This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: AAam+2gERNP+Xe86eoB8VZvOFHjea17mYHpsC9SPfU8= Subject key identifier: 33:7D:6F:66:48:1D:24:EB:EC:C3:38:28:57:99:F9:91:5D:FD:98:56 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 8C Signing time: Fri 19 Dec 2025 05:37:30 +0000 Manifest this update: Fri 19 Dec 2025 05:37:29 +0000 Manifest next update: Fri 26 Dec 2025 05:37:29 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: pgVrUttTtjlriWWsB5+Pzf+PNzoekw0ZlTmLUJBjyFo=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Dec 19 05:37:29 2025 GMT Not After : Dec 26 05:37:29 2025 GMT Subject: CN=6944e49a-e87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:05:51:3e:cf:cf:bb:59:2d:6f:7e:8f:eb: 0b:6f:16:ec:a8:ea:fc:32:02:c3:2a:bb:a0:d6:80: db:b8:5c:fc:72:d1:93:cb:89:0d:00:7b:f0:23:19: 82:f6:d6:09:b1:30:f1:c6:76:c6:0a:1b:bb:79:0b: 99:00:bb:a8:e7:a0:c3:22:41:95:3c:7a:d1:0f:ee: 14:eb:6c:75:96:95:e6:9b:10:0d:8b:fb:aa:6e:c9: a1:53:f7:0a:3d:6e:60:f4:97:9f:6c:af:96:dd:13: 8c:d3:2e:a2:20:43:9c:d0:b3:3e:74:ce:3f:a6:1d: 7a:bf:8f:54:97:64:6e:19:33:b3:0a:be:06:85:3a: 95:fe:04:23:8a:9d:65:5f:7c:15:1e:1e:81:23:22: 4a:84:bf:e1:6d:68:01:ee:8c:ef:22:86:30:d4:80: 5f:41:67:ea:1b:86:49:58:73:25:8a:8b:90:f9:a5: 7b:9e:06:f5:32:3c:45:9f:9b:ff:30:51:e0:7c:1f: bc:fc:ee:87:c9:58:31:57:0e:80:6f:30:e7:14:c5: 9a:80:5d:4d:47:d1:96:22:81:87:2a:d9:49:7f:a2: ce:aa:fe:f5:ed:54:43:1a:70:89:e6:0b:9b:2b:67: c3:8f:e4:eb:7f:25:02:4c:d6:a8:89:44:41:23:30: f5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:7D:6F:66:48:1D:24:EB:EC:C3:38:28:57:99:F9:91:5D:FD:98:56 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:55:30:69:30:e0:1c:51:60:1a:94:e8:af:7f:95:3e:be:fe: 04:ef:77:fe:f1:ca:36:21:f2:60:4a:49:a9:52:9e:d0:88:1c: b8:19:11:3f:d1:41:1c:df:8e:08:b7:4b:0d:f8:45:33:b4:e8: 54:3c:4e:88:da:b0:88:77:3d:7c:61:05:5b:40:70:90:6f:f2: 90:7d:1d:04:0d:d3:7f:0a:9d:23:81:fe:4c:a0:c8:ef:c0:4a: 95:a0:dd:40:50:4e:e7:f5:b7:e2:3e:f3:a5:45:5d:4c:2d:63: a5:a5:0b:6b:1b:ef:fe:92:3f:78:4a:d3:ea:77:69:17:bb:36: a3:39:36:ce:12:8e:79:b4:73:a6:31:5c:2c:fd:90:11:5f:41: 2a:54:4e:ed:99:34:54:92:ca:2d:9d:10:85:46:3a:1f:ec:e4: f4:ac:93:18:d4:03:e1:4c:29:8d:fd:82:41:28:1e:f2:a2:51: fa:b9:07:42:de:b0:76:30:8b:ad:03:4d:b2:67:1c:47:5a:15: 30:47:4e:bf:7d:5d:a1:6a:7f:47:7e:26:21:4c:90:27:ca:cf: d4:13:e6:4e:bc:df:f9:cc:00:43:7e:b0:a9:36:86:3d:77:9a: f6:b6:d9:d7:72:01:63:be:7f:9a:47:d3:e9:14:c4:77:29:0e: 4c:80:d6:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjUxMjE5MDUzNzI5WhcNMjUxMjI2MDUzNzI5WjAYMRYwFAYD VQQDDA02OTQ0ZTQ5YS1lODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNkFUT7Pz7tZLW9+j+sLbxbsqOr8MgLDKrug1oDbuFz8ctGTy4kNAHvwIxmC 9tYJsTDxxnbGChu7eQuZALuo56DDIkGVPHrRD+4U62x1lpXmmxANi/uqbsmhU/cK PW5g9JefbK+W3ROM0y6iIEOc0LM+dM4/ph16v49Ul2RuGTOzCr4GhTqV/gQjip1l X3wVHh6BIyJKhL/hbWgB7ozvIoYw1IBfQWfqG4ZJWHMliouQ+aV7ngb1MjxFn5v/ MFHgfB+8/O6HyVgxVw6AbzDnFMWagF1NR9GWIoGHKtlJf6LOqv717VRDGnCJ5gub K2fDj+TrfyUCTNaoiURBIzD1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDN9b2ZI HSTr7MM4KFeZ+ZFd/ZhWMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMVTBpMOAcUWAalOivf5U+vv4E73f+8co2IfJgSkmpUp7QiBy4GRE/ 0UEc344It0sN+EUztOhUPE6I2rCIdz18YQVbQHCQb/KQfR0EDdN/Cp0jgf5MoMjv wEqVoN1AUE7n9bfiPvOlRV1MLWOlpQtrG+/+kj94StPqd2kXuzajOTbOEo55tHOm MVws/ZARX0EqVE7tmTRUksotnRCFRjof7OT0rJMY1APhTCmN/YJBKB7yolH6uQdC 3rB2MIutA02yZxxHWhUwR06/fV2han9HfiYhTJAnys/UE+ZOvN/5zABDfrCpNoY9 d5r2ttnXcgFjvn+aR9PpFMR3KQ5MgNaK -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:17 2025 by rpki-client