This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: 036j3nY+l1JdWMV2R33YtOUelMS26boOs6xItiiSCdc= Subject key identifier: D8:5F:4C:19:9D:75:91:BF:0C:9D:4A:22:BB:82:E1:2D:E9:54:8D:0B Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 021C Signing time: Tue 23 Dec 2025 01:15:48 +0000 Manifest this update: Tue 23 Dec 2025 01:15:47 +0000 Manifest next update: Tue 30 Dec 2025 01:15:47 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: DVmx41J/nPHL0zPwWXSHcvYF/U9IamI65VcLY1FdkYc=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Dec 23 01:15:47 2025 GMT Not After : Dec 30 01:15:47 2025 GMT Subject: CN=6949ed44-791b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3c:15:35:74:e6:ca:ad:c4:b0:bf:c2:76:49: e0:2f:01:b8:33:3f:c2:1a:c6:c4:97:f3:e7:09:c0: 7f:dc:cf:8b:3d:cd:a9:a9:39:6e:1f:42:37:04:73: 35:9d:70:51:0b:11:a4:c2:08:f9:73:93:11:79:31: 5c:51:9a:22:3b:0e:5d:f8:62:2d:a2:5f:24:02:9c: 04:53:8e:3d:14:0b:dd:aa:d5:eb:91:18:24:a7:d8: 9a:17:eb:be:2a:e7:b5:8f:38:c3:24:82:16:a7:1f: 23:43:78:29:7b:56:86:40:3c:82:3d:8d:92:60:c8: 22:7b:6e:ad:49:ba:e5:a2:44:0e:90:fa:6e:44:7e: bc:b3:db:c9:3b:f4:b7:94:fa:0b:73:23:11:a5:d6: 88:8c:97:c5:73:d8:df:a7:d6:8d:9f:f4:8d:22:e3: b1:74:6d:92:d2:f2:1a:7f:5e:b8:af:85:37:3e:df: 6d:b9:79:38:4c:2f:1e:e0:ea:4f:e3:83:e6:76:6a: 12:c0:b8:d1:e8:fc:e4:97:4b:19:0e:a7:37:4d:f4: 17:76:2e:0b:19:96:a9:96:bc:d9:a3:59:a2:2d:96: e9:df:f1:3f:09:85:a1:f3:18:fb:3a:9f:b0:8c:b2: 00:f7:95:3a:8c:25:f8:61:95:2b:be:7c:44:a2:00: 55:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5F:4C:19:9D:75:91:BF:0C:9D:4A:22:BB:82:E1:2D:E9:54:8D:0B X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:07:0c:6f:bd:ce:d5:15:8e:30:58:e0:49:7c:ae:c4:73:eb: 1a:b3:66:3e:36:0e:52:b4:6e:ad:6e:3c:da:95:74:38:ee:e2: d3:52:3c:42:bc:0f:5d:bb:f0:db:0e:c0:64:e3:1f:9d:30:48: fb:b6:ac:71:55:86:f4:4f:ed:c1:47:68:12:2e:f8:58:1c:e9: 21:6f:b1:87:52:57:2e:a3:7b:a8:69:93:a8:fc:24:5f:e4:a7: b9:c6:63:b3:2c:53:c6:d4:de:69:81:26:e4:17:32:c5:61:95: cc:4b:22:4a:dd:51:dd:d2:9a:86:08:91:00:91:fa:e8:63:fa: f4:9f:86:62:cd:89:6e:db:b7:02:14:35:13:62:8f:1b:22:14: d7:73:1a:57:cd:c0:b3:ce:0d:73:21:63:66:d7:fc:b6:17:17: b8:2d:25:3f:1e:06:57:9b:02:ee:0b:13:fa:c3:3f:48:f6:96: 03:31:7b:8c:36:b8:f9:7e:df:6b:8f:92:ad:ff:31:0c:aa:f4: f2:3f:e6:bf:70:04:5e:9e:d9:f9:33:0c:d6:b5:86:b8:9b:36: 66:3e:87:a7:17:38:11:1e:9e:87:28:90:73:59:f6:8e:9f:69: 67:df:21:ec:b4:f2:8a:55:40:d5:72:e7:8d:42:33:32:6b:0d: a7:6d:d4:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMjIzMDExNTQ3WhcNMjUxMjMwMDExNTQ3WjAYMRYwFAYD VQQDDA02OTQ5ZWQ0NC03OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DwVNXTmyq3EsL/CdkngLwG4Mz/CGsbEl/PnCcB/3M+LPc2pqTluH0I3BHM1 nXBRCxGkwgj5c5MReTFcUZoiOw5d+GItol8kApwEU449FAvdqtXrkRgkp9iaF+u+ Kue1jzjDJIIWpx8jQ3gpe1aGQDyCPY2SYMgie26tSbrlokQOkPpuRH68s9vJO/S3 lPoLcyMRpdaIjJfFc9jfp9aNn/SNIuOxdG2S0vIaf164r4U3Pt9tuXk4TC8e4OpP 44PmdmoSwLjR6Pzkl0sZDqc3TfQXdi4LGZaplrzZo1miLZbp3/E/CYWh8xj7Op+w jLIA95U6jCX4YZUrvnxEogBV9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhfTBmd dZG/DJ1KIruC4S3pVI0LMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNBwxvvc7VFY4wWOBJfK7Ec+sas2Y+Ng5StG6tbjzalXQ47uLTUjxC vA9du/DbDsBk4x+dMEj7tqxxVYb0T+3BR2gSLvhYHOkhb7GHUlcuo3uoaZOo/CRf 5Ke5xmOzLFPG1N5pgSbkFzLFYZXMSyJK3VHd0pqGCJEAkfroY/r0n4ZizYlu27cC FDUTYo8bIhTXcxpXzcCzzg1zIWNm1/y2Fxe4LSU/HgZXmwLuCxP6wz9I9pYDMXuM Nrj5ft9rj5Kt/zEMqvTyP+a/cARentn5MwzWtYa4mzZmPoenFzgRHp6HKJBzWfaO n2ln3yHstPKKVUDVcueNQjMyaw2nbdRV -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:50 2025 by rpki-client