This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: tdusYs1+RvBVslSHZ/N/onqyzWKZqOH8zq4buIkkTf8= Subject key identifier: E3:14:29:DF:B1:90:84:B6:E7:5A:37:52:B4:E2:18:09:77:15:AC:3F Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0B05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0AFE Signing time: Thu 18 Dec 2025 19:00:07 +0000 Manifest this update: Thu 18 Dec 2025 19:00:06 +0000 Manifest next update: Thu 25 Dec 2025 19:00:06 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: Cr+tA7VThD/25/W56iU26Z73ebNsSopSW+VSkelaNVE=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2821 (0xb05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Dec 18 19:00:06 2025 GMT Not After : Dec 25 19:00:06 2025 GMT Subject: CN=69444f37-cf58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:af:cc:37:7c:69:e9:b3:99:7f:88:b2:e0: 16:a0:ab:55:47:dd:16:e0:9f:e9:11:01:a1:3f:d4: 04:de:b2:7b:e9:95:8b:4a:43:74:a2:ee:cf:ac:ca: 61:ae:cd:b9:c2:aa:42:ba:79:bf:d0:13:92:23:e2: ab:5f:2f:67:22:2b:96:e5:32:98:04:0e:cf:22:6f: 64:04:44:a8:92:70:5d:e8:d7:65:cd:8d:fa:4e:43: aa:49:7b:0b:a6:12:18:6b:4f:cb:d2:ea:7c:b3:d5: 0e:1a:99:5a:40:8a:16:de:d3:cf:a4:e8:30:78:91: 33:41:16:e7:d9:cd:96:18:2b:4d:a8:98:eb:ab:ff: 37:eb:85:03:05:7b:d6:00:da:0d:e4:f8:6a:d7:81: 2f:3e:6f:03:0e:d2:6e:63:5b:cd:fd:67:75:31:ab: ba:5b:87:d3:eb:db:5c:93:74:23:0c:7b:d0:58:57: 7b:0b:99:f3:8d:b1:fe:19:75:d8:e3:5f:67:62:87: 44:5c:33:99:01:81:17:51:4a:36:7a:cc:36:aa:1d: 09:d0:3e:b3:bd:a3:e8:6f:ae:14:d7:1f:31:ac:26: 8e:40:54:66:27:c9:9b:2c:82:5b:26:02:4b:c8:da: 85:18:c6:dc:e2:80:fb:ba:e3:8e:9c:fa:61:38:91: 75:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:14:29:DF:B1:90:84:B6:E7:5A:37:52:B4:E2:18:09:77:15:AC:3F X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c7:c9:14:83:c1:16:9d:b7:c5:62:f5:44:3a:0c:98:7b:ab: 49:d8:65:b7:f8:44:64:69:2b:ea:b8:a0:7a:1e:48:3b:dc:6d: e9:c8:6e:44:ce:83:ce:84:7c:84:70:85:c1:60:8f:1a:ed:a7: 1c:03:b1:5f:fd:9a:52:cb:00:b0:ee:83:f2:c9:bb:58:d9:dd: d5:a1:e0:ca:99:6b:2e:2b:46:3a:fe:dd:25:a7:60:2f:7b:7c: bd:77:fb:fa:5f:f3:c7:94:41:1d:e4:0f:71:bc:75:e6:2a:9c: 6a:90:03:f1:a6:d6:98:8b:aa:3a:8f:de:b2:85:a3:54:28:af: f5:e1:78:9a:e6:09:5b:02:4e:e4:58:c2:a8:73:f0:42:bd:26: ad:0a:46:f0:8b:a0:7f:3a:ae:34:21:1c:0a:c5:a7:70:d6:11: 65:a3:8d:1e:0d:51:78:68:44:ad:29:82:32:ce:77:87:f2:c4: 35:bd:bc:8a:41:c5:35:82:04:cc:ab:60:c7:9b:9f:de:8f:4d: ae:aa:07:f8:73:5e:b1:72:e0:25:f2:2b:3d:04:3e:77:6e:7a: 92:17:a1:87:ca:8c:c6:97:82:3f:d1:72:1c:8d:f4:c1:54:fe: a0:d4:b1:38:0b:50:2e:01:67:1a:1c:14:9d:88:4a:31:0b:6f: 5d:32:2c:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUxMjE4MTkwMDA2WhcNMjUxMjI1MTkwMDA2WjAYMRYwFAYD VQQDDA02OTQ0NGYzNy1jZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn2vzDd8aemzmX+IsuAWoKtVR90W4J/pEQGhP9QE3rJ76ZWLSkN0ou7PrMph rs25wqpCunm/0BOSI+KrXy9nIiuW5TKYBA7PIm9kBESoknBd6NdlzY36TkOqSXsL phIYa0/L0up8s9UOGplaQIoW3tPPpOgweJEzQRbn2c2WGCtNqJjrq/8364UDBXvW ANoN5Phq14EvPm8DDtJuY1vN/Wd1Mau6W4fT69tck3QjDHvQWFd7C5nzjbH+GXXY 419nYodEXDOZAYEXUUo2esw2qh0J0D6zvaPob64U1x8xrCaOQFRmJ8mbLIJbJgJL yNqFGMbc4oD7uuOOnPphOJF1XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMUKd+x kIS251o3UrTiGAl3Faw/MB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/x8kUg8EWnbfFYvVEOgyYe6tJ2GW3+ERkaSvquKB6Hkg73G3pyG5E zoPOhHyEcIXBYI8a7accA7Ff/ZpSywCw7oPyybtY2d3VoeDKmWsuK0Y6/t0lp2Av e3y9d/v6X/PHlEEd5A9xvHXmKpxqkAPxptaYi6o6j96yhaNUKK/14Xia5glbAk7k WMKoc/BCvSatCkbwi6B/Oq40IRwKxadw1hFlo40eDVF4aEStKYIyzneH8sQ1vbyK QcU1ggTMq2DHm5/ej02uqgf4c16xcuAl8is9BD53bnqSF6GHyozGl4I/0XIcjfTB VP6g1LE4C1AuAWcaHBSdiEoxC29dMiz0 -----END CERTIFICATE-----Generated at Fri Dec 19 06:44:27 2025 by rpki-client