This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft File: toWM6JkRXyxWHHZl74vgaIBoEJw.mft (raw, json) Hash identifier: FlggcuOo+AniDTEOKPPmkABnVqSO6K34th4MP1dC954= Subject key identifier: A5:76:3D:63:C0:C0:CA:DC:FB:22:71:01:11:06:9F:89:48:A8:50:2A Authority key identifier: B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C Certificate issuer: /CN=A91D120D/serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Certificate serial: 098D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft Manifest number: 0975 Signing time: Thu 18 Dec 2025 19:38:57 +0000 Manifest this update: Thu 18 Dec 2025 19:38:57 +0000 Manifest next update: Thu 25 Dec 2025 19:38:57 +0000 Files and hashes: 1: toWM6JkRXyxWHHZl74vgaIBoEJw.crl (hash: 28DjplnyNzDBxfEjvSoWDYsTXNO3bT4Y+WbtMYysayY=) 2: 9D83F4E6FB7711EDA78AAC1DC4F9AE02.roa (hash: KelzcdHCtnxA0fy0V8HA1xyHStc3LVcSAxi6LwKWwLw=) 3: 8C79CFC6A6FD11EAA1B00744C4F9AE02.roa (hash: ZhKJiPvJVpmKkzL+YkNpWQyHnorv+gyb0AmGgaJqcWs=) 4: 9C454274FB7711EDA78AAC1DC4F9AE02.roa (hash: ZvBB3zmKVUj3FoNo3LoHC19aHdg/tMgwEIpu4fehNZ4=) 5: 1A4ED0E8A71811EA80A77B1FC4F9AE02.roa (hash: o2ubabJQjRgkyeZ1KZmWpq8Ju1E6mRHeCYVqt6Eg9bc=) 6: 95DC9990D0A211EE9C97373FC4F9AE02.roa (hash: z6k7ctSWW62IFQe+RQT4sXA8JZqwDWiJbhhB0VFDnxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2445 (0x98d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D120D, serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Validity Not Before: Dec 18 19:38:57 2025 GMT Not After : Dec 25 19:38:57 2025 GMT Subject: CN=69445851-35ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8f:9d:d9:55:fd:d6:46:a3:0c:15:8b:76:b4: 54:c1:6e:99:1a:9d:05:fc:b3:9a:a7:ef:1b:e5:19: 54:08:f1:77:3e:c0:7c:56:86:4c:8f:4b:c6:60:e2: 80:69:52:c7:d5:82:35:d7:09:36:60:ad:79:45:b0: d3:29:72:64:c4:1c:4f:3d:d3:cd:8f:8b:17:12:74: 33:6f:1c:3a:eb:17:df:e9:47:96:cb:b3:0b:3f:6f: e7:9a:54:69:fa:47:7c:d4:49:ee:98:08:32:26:4e: 09:77:33:90:17:5a:01:ff:c4:8d:5b:78:14:b6:00: e3:38:f0:07:c9:38:b5:d9:5a:f5:ca:59:c3:ca:8d: bf:02:90:ae:53:2f:f4:bc:6c:8b:19:a6:23:06:59: 63:61:a3:e7:12:da:83:97:41:ec:84:a9:81:77:54: 5a:e8:86:51:e0:6d:c7:d5:4c:70:f2:4d:1d:d3:d7: 70:1b:d7:64:81:31:81:b3:05:ec:9f:c1:0c:d9:a8: b4:72:3d:3d:9c:c6:35:cb:78:a6:e5:94:6e:4f:b7: de:0c:68:42:95:76:76:c2:d1:28:dd:9b:91:6d:60: 72:23:c0:90:23:48:af:6c:9b:ac:45:5a:8e:04:27: fb:d8:ef:f8:e3:fa:1a:33:06:5a:fc:47:da:43:8f: 6a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:76:3D:63:C0:C0:CA:DC:FB:22:71:01:11:06:9F:89:48:A8:50:2A