This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: T6Rt5wp9erUBBLsDc2911oWHFYZ/1ZW3DdhyLe5INHY= Subject key identifier: 8B:42:92:F8:50:BE:BA:95:41:5E:00:31:E2:1B:F3:E5:C0:C7:8C:1B Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0B03 Signing time: Sun 28 Dec 2025 18:51:07 +0000 Manifest this update: Sun 28 Dec 2025 18:51:06 +0000 Manifest next update: Sun 04 Jan 2026 18:51:06 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: UZo+2uEiLf2q7IJslH50Qf3EKrGKz4MQMjlxFk4iSs0=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 18:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Dec 28 18:51:06 2025 GMT Not After : Jan 4 18:51:06 2026 GMT Subject: CN=69517c1b-42c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:9e:6d:d3:a3:bf:46:bf:33:ed:b5:c0:28: 92:ee:d7:48:8b:3c:73:9b:03:5e:61:09:7d:7d:15: 42:60:52:86:4b:e6:e5:cf:b7:fc:b7:0d:5d:ac:b1: 2b:56:d1:80:08:f0:cf:e0:67:46:b9:a7:96:93:90: 51:0c:c0:47:8b:13:b7:71:43:c6:c7:3d:d4:b8:77: bc:34:09:2d:21:d4:15:7d:fd:00:b9:a9:ec:4e:6e: 3c:cb:ad:f9:96:18:57:7c:7d:2e:0d:b6:b1:c1:3a: fb:a7:48:c0:18:f0:cc:7a:fc:36:94:26:73:8b:70: c2:38:1a:f7:dc:51:69:7d:7f:d5:00:87:2e:1a:cf: a6:8e:9e:92:c6:fb:5c:fa:4a:3c:17:3d:93:75:8f: 72:b0:ac:08:51:e1:bb:10:b7:a2:44:c8:2f:27:34: bc:ab:55:2d:d5:71:f9:1d:b8:11:f3:1d:0e:ef:a9: f1:fe:e1:84:f0:26:3e:af:76:95:82:79:55:df:43: 5c:5d:53:ae:e3:eb:40:7f:d9:f3:6b:fc:89:93:4b: 1b:e4:3a:be:1f:71:8a:df:a1:64:08:a1:c4:76:37: 01:c3:2f:61:fa:a7:ba:06:4e:0b:e7:70:49:97:62: e7:16:1a:5b:19:58:45:dd:93:56:0a:03:c0:5c:82: 5e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:42:92:F8:50:BE:BA:95:41:5E:00:31:E2:1B:F3:E5:C0:C7:8C:1B X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:da:f3:0e:e7:a1:d9:62:b2:a3:57:b5:69:3a:57:b8:43:66: c7:70:9d:2b:17:db:1f:a2:c5:59:b7:95:16:ab:c0:65:c2:80: 2f:92:d2:5a:eb:56:51:c5:b2:78:95:f1:a8:25:bb:8b:94:56: 62:87:80:fb:85:e7:10:9f:45:0d:9a:ad:81:7d:7a:9d:af:da: 5c:3a:31:e7:53:e7:cb:67:78:84:3d:46:b9:9a:a4:20:eb:7c: 40:7b:5e:c5:34:e2:cc:dc:e7:1b:ce:c2:a3:e3:1d:03:f3:d3: bb:4c:16:ae:82:c4:4c:cc:c5:e4:96:3a:40:f1:cc:98:fb:fe: f9:2a:8e:bb:33:08:8a:0b:16:9f:d2:55:c2:03:99:6d:fb:15: b4:16:8c:62:03:f5:26:74:c6:38:fe:3c:66:de:b1:6a:d1:b3: aa:c4:10:e3:a7:06:c8:d1:a1:90:38:c4:8a:c8:02:85:49:bd: 36:0a:5a:3e:41:4a:1c:15:04:f7:c1:33:20:51:54:2d:8e:60: c6:c1:2e:97:4e:67:9e:33:a8:11:10:2e:88:39:60:1a:2b:1b: ed:ec:08:ab:6d:de:83:50:df:44:6f:64:55:a1:6d:79:ef:58: 71:ef:ef:f6:57:2f:59:d9:40:0a:1e:65:a9:71:bf:d6:f8:84: 91:4e:7c:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUxMjI4MTg1MTA2WhcNMjYwMTA0MTg1MTA2WjAYMRYwFAYD VQQDDA02OTUxN2MxYi00MmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk2ebdOjv0a/M+21wCiS7tdIizxzmwNeYQl9fRVCYFKGS+blz7f8tw1drLEr VtGACPDP4GdGuaeWk5BRDMBHixO3cUPGxz3UuHe8NAktIdQVff0AuansTm48y635 lhhXfH0uDbaxwTr7p0jAGPDMevw2lCZzi3DCOBr33FFpfX/VAIcuGs+mjp6Sxvtc +ko8Fz2TdY9ysKwIUeG7ELeiRMgvJzS8q1Ut1XH5HbgR8x0O76nx/uGE8CY+r3aV gnlV30NcXVOu4+tAf9nza/yJk0sb5Dq+H3GK36FkCKHEdjcBwy9h+qe6Bk4L53BJ l2LnFhpbGVhF3ZNWCgPAXIJejwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItCkvhQ vrqVQV4AMeIb8+XAx4wbMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA32vMO56HZYrKjV7VpOle4Q2bHcJ0rF9sfosVZt5UWq8BlwoAvktJa 61ZRxbJ4lfGoJbuLlFZih4D7hecQn0UNmq2BfXqdr9pcOjHnU+fLZ3iEPUa5mqQg 63xAe17FNOLM3OcbzsKj4x0D89O7TBaugsRMzMXkljpA8cyY+/75Ko67MwiKCxaf 0lXCA5lt+xW0FoxiA/UmdMY4/jxm3rFq0bOqxBDjpwbI0aGQOMSKyAKFSb02Clo+ QUocFQT3wTMgUVQtjmDGwS6XTmeeM6gREC6IOWAaKxvt7Airbd6DUN9Eb2RVoW15 71hx7+/2Vy9Z2UAKHmWpcb/W+ISRTnwT -----END CERTIFICATE-----Generated at Tue Dec 30 06:18:35 2025 by rpki-client