This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: D8ijqBr+kzZBt0Y3o8RixzBH9qqN6cTLZFkx2jeNcaY= Subject key identifier: E9:9F:53:B0:DA:7B:FC:DD:01:81:B6:CC:72:11:98:E3:E8:01:37:65 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 0204 Signing time: Sun 21 Dec 2025 01:40:21 +0000 Manifest this update: Sun 21 Dec 2025 01:40:21 +0000 Manifest next update: Sun 28 Dec 2025 01:40:21 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: +DILZ8fHR8zOip7TaPb5vbSLpHvw7IHimttHZWlMQ2E=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: 5JjQBJx2Pjnhm+6Kg83lIxJriPqmmDrWvmhqbV4seEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Dec 21 01:40:21 2025 GMT Not After : Dec 28 01:40:21 2025 GMT Subject: CN=69475005-49c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:5e:46:23:3a:5a:e9:85:39:e7:85:38:e2: f5:62:0c:e8:3e:c8:42:2b:5d:18:65:63:cb:e6:d1: a0:31:85:93:80:4e:d4:f2:49:d8:99:b6:3f:ce:27: 5c:63:c9:cf:c7:48:66:ff:f1:bb:f8:84:04:d0:e3: 35:64:ab:33:4d:8f:97:08:78:05:68:c3:7b:e6:9e: e3:20:e8:52:b5:9b:0f:3e:a4:2b:7b:5d:14:78:24: 19:fe:8d:b6:50:4d:76:07:b5:93:0e:71:ef:42:93: 96:e9:69:dd:ce:71:9c:84:b3:a0:4c:af:9a:14:c9: 18:7a:45:38:7e:eb:0c:7d:01:7b:40:0c:bb:a5:bb: a4:fa:2b:ae:2f:80:94:97:2a:fc:e0:ef:a6:bb:e8: f6:6d:7e:c9:20:11:b9:72:4e:e0:f9:12:e6:4e:4a: 1a:dc:3f:d9:11:3f:fd:7b:cc:00:99:f5:c3:bb:54: 5c:c0:5f:d3:36:24:0e:8f:3d:9b:f5:18:d1:d0:b2: 69:56:eb:5a:1a:71:47:47:3a:ab:d5:a3:d0:bf:64: 47:05:c4:88:10:fd:b9:43:cf:5a:86:64:87:cd:89: 05:2a:02:e8:da:1a:35:fc:6e:39:d6:4c:da:21:d0: ba:f1:6d:4e:b3:c5:52:18:7e:e8:c5:9c:3a:a2:95: 71:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9F:53:B0:DA:7B:FC:DD:01:81:B6:CC:72:11:98:E3:E8:01:37:65 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b8:d1:99:0a:48:fe:fd:32:21:41:df:d5:1c:ae:ed:5f:04: 19:95:a3:58:c0:5c:fb:52:cc:4f:e5:c7:8e:25:e8:39:34:ac: 34:ea:ed:eb:40:3d:5e:27:df:47:49:f7:65:7f:7b:40:7e:a0: cc:26:ce:f0:14:87:af:e6:78:c1:3f:b7:f3:08:32:d6:0d:b2: 5d:e1:3d:fd:7d:08:98:a3:89:e7:55:e2:87:ef:ef:28:1d:6b: 4e:60:fa:98:b8:a2:1b:00:65:54:a3:fd:4d:5c:0b:bb:e9:6b: 32:32:b9:72:83:85:14:4d:9d:c4:c2:34:32:8e:2d:b5:6d:a6: 51:83:dd:71:02:3e:bd:f9:ea:61:62:7a:57:f3:4f:5f:f8:31: 17:0b:c8:62:d5:65:7d:13:6e:ad:37:f3:fd:4d:24:1b:1e:39: 7f:43:cf:46:af:4a:3d:81:fb:17:1e:56:34:de:4b:e6:93:89: 6a:14:d1:89:f9:aa:3e:e3:d4:3a:bb:de:1e:10:32:e7:eb:30: 15:48:93:04:28:3c:ea:99:d2:2c:83:3b:ca:bd:bc:64:5e:7b: b7:be:68:7f:7b:12:75:17:06:cb:68:53:7b:4e:e4:ec:76:ab: 0e:d9:4e:59:03:82:cf:a6:df:70:8c:e1:42:77:95:81:73:32: d9:1e:84:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUxMjIxMDE0MDIxWhcNMjUxMjI4MDE0MDIxWjAYMRYwFAYD VQQDDA02OTQ3NTAwNS00OWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMBeRiM6WumFOeeFOOL1YgzoPshCK10YZWPL5tGgMYWTgE7U8knYmbY/zidc Y8nPx0hm//G7+IQE0OM1ZKszTY+XCHgFaMN75p7jIOhStZsPPqQre10UeCQZ/o22 UE12B7WTDnHvQpOW6WndznGchLOgTK+aFMkYekU4fusMfQF7QAy7pbuk+iuuL4CU lyr84O+mu+j2bX7JIBG5ck7g+RLmTkoa3D/ZET/9e8wAmfXDu1RcwF/TNiQOjz2b 9RjR0LJpVutaGnFHRzqr1aPQv2RHBcSIEP25Q89ahmSHzYkFKgLo2ho1/G451kza IdC68W1Os8VSGH7oxZw6opVxgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmfU7Da e/zdAYG2zHIRmOPoATdlMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQuNGZCkj+/TIhQd/VHK7tXwQZlaNYwFz7UsxP5ceOJeg5NKw06u3r QD1eJ99HSfdlf3tAfqDMJs7wFIev5njBP7fzCDLWDbJd4T39fQiYo4nnVeKH7+8o HWtOYPqYuKIbAGVUo/1NXAu76WsyMrlyg4UUTZ3EwjQyji21baZRg91xAj69+eph YnpX809f+DEXC8hi1WV9E26tN/P9TSQbHjl/Q89Gr0o9gfsXHlY03kvmk4lqFNGJ +ao+49Q6u94eEDLn6zAVSJMEKDzqmdIsgzvKvbxkXnu3vmh/exJ1FwbLaFN7TuTs dqsO2U5ZA4LPpt9wjOFCd5WBczLZHoTC -----END CERTIFICATE-----Generated at Mon Dec 22 04:43:56 2025 by rpki-client