This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft File: TU86rMc5WhPWQgB_mRDfiAQOS6s.mft (raw, json) Hash identifier: gsg77oaL1ig//1gpvmYzdwf74jzCIMITOox60n4ZgV0= Subject key identifier: C2:CF:0A:7D:CD:65:10:B1:A2:5D:CF:11:D4:8C:54:BC:8E:E3:4F:EC Authority key identifier: 4D:4F:3A:AC:C7:39:5A:13:D6:42:00:7F:99:10:DF:88:04:0E:4B:AB Certificate issuer: /CN=A91C2B6D/serialNumber=4D4F3AACC7395A13D642007F9910DF88040E4BAB Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft Manifest number: 48 Signing time: Fri 19 Dec 2025 06:19:34 +0000 Manifest this update: Fri 19 Dec 2025 06:19:33 +0000 Manifest next update: Fri 26 Dec 2025 06:19:33 +0000 Files and hashes: 1: TU86rMc5WhPWQgB_mRDfiAQOS6s.crl (hash: KCLpXoM9ZfrJF6zDr9TBKZmJoNLEWFmNYewVq8twl3I=) 2: 47F872C4768911F0AC56AE5AC4F9AE02.roa (hash: FVLynhifvDV8KPyOIjr7ThKejT3Wh2GtJVJ/0rkPagg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.crl rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B6D, serialNumber=4D4F3AACC7395A13D642007F9910DF88040E4BAB Validity Not Before: Dec 19 06:19:33 2025 GMT Not After : Dec 26 06:19:33 2025 GMT Subject: CN=6944ee76-1e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:27:31:62:4d:f8:e7:ea:a0:3b:09:24:13:bf: 08:8c:58:9d:70:c6:3e:7a:60:e3:11:88:ef:a6:fb: 7f:5d:39:88:5e:a1:dc:a8:b2:02:e0:70:35:99:6d: 0e:25:93:8c:37:67:9c:75:df:bc:97:3b:16:c3:25: fc:65:9f:9f:2c:32:bb:a3:3a:18:83:bf:9d:bb:cd: f7:ec:e5:07:3a:10:67:9d:5b:bf:77:89:52:37:30: 7d:96:b5:a5:db:35:61:48:2c:62:21:d2:af:3a:21: b2:2d:c2:d5:70:6d:f4:7b:40:53:61:77:ce:90:8c: 4d:af:49:a8:24:38:6a:af:d4:39:07:bb:fe:c2:e1: 6f:8f:63:4c:0b:3a:24:7c:7a:1f:c8:5f:0d:f6:9f: c0:5b:9e:4a:a4:dd:04:94:8e:a9:a9:78:68:1b:52: e7:d4:a0:d0:17:ef:e0:4b:61:c4:35:4c:6d:9b:f4: 3c:22:fb:ab:94:d5:34:ca:fd:fc:03:38:70:a4:86: 26:4c:39:92:8e:12:87:58:1e:24:e4:bb:83:1a:01: 3f:a4:56:1a:8f:fd:fa:2e:0b:e7:f5:7b:62:c1:63: d6:ca:ad:93:ac:03:6f:1c:7e:39:13:4d:d1:05:92: 40:1a:2a:7a:2d:ee:0e:da:06:8e:cb:de:7e:b8:7e: a3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CF:0A:7D:CD:65:10:B1:A2:5D:CF:11:D4:8C:54:BC:8E:E3:4F:EC X509v3 Authority Key Identifier: keyid:4D:4F:3A:AC:C7:39:5A:13:D6:42:00:7F:99:10:DF:88:04:0E:4B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TU86rMc5WhPWQgB_mRDfiAQOS6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B6D/86DF6C7E710511F0854F5A14C4F9AE02/TU86rMc5WhPWQgB_mRDfiAQOS6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9d:b0:7c:0a:ce:99:c2:04:05:c2:f2:a0:cb:76:24:44:c9: 