiUYNAO VUOGZPVyEwxDBIqqTwkwMB8GA1UdIwQYMBaAFEx9rCEgPa5BbB/O6vxVZXICIgih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMENENS9DRDJCNEI0NDFE MEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJrRnNIODdxX0ZWbGNnSWlD S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RIMnNJU0E5cmtGc0g4N3FfRlZsY2dJaUNLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MENENS9DRDJCNEI0NDFEMEIxMUVFODcwNDhBNENDNEY5QUUwMi9USDJzSVNBOXJr RnNIODdxX0ZWbGNnSWlDS0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCT1Dyj2VlGg3KrsMvaA+COArfnt0NYhonq0Vjpwzzf/ouq78REtM+ mtXWGY9JDXT3dR7k6Eze5qc1NC6HxuHQFnwrWMFORr/Zo8/F0Sg5r2AuOugb/H46 8VC2B8AMfgxPvDmif47c70fCpDT+iSOKpRQCzZ1ejXuG5xanidemOJGnRXKutxMj riEHs4goaAoixcgAS1SFupOPQWXYtnl8tf52UCgdOyFqBNoR6IkjBjzR03i0Zf/F IPKrD++GhkcnBiuc8Q/tLGmsHa7l0q0jhAqKIJK3tnU+b0aYiKk9SKykim9Hd7qX Z7gzzEGbfokWBMmUT3CCd0y14XDrxiCA -----END CERTIFICATE-----Generated at Wed Dec 24 23:26:18 2025 by rpki-client