This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: yJeCmrCeKm84BkLTbodnO8Di5XQXXWtj+wpL1bGMzwk= Subject key identifier: 4E:B5:79:DC:9B:1B:50:32:2F:05:EC:5F:6F:4A:56:27:D7:E0:47:5F Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0FAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0FA1 Signing time: Thu 18 Dec 2025 17:21:12 +0000 Manifest this update: Thu 18 Dec 2025 17:21:12 +0000 Manifest next update: Thu 25 Dec 2025 17:21:12 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: iYdaEKSb9DfGWg1XbtmgySisB/kOx/VDGItNnKWwyHQ=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Dec 18 17:21:12 2025 GMT Not After : Dec 25 17:21:12 2025 GMT Subject: CN=69443808-7594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:2c:3c:2b:3c:8b:97:a6:d4:00:79:00:83: 98:81:03:2c:fb:31:44:e4:3c:d4:8b:0e:d7:a0:a3: ce:79:08:c5:48:f5:21:73:ff:6a:6f:8c:8f:d1:0d: 07:8a:96:f3:36:e1:54:64:77:e0:ae:aa:c5:19:64: 48:4c:0a:19:9e:5a:fe:e9:6b:1c:3c:c6:83:3d:b2: e0:b7:20:50:e8:cc:42:27:60:f1:45:3a:86:e9:b1: dc:13:6e:86:d9:34:d2:3f:83:a2:6c:8c:b8:a4:c3: e5:57:53:15:3f:5b:72:19:84:ac:5f:aa:3c:c2:a1: 95:e8:05:d8:24:25:3f:c9:ff:56:f9:18:d9:36:ef: b4:aa:d1:99:db:d4:5a:83:d8:8c:cd:71:3f:70:16: 96:bd:0d:08:58:25:bc:41:3d:75:6b:53:c0:f0:be: 79:35:0a:32:33:a1:1c:6b:58:02:73:94:64:13:0d: 73:65:0c:a0:22:34:d8:e6:d4:43:57:fb:c0:fa:6f: 11:ca:3b:35:f0:7f:80:4f:11:a2:05:ac:02:df:8e: 06:c9:46:f0:d3:6f:10:cd:dc:75:d9:1a:71:61:ed: 4d:52:5d:05:9a:68:b0:d3:5f:c3:21:4d:3c:e7:a7: 81:8d:ca:af:a8:9a:7a:88:2d:ff:84:25:6a:86:51: 78:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B5:79:DC:9B:1B:50:32:2F:05:EC:5F:6F:4A:56:27:D7:E0:47:5F X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:9d:f4:d2:ac:38:54:91:58:3b:61:df:b2:db:d3:02:08:52: 09:c3:16:ed:01:28:18:fd:31:e9:fe:49:09:63:31:f0:1e:c5: 17:27:06:e2:59:cd:8d:a9:52:aa:be:a1:46:13:78:31:75:3a: 59:82:80:98:c1:d5:92:b9:39:27:0d:03:11:66:66:40:be:a9: cf:4f:58:31:5f:eb:d4:7d:bc:fc:6a:8d:a7:82:22:f9:fa:04: 20:72:bf:a6:40:da:da:3a:04:5f:10:fb:ed:71:31:30:fd:35: a8:1a:d6:d7:a0:fa:0f:1d:2f:3a:ff:bd:b5:8c:28:fa:8a:43: 43:45:47:ed:95:63:ad:95:ff:d5:83:79:0c:04:df:88:24:34: ed:00:cb:ef:d0:86:a8:3e:7c:c4:bd:e0:9d:09:c5:ff:32:da: 56:f4:81:ea:e5:d2:4b:38:32:d2:3b:75:ee:41:b1:f2:74:a3: 1d:cd:de:92:8a:03:a1:1b:09:4d:bf:f4:fd:7f:fb:21:96:31: e8:b0:65:ad:22:65:6a:ac:a7:71:99:58:d7:98:0e:08:03:bb: a2:9b:1a:ec:3c:48:4e:92:32:38:29:28:b9:3e:a8:ce:9c:fa: b5:7d:e7:03:61:86:2d:69:7b:30:70:7f:52:08:42:73:74:43: 0a:34:c3:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUxMjE4MTcyMTEyWhcNMjUxMjI1MTcyMTEyWjAYMRYwFAYD VQQDDA02OTQ0MzgwOC03NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBksPCs8i5em1AB5AIOYgQMs+zFE5DzUiw7XoKPOeQjFSPUhc/9qb4yP0Q0H ipbzNuFUZHfgrqrFGWRITAoZnlr+6WscPMaDPbLgtyBQ6MxCJ2DxRTqG6bHcE26G 2TTSP4OibIy4pMPlV1MVP1tyGYSsX6o8wqGV6AXYJCU/yf9W+RjZNu+0qtGZ29Ra g9iMzXE/cBaWvQ0IWCW8QT11a1PA8L55NQoyM6Eca1gCc5RkEw1zZQygIjTY5tRD V/vA+m8Ryjs18H+ATxGiBawC344GyUbw028Qzdx12RpxYe1NUl0Fmmiw01/DIU08 56eBjcqvqJp6iC3/hCVqhlF4JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE61edyb G1AyLwXsX29KVifX4EdfMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAnfTSrDhUkVg7Yd+y29MCCFIJwxbtASgY/THp/kkJYzHwHsUXJwbi Wc2NqVKqvqFGE3gxdTpZgoCYwdWSuTknDQMRZmZAvqnPT1gxX+vUfbz8ao2ngiL5 +gQgcr+mQNraOgRfEPvtcTEw/TWoGtbXoPoPHS86/721jCj6ikNDRUftlWOtlf/V g3kMBN+IJDTtAMvv0IaoPnzEveCdCcX/MtpW9IHq5dJLODLSO3XuQbHydKMdzd6S igOhGwlNv/T9f/shljHosGWtImVqrKdxmVjXmA4IA7uimxrsPEhOkjI4KSi5PqjO nPq1fecDYYYtaXswcH9SCEJzdEMKNMMP -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:52 2025 by rpki-client