This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: dyFaBbfSyBctc1921wuy27QsHbuXHmYL8aNq+IrqNwM= Subject key identifier: 84:FE:A9:E9:D0:0C:2B:A5:26:AA:59:15:C7:B8:20:C3:61:7C:46:33 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0223 Signing time: Tue 23 Dec 2025 01:09:44 +0000 Manifest this update: Tue 23 Dec 2025 01:09:44 +0000 Manifest next update: Tue 30 Dec 2025 01:09:44 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: UXTH+iiWMU3rm2Za6ooZdL9AOcTz00+sPqa5R/6u+e8=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Dec 23 01:09:44 2025 GMT Not After : Dec 30 01:09:44 2025 GMT Subject: CN=6949ebd8-491e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fe:a5:68:8e:e5:76:ed:3b:01:03:02:c0:f8: e4:58:06:79:43:57:54:58:db:ef:80:23:88:92:30: ea:d4:8d:06:34:68:01:83:23:93:90:e2:e4:36:26: 42:8f:05:5f:b8:49:16:f5:aa:95:0d:c2:3b:ce:ba: 76:9c:c2:f9:b3:1d:08:66:00:06:33:d9:b4:07:9f: d1:38:12:d6:d1:ba:08:95:9f:5e:3f:cf:13:f8:a1: b3:9c:1c:3b:c2:bf:6b:89:d5:bd:b8:57:9a:f2:22: 34:dd:e2:3b:be:79:8d:58:40:45:cf:ab:24:90:cc: 74:ce:ef:d1:28:ee:cb:99:fb:58:40:74:91:95:44: c9:a2:40:46:a8:6d:a4:e0:1e:ca:a5:b4:3b:95:fc: 77:28:ab:90:86:be:c2:14:1e:ee:4a:e0:a1:af:7a: b3:96:fe:d9:f0:c1:e7:01:06:2d:af:6a:bd:f3:49: a8:54:56:69:59:59:57:d3:e3:21:f5:92:6a:a9:b2: 27:01:2c:f3:da:45:24:80:27:b6:aa:29:25:85:bd: 6c:35:84:b5:ab:08:19:d7:fa:15:19:0a:20:75:05: 62:ab:ad:93:a5:fb:eb:dc:72:2f:56:57:9d:b2:4c: 3a:3d:84:d0:f9:45:23:37:74:0e:8c:fa:0d:52:5b: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FE:A9:E9:D0:0C:2B:A5:26:AA:59:15:C7:B8:20:C3:61:7C:46:33 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:84:d9:40:72:f0:ae:50:c0:05:f1:95:39:7f:9e:37:f7:12: 57:43:43:c2:6f:ae:42:aa:0a:a6:64:3d:03:4a:7a:4c:b4:73: 3a:f7:16:12:e9:62:e8:26:4c:fe:5a:c6:b2:9a:31:b8:f2:a9: c7:3e:ae:e3:bd:d4:90:ce:a9:21:b1:a6:6d:45:5c:f4:9a:e1: c8:54:f5:8f:ea:24:fd:f6:25:88:0e:e0:0b:78:f5:bc:f2:64: 88:b3:55:07:f7:fe:a7:c2:b5:fb:60:86:b4:6d:f3:30:8b:09: f3:51:6a:3d:97:2a:24:ac:48:c0:39:e8:d5:db:90:82:1c:f6: a4:33:f9:f7:9e:a9:ba:3a:e0:e6:61:70:ab:70:00:1e:25:a9: d7:9c:05:6c:f8:8c:3c:e7:10:a4:66:30:82:fb:83:45:b8:11: 7c:b4:27:6a:e5:3d:1d:d6:28:13:0e:e1:c6:66:5e:0f:a6:c7: 45:b9:26:fc:bb:44:ea:a9:66:27:47:a1:b5:f8:ee:29:ac:0a: d5:f1:b0:f3:a5:aa:19:bd:f3:29:0d:87:17:25:b8:af:de:6e: db:97:f1:43:c6:ea:64:00:68:50:d2:7f:bb:4e:28:55:cf:96: 81:55:07:9b:2e:7b:9f:18:62:d2:e8:13:5a:3a:51:5b:72:73: 89:f4:e4:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMjIzMDEwOTQ0WhcNMjUxMjMwMDEwOTQ0WjAYMRYwFAYD VQQDDA02OTQ5ZWJkOC00OTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxP6laI7ldu07AQMCwPjkWAZ5Q1dUWNvvgCOIkjDq1I0GNGgBgyOTkOLkNiZC jwVfuEkW9aqVDcI7zrp2nML5sx0IZgAGM9m0B5/ROBLW0boIlZ9eP88T+KGznBw7 wr9ridW9uFea8iI03eI7vnmNWEBFz6skkMx0zu/RKO7LmftYQHSRlUTJokBGqG2k 4B7KpbQ7lfx3KKuQhr7CFB7uSuChr3qzlv7Z8MHnAQYtr2q980moVFZpWVlX0+Mh 9ZJqqbInASzz2kUkgCe2qiklhb1sNYS1qwgZ1/oVGQogdQViq62Tpfvr3HIvVled skw6PYTQ+UUjN3QOjPoNUluqPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIT+qenQ DCulJqpZFce4IMNhfEYzMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByhNlAcvCuUMAF8ZU5f5439xJXQ0PCb65CqgqmZD0DSnpMtHM69xYS 6WLoJkz+WsaymjG48qnHPq7jvdSQzqkhsaZtRVz0muHIVPWP6iT99iWIDuALePW8 8mSIs1UH9/6nwrX7YIa0bfMwiwnzUWo9lyokrEjAOejV25CCHPakM/n3nqm6OuDm YXCrcAAeJanXnAVs+Iw85xCkZjCC+4NFuBF8tCdq5T0d1igTDuHGZl4PpsdFuSb8 u0TqqWYnR6G1+O4prArV8bDzpaoZvfMpDYcXJbiv3m7bl/FDxupkAGhQ0n+7TihV z5aBVQebLnufGGLS6BNaOlFbcnOJ9OTs -----END CERTIFICATE-----Generated at Tue Dec 23 05:02:01 2025 by rpki-client