This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: CCMmKHfpcgC+PT/XZ9WF3z3sLJf+aQoqIKtZXwMFxME= Subject key identifier: 50:0E:D1:9F:2F:30:FA:F2:03:AD:07:86:62:87:8E:3B:49:8F:DB:62 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 0129 Signing time: Tue 23 Dec 2025 03:40:34 +0000 Manifest this update: Tue 23 Dec 2025 03:40:34 +0000 Manifest next update: Tue 30 Dec 2025 03:40:34 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: xC7kJ4a9/5LveorMKa2P0+bHeCpdy9uGy+FLoa748+Q=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Dec 23 03:40:34 2025 GMT Not After : Dec 30 03:40:34 2025 GMT Subject: CN=694a0f32-4082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c2:0c:4e:3e:db:dc:63:c3:f3:6b:ca:00:d3: 17:ec:10:fd:31:b4:b1:86:16:f7:a0:cf:ee:44:8e: 5a:e7:18:04:10:4c:ca:cf:09:8f:ca:27:45:3b:63: 71:22:f1:a1:ba:30:cd:87:97:1e:88:04:dc:08:59: a9:98:39:63:07:c5:54:9a:8d:10:bb:9b:46:d0:92: 8b:b3:05:81:fd:75:09:2a:21:98:59:eb:b4:3e:2d: d3:f2:8b:18:16:21:af:48:63:66:08:b3:5e:90:3f: b2:99:0a:59:0f:08:40:b4:10:22:b8:cb:1a:d3:3e: dc:60:84:a1:54:30:df:be:9c:03:c9:41:d0:0b:af: d1:53:8f:52:b1:8f:e5:6d:39:64:be:6c:3a:b1:26: c1:44:78:da:a5:6c:62:9b:cd:5a:bb:e2:5f:08:54: aa:03:9e:bb:df:fb:b4:12:d0:6b:f5:1e:39:cf:df: 24:2a:46:8a:d4:52:42:dc:43:7a:ef:73:ee:23:e2: 47:1f:13:cf:fe:17:e6:76:70:ce:70:b4:4a:85:bb: e4:72:8e:7e:40:37:6b:d9:00:e6:8f:c2:5e:0b:7a: 95:5c:bb:ab:f3:9a:d0:4d:75:ba:1c:59:61:1c:37: 0d:bc:75:56:f5:b3:11:00:de:6c:03:78:fa:a3:17: 04:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0E:D1:9F:2F:30:FA:F2:03:AD:07:86:62:87:8E:3B:49:8F:DB:62 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3f:ee:fd:26:29:35:34:1b:4b:1b:24:24:f5:1c:24:d2:8b: 5b:ef:ef:7d:19:f6:b1:0f:c0:a7:f9:64:b7:2f:32:12:1f:18: c2:5c:de:6e:c5:ca:f2:3a:f1:91:71:ca:b9:a5:5b:ed:50:15: eb:bd:26:88:e3:1e:74:87:74:0a:c7:f8:cf:fa:40:6d:f4:53: 51:17:28:16:d0:5d:3c:bc:11:e6:46:09:77:56:88:23:7e:cf: 9a:8e:5a:93:a0:d5:4d:9a:54:e5:20:38:3b:6c:6b:c4:ba:fa: d1:e8:78:2e:ab:98:38:28:86:78:b4:48:bf:d8:d4:56:76:db: a3:05:ea:24:b9:de:27:8e:26:c2:c7:02:f5:9e:ce:ec:a0:18: 55:08:c9:ec:ee:e6:3f:00:16:22:c1:0f:e1:ec:fe:44:89:5c: 17:07:06:43:13:9c:12:fb:32:dd:20:b9:f6:61:61:05:63:e3: ac:d3:4f:1d:fe:f3:09:28:51:08:f1:a0:7f:4b:87:5a:d3:1e: 05:50:ea:87:34:bc:80:b4:92:72:a0:a2:9b:1d:07:24:77:0e: cf:c6:ab:dc:1c:6c:7e:f6:9e:c4:60:bc:3f:2e:d6:be:6c:8b: 75:34:2f:59:0c:eb:9a:1e:f4:d6:f2:27:c4:e7:4a:82:54:bd: b1:e6:23:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUxMjIzMDM0MDM0WhcNMjUxMjMwMDM0MDM0WjAYMRYwFAYD VQQDDA02OTRhMGYzMi00MDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMIMTj7b3GPD82vKANMX7BD9MbSxhhb3oM/uRI5a5xgEEEzKzwmPyidFO2Nx IvGhujDNh5ceiATcCFmpmDljB8VUmo0Qu5tG0JKLswWB/XUJKiGYWeu0Pi3T8osY FiGvSGNmCLNekD+ymQpZDwhAtBAiuMsa0z7cYIShVDDfvpwDyUHQC6/RU49SsY/l bTlkvmw6sSbBRHjapWxim81au+JfCFSqA5673/u0EtBr9R45z98kKkaK1FJC3EN6 73PuI+JHHxPP/hfmdnDOcLRKhbvkco5+QDdr2QDmj8JeC3qVXLur85rQTXW6HFlh HDcNvHVW9bMRAN5sA3j6oxcEuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAO0Z8v MPryA60HhmKHjjtJj9tiMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OThFQy8zQThGODQxMDIxNDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpH NmZNSzkwcFl4bWVQcngwcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwP+79Jik1NBtLGyQk9Rwk0otb7+99GfaxD8Cn+WS3LzISHxjCXN5u xcryOvGRccq5pVvtUBXrvSaI4x50h3QKx/jP+kBt9FNRFygW0F08vBHmRgl3Vogj fs+ajlqToNVNmlTlIDg7bGvEuvrR6Hguq5g4KIZ4tEi/2NRWdtujBeokud4njibC xwL1ns7soBhVCMns7uY/ABYiwQ/h7P5EiVwXBwZDE5wS+zLdILn2YWEFY+Os008d /vMJKFEI8aB/S4da0x4FUOqHNLyAtJJyoKKbHQckdw7PxqvcHGx+9p7EYLw/Lta+ bIt1NC9ZDOuaHvTW8ifE50qCVL2x5iNA -----END CERTIFICATE-----Generated at Thu Dec 25 03:29:27 2025 by rpki-client