This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: tB9gxJPpCu7bJ9r6JSbOoENyoVHIQpOhGzfrVBtxUHg= Subject key identifier: 82:68:52:21:86:7E:39:C5:3A:E2:5E:E4:60:71:5C:A1:E1:26:7F:F3 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C67 Signing time: Tue 30 Dec 2025 18:15:45 +0000 Manifest this update: Tue 30 Dec 2025 18:15:45 +0000 Manifest next update: Tue 06 Jan 2026 18:15:45 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: UIM5buvUEMlTZy9Wym1tXXWYyoY9Xnc5sLKIuWg1BQc=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: +cWhXgmvXqt9a6ZqEZBrdto9E96GIgUY7aVDt14B1Zw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 18:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Dec 30 18:15:45 2025 GMT Not After : Jan 6 18:15:45 2026 GMT Subject: CN=695416d1-ec6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7a:19:7d:4d:0a:4d:c9:e5:be:37:3d:af:a0: 4b:3d:33:84:6a:99:1c:f9:79:62:21:11:7e:0b:75: 5d:4d:aa:7e:cd:34:a6:43:9f:c3:6e:cd:04:69:71: 86:89:2f:c2:1c:f6:f7:83:fd:8b:cc:3d:ca:98:8e: 5f:aa:24:1b:29:19:f5:65:41:d5:72:4a:62:c8:eb: dd:29:57:6c:5c:3b:8b:1a:95:10:fc:1b:6d:11:5d: 7c:47:46:8a:f6:34:12:30:cc:28:86:43:48:08:cb: ed:f2:05:96:40:63:b8:da:a4:9f:0c:90:b3:e2:0c: d8:e5:81:86:8e:3a:28:bf:d5:e7:2a:3d:da:51:31: 85:bd:28:af:6f:53:3b:4c:52:78:57:ee:a7:bf:76: 6a:fb:8c:09:b7:4f:b7:25:7d:b7:7b:c7:3c:18:f5: 56:31:f4:a6:2f:7c:80:62:81:a6:69:46:43:28:7d: 77:f0:73:e7:7b:20:c7:c0:a1:3c:95:30:17:a0:c0: e1:30:f8:e0:2f:82:7f:76:ed:83:6d:b5:13:0c:81: 23:6a:53:f4:40:ae:ba:c0:29:91:68:46:af:74:60: e8:b7:b3:79:7b:53:9e:95:e5:78:6d:8e:de:67:c5: 09:52:66:ec:a4:b9:03:ee:45:de:93:bf:b5:d0:16: 29:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:68:52:21:86:7E:39:C5:3A:E2:5E:E4:60:71:5C:A1:E1:26:7F:F3 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:62:36:bc:e5:c0:a2:61:c4:77:e0:86:42:e7:f3:35:ec:a6: 01:3d:c0:fd:30:ed:61:6b:e2:99:ed:0c:9f:92:22:e0:18:82: c3:cc:d8:43:79:a2:5f:8b:16:88:d0:e1:b7:b7:18:02:4b:6e: 54:7d:47:8e:da:a5:af:4b:5b:28:95:d1:c9:b1:12:0e:28:42: 5b:ed:06:90:5a:e3:66:1a:0c:78:f8:bc:ef:33:9e:c5:57:dc: ad:d1:9a:6d:7b:81:3e:2c:eb:fb:c8:87:83:fd:28:54:28:00: 09:03:2a:19:fb:d4:83:9b:14:58:c8:74:81:1b:9a:6c:3a:32: 38:86:b0:b0:70:c6:45:a8:80:74:e8:19:3b:e1:2a:38:9c:e9: 4d:4d:6a:d7:9c:23:4e:51:07:8a:23:26:88:03:11:f0:1b:42: 68:8a:e6:e9:06:16:2d:77:cc:d9:43:59:3d:de:d5:11:84:1b: fb:65:23:6f:ab:23:22:c6:4d:1e:d2:32:34:99:ff:4d:9e:76: ef:23:7b:f9:73:0f:64:b5:69:52:64:96:ce:e1:42:3c:72:bf: fc:7a:0b:ea:af:50:d7:c6:9f:b0:95:0f:43:63:f5:aa:62:b7: 4d:ee:b7:70:d5:c1:ec:63:89:56:00:43:4e:88:67:1b:ec:ea: 29:41:1c:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMjMwMTgxNTQ1WhcNMjYwMTA2MTgxNTQ1WjAYMRYwFAYD VQQDDA02OTU0MTZkMS1lYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3oZfU0KTcnlvjc9r6BLPTOEapkc+XliIRF+C3VdTap+zTSmQ5/Dbs0EaXGG iS/CHPb3g/2LzD3KmI5fqiQbKRn1ZUHVckpiyOvdKVdsXDuLGpUQ/BttEV18R0aK 9jQSMMwohkNICMvt8gWWQGO42qSfDJCz4gzY5YGGjjoov9XnKj3aUTGFvSivb1M7 TFJ4V+6nv3Zq+4wJt0+3JX23e8c8GPVWMfSmL3yAYoGmaUZDKH138HPneyDHwKE8 lTAXoMDhMPjgL4J/du2DbbUTDIEjalP0QK66wCmRaEavdGDot7N5e1OeleV4bY7e Z8UJUmbspLkD7kXek7+10BYp8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJoUiGG fjnFOuJe5GBxXKHhJn/zMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjYja85cCiYcR34IZC5/M17KYBPcD9MO1ha+KZ7QyfkiLgGILDzNhD eaJfixaI0OG3txgCS25UfUeO2qWvS1soldHJsRIOKEJb7QaQWuNmGgx4+LzvM57F V9yt0Zpte4E+LOv7yIeD/ShUKAAJAyoZ+9SDmxRYyHSBG5psOjI4hrCwcMZFqIB0 6Bk74So4nOlNTWrXnCNOUQeKIyaIAxHwG0JoiubpBhYtd8zZQ1k93tURhBv7ZSNv qyMixk0e0jI0mf9NnnbvI3v5cw9ktWlSZJbO4UI8cr/8egvqr1DXxp+wlQ9DY/Wq YrdN7rdw1cHsY4lWAENOiGcb7OopQRz5 -----END CERTIFICATE-----Generated at Wed Dec 31 03:46:51 2025 by rpki-client