6f:a5:f6:dc:47:8e:20:9c:0f:c1:6b:00:4e:64:ca:59:01:69: fd:d6:e3:7b:03:86:d1:c7:9f:93:35:f6:a4:77:53:2a:85:16: 1d:b1:03:d5:a2:fb:54:74:0e:98:fb:c3:9e:3b:a6:ff:d9:a7: a9:e2:92:a3:2d:59:25:4e:59:7d:df:d6:86:76:2c:b3:76:45: 32:fe:af:65:95:4d:50:06:9a:c8:a0:88:26:89:70:49:5a:0b: ac:65:2b:dd:26:d2:f5:e3:ad:a8:83:91:2d:44:a3:14:5d:5a: 0e:9a:bd:bf:d3:c2:6d:ac:aa:82:ba:3f:6d:c5:fd:07:42:5b: 43:a8:d6:18:1b:e8:5a:4f:e6:fb:fc:bc:d2:cc:2c:62:57:bc: 92:07:87:f5:e3:3b:22:33:08:86:ac:61:ab:a5:fa:f4:79:cc: 63:6f:b6:af:9b:90:d1:3d:d9:c6:a5:02:11:21:de:7d:cd:f9: 4b:03:7d:7d:99:5b:9f:30:82:b0:88:1d:87:12:c0:a4:09:6f: 1b:ef:11:8f:5e:0b:35:bc:96:c0:64:a6:70:37:e5:07:c7:a1: d9:3f:ae:24:e8:8d:f4:e7:b5:31:a1:90:62:20:bf:22:ee:66: df:3d:58:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkI2RDExMC8GA1UEBRMoNEQ0RjNBQUNDNzM5NUExM0Q2NDIwMDdGOTkxMERGODgw NDBFNEJBQjAeFw0yNTEyMTkwNjE5MzNaFw0yNTEyMjYwNjE5MzNaMBgxFjAUBgNV BAMMDTY5NDRlZTc2LTFlOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVJzFiTfjn6qA7CSQTvwiMWJ1wxj56YOMRiO+m+39dOYheodyosgLgcDWZbQ4l k4w3Z5x137yXOxbDJfxln58sMrujOhiDv527zffs5Qc6EGedW793iVI3MH2WtaXb NWFILGIh0q86IbItwtVwbfR7QFNhd86QjE2vSagkOGqv1DkHu/7C4W+PY0wLOiR8 eh/IXw32n8Bbnkqk3QSUjqmpeGgbUufUoNAX7+BLYcQ1TG2b9Dwi+6uU1TTK/fwD OHCkhiZMOZKOEodYHiTku4MaAT+kVhqP/fouC+f1e2LBY9bKrZOsA28cfjkTTdEF kkAaKnot7g7aBo7L3n64fqPHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUws8Kfc1l ELGiXc8R1IxUvI7jT+wwHwYDVR0jBBgwFoAUTU86rMc5WhPWQgB/mRDfiAQOS6sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQjZELzg2REY2QzdFNzEw NTExRjA4NTRGNUExNEM0RjlBRTAyL1RVODZyTWM1V2hQV1FnQl9tUkRmaUFRT1M2 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVFU4NnJNYzVXaFBXUWdCX21SRGZpQVFPUzZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy QjZELzg2REY2QzdFNzEwNTExRjA4NTRGNUExNEM0RjlBRTAyL1RVODZyTWM1V2hQ V1FnQl9tUkRmaUFRT1M2cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqdsHwKzpnCBAXC8qDLdiREyW+l9txHjiCcD8FrAE5kylkBaf3W43sD htHHn5M19qR3UyqFFh2xA9Wi+1R0Dpj7w547pv/Zp6nikqMtWSVOWX3f1oZ2LLN2 RTL+r2WVTVAGmsigiCaJcElaC6xlK90m0vXjraiDkS1EoxRdWg6avb/Twm2sqoK6 P23F/QdCW0Oo1hgb6FpP5vv8vNLMLGJXvJIHh/XjOyIzCIasYaul+vR5zGNvtq+b kNE92calAhEh3n3N+UsDfX2ZW58wgrCIHYcSwKQJbxvvEY9eCzW8lsBkpnA35QfH odk/riTojfTntTGhkGIgvyLuZt89WEQ= -----END CERTIFICATE-----Generated at Sun Dec 21 06:20:52 2025 by rpki-client