This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: rYqXmQHri2yZOOmJIi7xsLtI5p9jYrtEiWR3GsPepeI= Subject key identifier: D4:FA:88:EB:90:26:19:65:9C:07:66:DB:3D:84:6A:B7:9C:68:B2:D8 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0224 Signing time: Thu 25 Dec 2025 01:15:35 +0000 Manifest this update: Thu 25 Dec 2025 01:15:35 +0000 Manifest next update: Thu 01 Jan 2026 01:15:35 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: 2cHoP6yd96VEPAWNY2t2629GkRX/wBOaXScZmkjpr3A=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 01:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Dec 25 01:15:35 2025 GMT Not After : Jan 1 01:15:35 2026 GMT Subject: CN=694c9037-0769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6c:db:74:c9:5c:a3:dd:c5:6a:db:f2:4c:be: f4:82:d8:52:66:1a:c6:de:a0:d1:fb:0c:79:21:12: 1b:29:22:d5:0e:50:78:4f:bd:87:cb:c8:8d:d8:75: 5a:b4:7c:9b:fc:30:6c:3a:fe:dd:28:23:6a:4d:54: 77:67:40:2f:ad:b0:3d:a6:a7:b0:d7:a0:f8:a2:de: 8b:68:eb:9d:c4:a8:c5:f1:9d:26:63:df:af:fa:6f: bb:67:a2:00:34:20:8b:b6:92:25:90:5e:cc:26:fe: d3:40:ee:0f:38:b6:a6:de:54:bd:65:78:93:fd:e0: 0b:f5:4a:e9:2d:a9:20:b8:dc:87:c0:fc:a4:8f:70: ca:f3:33:cb:cd:6d:ce:9c:b3:76:32:04:12:07:5d: 7f:56:c3:d8:48:0d:e2:11:58:77:2a:69:ec:56:70: 35:2c:bb:7a:1a:ef:7d:92:5e:16:b2:a1:b2:3b:54: 87:12:30:b2:51:19:1a:6d:5d:b8:b5:34:d6:00:8a: f1:01:d6:b2:72:b1:bc:ae:8e:71:18:69:09:88:ea: 0f:11:67:75:4e:e3:97:5f:ff:67:8a:2a:f9:2f:90: 8a:65:ba:c6:47:81:bb:bd:da:20:ae:1a:2a:b3:d2: 02:20:e6:5b:15:75:53:63:9a:96:86:5e:0c:34:02: 38:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FA:88:EB:90:26:19:65:9C:07:66:DB:3D:84:6A:B7:9C:68:B2:D8 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:93:1e:de:6e:11:42:b4:82:2a:26:20:48:21:09:68:ce:11: ae:eb:6c:3d:22:58:73:c9:ec:50:92:11:46:35:be:e1:84:8e: 00:83:73:fe:f7:42:36:72:4e:d2:e6:2b:f5:b7:2e:a2:ba:7a: cd:c5:70:7e:20:10:26:3c:4f:3f:49:94:30:42:db:70:cb:63: af:8f:9b:81:8f:78:b8:17:24:77:80:d7:ff:aa:77:dd:7f:5a: 21:fe:5d:ca:e7:a2:28:f2:fc:21:3e:78:b7:5e:ac:d9:59:44: 6b:64:ec:00:d1:78:bc:6d:6f:eb:ea:e5:59:82:3a:01:3c:fb: 74:2a:bf:bf:67:4a:8c:3c:2b:ad:42:cb:01:ba:2b:86:fa:e9: 06:c1:d1:9b:fe:f7:4a:60:f8:60:d1:9a:d1:ce:a3:5b:da:0a: 13:eb:e3:1b:36:86:8c:bb:db:b4:ed:c8:0c:9f:3c:f9:ac:a6: 3f:33:ba:46:e8:e3:bb:c9:fc:d7:da:b1:7e:7e:9e:f8:f9:00: 6e:f6:30:ea:cf:81:0c:6e:e1:8a:cd:77:82:00:35:81:89:15: 46:40:de:59:27:8b:75:61:17:14:31:89:b3:4f:15:aa:28:1f: 5e:f5:28:04:cc:43:bc:09:98:25:f8:60:58:57:e3:85:cb:58: 05:69:fe:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMjI1MDExNTM1WhcNMjYwMTAxMDExNTM1WjAYMRYwFAYD VQQDDA02OTRjOTAzNy0wNzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GzbdMlco93FatvyTL70gthSZhrG3qDR+wx5IRIbKSLVDlB4T72Hy8iN2HVa tHyb/DBsOv7dKCNqTVR3Z0AvrbA9pqew16D4ot6LaOudxKjF8Z0mY9+v+m+7Z6IA NCCLtpIlkF7MJv7TQO4POLam3lS9ZXiT/eAL9UrpLakguNyHwPykj3DK8zPLzW3O nLN2MgQSB11/VsPYSA3iEVh3KmnsVnA1LLt6Gu99kl4WsqGyO1SHEjCyURkabV24 tTTWAIrxAdaycrG8ro5xGGkJiOoPEWd1TuOXX/9niir5L5CKZbrGR4G7vdogrhoq s9ICIOZbFXVTY5qWhl4MNAI4AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNT6iOuQ JhllnAdm2z2EarecaLLYMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCykx7ebhFCtIIqJiBIIQlozhGu62w9IlhzyexQkhFGNb7hhI4Ag3P+ 90I2ck7S5iv1ty6iunrNxXB+IBAmPE8/SZQwQttwy2Ovj5uBj3i4FyR3gNf/qnfd f1oh/l3K56Io8vwhPni3XqzZWURrZOwA0Xi8bW/r6uVZgjoBPPt0Kr+/Z0qMPCut QssBuiuG+ukGwdGb/vdKYPhg0ZrRzqNb2goT6+MbNoaMu9u07cgMnzz5rKY/M7pG 6OO7yfzX2rF+fp74+QBu9jDqz4EMbuGKzXeCADWBiRVGQN5ZJ4t1YRcUMYmzTxWq KB9e9SgEzEO8CZgl+GBYV+OFy1gFaf6V -----END CERTIFICATE-----Generated at Sat Dec 27 00:43:38 2025 by rpki-client