This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: VfmqEslDSabJG+HELOM2T2Ayyugubl7BYQv4DipgAkE= Subject key identifier: AF:0B:C2:51:64:1E:4C:6B:B4:B6:48:C8:AB:83:03:12:E7:6D:7E:92 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 012A Signing time: Thu 25 Dec 2025 03:43:09 +0000 Manifest this update: Thu 25 Dec 2025 03:43:09 +0000 Manifest next update: Thu 01 Jan 2026 03:43:09 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: hwWpjA/U2ym1rMcyrRIDPKPNC2XndBPqqvEwM9iJ960=) 2: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI=) 3: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 03:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Dec 25 03:43:09 2025 GMT Not After : Jan 1 03:43:09 2026 GMT Subject: CN=694cb2cd-bc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d6:84:ef:ce:af:d5:5e:2a:b3:7c:71:64:be: 84:73:39:c0:bc:5b:1c:83:7b:41:e4:08:bc:89:5e: 80:bc:e1:16:db:10:03:4a:80:fb:e5:48:8d:9a:60: 3b:ad:a8:58:aa:73:33:52:5f:3c:d4:7e:79:34:6d: 85:b7:ac:95:5f:71:4f:49:83:67:a5:71:bf:bf:cd: 33:23:7f:b1:6b:cc:2a:4b:e8:f1:2f:ad:72:4a:27: b0:2e:3d:81:43:bd:b4:ff:f3:d6:d9:58:80:d6:c9: 62:18:54:1a:48:72:75:84:f4:fb:a0:96:b9:78:ca: 30:81:dd:91:b2:56:f7:ee:29:c1:24:10:d1:25:d2: 0b:d8:a0:14:f3:1d:2f:05:aa:62:1a:3e:92:ac:c2: 0a:50:c0:95:13:e8:6e:5a:f2:7a:c3:a5:3d:51:b6: ce:7f:46:93:fc:f8:4c:92:b6:02:07:4d:62:9c:9c: 33:93:75:90:48:f4:46:05:73:60:24:dc:46:f7:a6: d2:e1:89:a0:51:5d:2e:89:8d:0b:d3:d3:b2:b9:30: bb:72:b5:41:2d:d6:55:9f:ae:e1:74:c8:29:ea:0e: 45:80:23:69:a2:80:ad:a3:54:a1:70:cb:f0:e8:cb: 84:3e:6d:6b:22:4b:34:2a:91:95:8d:cc:3b:0f:6d: 4a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0B:C2:51:64:1E:4C:6B:B4:B6:48:C8:AB:83:03:12:E7:6D:7E:92 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:05:ea:03:b9:9c:d1:25:b1:04:dd:d9:aa:09:3c:0e:6c:0e: 02:5d:78:9c:08:10:89:8f:f3:4a:1b:35:ca:3e:3b:1f:c3:af: c7:fb:e7:7b:4c:40:82:17:17:a1:a0:d1:5a:e2:a7:6d:67:c0: 6d:e4:fe:d5:8c:97:64:aa:d2:c9:65:e2:c5:03:e7:5e:6a:d6: a7:13:46:63:3a:1d:62:dc:10:5b:d1:9a:e5:45:1e:ae:29:20: 24:af:e2:2b:da:89:aa:5e:c4:db:47:04:24:32:86:cc:98:02: bc:c0:04:f7:ac:00:9a:34:00:2c:01:ca:f2:19:5e:44:0b:e5: 08:2d:ba:cc:88:1e:a3:b6:a1:84:0e:fa:c4:61:5c:87:ba:2b: 35:4b:35:f1:d5:5a:7d:e9:5c:dc:73:cd:c1:42:be:54:5f:7e: ab:a7:5e:65:ca:33:f1:c5:2d:c5:1f:bc:f8:ed:06:da:52:eb: b5:74:57:54:79:7b:36:0d:09:54:8a:3c:c7:c8:a9:cf:12:85: 0b:90:a8:cf:c4:08:fb:03:1c:aa:45:3c:ea:8e:61:a3:a9:b8: 3a:9d:49:a2:82:43:d1:52:55:04:0e:e9:82:64:0e:a1:65:d0: 07:de:4e:e5:88:f1:9d:ba:31:b4:ec:0f:70:f6:76:21:e2:e5: 3f:ae:14:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUxMjI1MDM0MzA5WhcNMjYwMTAxMDM0MzA5WjAYMRYwFAYD VQQDDA02OTRjYjJjZC1iYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4taE786v1V4qs3xxZL6EcznAvFscg3tB5Ai8iV6AvOEW2xADSoD75UiNmmA7 rahYqnMzUl881H55NG2Ft6yVX3FPSYNnpXG/v80zI3+xa8wqS+jxL61ySiewLj2B Q720//PW2ViA1sliGFQaSHJ1hPT7oJa5eMowgd2Rslb37inBJBDRJdIL2KAU8x0v BapiGj6SrMIKUMCVE+huWvJ6w6U9UbbOf0aT/PhMkrYCB01inJwzk3WQSPRGBXNg JNxG96bS4YmgUV0uiY0L09OyuTC7crVBLdZVn67hdMgp6g5FgCNpooCto1ShcMvw 6MuEPm1rIks0KpGVjcw7D21KCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8LwlFk HkxrtLZIyKuDAxLnbX6SMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaBeoDuZzRJbEE3dmqCTwObA4CXXicCBCJj/NKGzXKPjsfw6/H++d7 TECCFxehoNFa4qdtZ8Bt5P7VjJdkqtLJZeLFA+deatanE0ZjOh1i3BBb0ZrlRR6u KSAkr+Ir2omqXsTbRwQkMobMmAK8wAT3rACaNAAsAcryGV5EC+UILbrMiB6jtqGE DvrEYVyHuis1SzXx1Vp96Vzcc83BQr5UX36rp15lyjPxxS3FH7z47QbaUuu1dFdU eXs2DQlUijzHyKnPEoULkKjPxAj7AxyqRTzqjmGjqbg6nUmigkPRUlUEDumCZA6h ZdAH3k7liPGdujG07A9w9nYh4uU/rhT9 -----END CERTIFICATE-----Generated at Thu Dec 25 07:07:55 2025 by rpki-client