X509v3 Authority Key Identifier: keyid:B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:af:52:bb:77:1d:ea:59:1c:68:f5:c2:30:c7:fb:04:0b:31: 56:67:75:bf:cb:97:f4:77:35:67:af:f2:96:9d:5e:02:eb:39: 87:38:d0:19:82:22:ab:92:f0:11:93:bb:87:46:a9:09:1e:31: da:8f:d1:4f:a9:ca:19:d0:bc:21:e2:8e:bf:b8:cd:4b:fe:5e: c9:e5:2e:3d:dc:24:96:80:08:14:e6:b1:b2:07:b6:08:b7:fb: 21:a8:44:63:13:c6:e5:bb:00:4a:ba:b0:b1:f8:2f:8f:d4:18: ab:72:8b:8e:fc:3c:26:c9:7d:91:04:07:19:18:90:1e:1b:91: 60:18:c2:4e:41:3e:82:93:c0:6e:26:2d:3f:2c:7f:22:6a:ef: bd:cd:55:14:13:7d:3b:d8:34:67:40:5f:e7:d0:d7:6d:4d:75: b0:e0:fa:4f:0d:46:3d:fe:7b:f5:98:24:bd:39:d1:9c:95:91: 26:e3:fe:37:41:25:f2:15:c3:9e:e1:3b:2e:61:29:7e:d0:e7: 5c:a8:66:2a:e2:99:91:cb:f7:07:29:ad:3c:d5:c7:74:77:03: 49:9d:97:56:41:ee:c7:7c:32:fb:66:ad:c2:ea:30:ed:1f:d8: 4d:5f:98:ca:e1:ab:2b:f6:04:39:f8:b4:db:74:cc:68:f6:c2: f1:52:e9:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMEQxMTAvBgNVBAUTKEI2ODU4Q0U4OTkxMTVGMkM1NjFDNzY2NUVGOEJFMDY4 ODA2ODEwOUMwHhcNMjUxMjE4MTkzODU3WhcNMjUxMjI1MTkzODU3WjAYMRYwFAYD VQQDDA02OTQ0NTg1MS0zNWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4+d2VX91kajDBWLdrRUwW6ZGp0F/LOap+8b5RlUCPF3PsB8VoZMj0vGYOKA aVLH1YI11wk2YK15RbDTKXJkxBxPPdPNj4sXEnQzbxw66xff6UeWy7MLP2/nmlRp +kd81EnumAgyJk4JdzOQF1oB/8SNW3gUtgDjOPAHyTi12Vr1ylnDyo2/ApCuUy/0 vGyLGaYjBlljYaPnEtqDl0HshKmBd1Ra6IZR4G3H1Uxw8k0d09dwG9dkgTGBswXs n8EM2ai0cj09nMY1y3im5ZRuT7feDGhClXZ2wtEo3ZuRbWByI8CQI0ivbJusRVqO BCf72O/44/oaMwZa/EfaQ49q1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKV2PWPA wMrc+yJxAREGn4lIqFAqMB8GA1UdIwQYMBaAFLaFjOiZEV8sVhx2Ze+L4GiAaBCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIwRC81MUU4MEU5OEE2 RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5eFdISFpsNzR2Z2FJQm9F SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RvV002SmtSWHl4V0hIWmw3NHZnYUlCb0VKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIwRC81MUU4MEU5OEE2RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5 eFdISFpsNzR2Z2FJQm9FSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCir1K7dx3qWRxo9cIwx/sECzFWZ3W/y5f0dzVnr/KWnV4C6zmHONAZ giKrkvARk7uHRqkJHjHaj9FPqcoZ0Lwh4o6/uM1L/l7J5S493CSWgAgU5rGyB7YI t/shqERjE8bluwBKurCx+C+P1BircouO/DwmyX2RBAcZGJAeG5FgGMJOQT6Ck8Bu Ji0/LH8iau+9zVUUE3072DRnQF/n0NdtTXWw4PpPDUY9/nv1mCS9OdGclZEm4/43 QSXyFcOe4TsuYSl+0OdcqGYq4pmRy/cHKa081cd0dwNJnZdWQe7HfDL7Zq3C6jDt H9hNX5jK4asr9gQ5+LTbdMxo9sLxUumG -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:30 2025 by rpki-client