This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: DTxZL/2Nqif/B/aQFP4o7BvCU08VJaS4s2d+/S/W4CA= Subject key identifier: EB:81:51:74:FD:C4:4D:59:17:14:2B:9E:01:DD:A1:09:15:69:44:22 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 02CA Signing time: Tue 23 Dec 2025 00:23:55 +0000 Manifest this update: Tue 23 Dec 2025 00:23:55 +0000 Manifest next update: Tue 30 Dec 2025 00:23:55 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: qAWoV+qZ0cqHzSbaTp9jCSpkn+cKrEOvxZR3Rve0Lvs=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: HjDQTIhEsSSxapKWKTHcKft/X94yVftdoMmynKVjBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4, serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: Dec 23 00:23:55 2025 GMT Not After : Dec 30 00:23:55 2025 GMT Subject: CN=6949e11b-dca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3b:85:b2:e9:4d:26:b3:03:fc:fe:59:4d:2b: 73:db:71:bd:4e:1b:1a:7b:ee:8e:52:68:76:4c:89: e6:56:ce:c9:f5:35:c1:f8:47:8b:d3:91:a4:19:14: 16:ab:e1:e5:0c:b4:eb:6f:ef:48:ad:1d:cc:c0:22: cf:ec:06:07:7d:41:cd:fd:88:5b:46:df:b6:dd:3f: f9:86:68:65:7e:6c:a5:96:14:07:2a:7e:0a:cc:6a: 54:f2:ab:d2:63:61:d5:31:8f:de:67:cf:e2:74:10: cc:c6:28:e6:70:3a:30:83:27:21:50:9f:6b:a2:35: 8e:ac:d2:d9:36:ac:92:bf:88:a4:31:50:d6:81:c5: 79:15:81:0e:5d:8b:0a:65:7c:0c:33:09:1c:23:0d: 13:45:d0:c8:fa:98:1d:ec:b4:dd:e8:53:3c:2b:87: 30:52:c4:d5:e6:48:db:4b:90:a2:35:5b:3e:be:2e: d3:74:64:54:81:b0:d8:e3:b6:ec:d7:4f:50:6d:cb: 8a:1a:9a:6f:5f:d8:9f:14:69:f6:45:9c:02:53:c6: 33:65:c8:87:54:6c:42:de:4d:ce:1e:9d:bb:db:9c: 56:ea:2d:ac:39:ef:70:68:ae:50:8c:ba:c7:c2:73: 13:89:f0:03:3f:c3:bf:68:d7:14:94:90:60:dc:7d: c8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:81:51:74:FD:C4:4D:59:17:14:2B:9E:01:DD:A1:09:15:69:44:22 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:b3:01:b4:6f:a3:16:48:e1:75:a8:b8:4f:f2:1e:80:2a:bc: a9:11:38:b2:12:ac:fe:92:f6:7e:0c:a2:08:ab:b7:23:50:6d: 1d:27:46:33:5c:45:99:a9:ba:b4:51:9d:1e:ae:5d:75:37:31: 0b:12:90:bb:59:c9:d7:2d:91:3d:50:61:2a:64:82:48:4e:55: 02:0d:0f:10:08:df:80:24:e3:74:0b:71:bc:46:31:d8:b3:88: b4:9a:6b:e5:6e:b9:94:2a:b4:2e:32:4e:75:89:cb:7f:5e:3a: c7:ed:4c:b8:44:7f:db:cf:18:e7:54:81:7b:03:83:cf:ae:27: d2:a2:7b:f3:c0:6a:06:ee:41:e1:51:a8:4d:2c:b7:85:75:a3: 93:97:43:0f:27:e1:2e:41:51:d4:4d:72:30:1a:fe:a5:16:5b: d8:70:51:c6:b0:94:8c:00:23:80:45:58:19:6c:d5:29:f4:8e: d7:a5:71:03:5b:84:7a:a8:24:9a:56:69:0f:fe:1e:79:05:f9: 1e:4b:78:76:0a:1c:c2:f1:e4:ec:64:31:65:bc:c0:81:c4:53: e3:ef:44:94:5d:86:41:d4:c0:a6:28:e5:32:ae:df:28:8b:89: 8e:b7:36:0a:f1:cc:a3:f2:76:dd:9a:81:a0:83:97:b8:bc:2f: b7:8e:d4:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjUxMjIzMDAyMzU1WhcNMjUxMjMwMDAyMzU1WjAYMRYwFAYD VQQDDA02OTQ5ZTExYi1kY2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzuFsulNJrMD/P5ZTStz23G9Thsae+6OUmh2TInmVs7J9TXB+EeL05GkGRQW q+HlDLTrb+9IrR3MwCLP7AYHfUHN/YhbRt+23T/5hmhlfmyllhQHKn4KzGpU8qvS Y2HVMY/eZ8/idBDMxijmcDowgychUJ9rojWOrNLZNqySv4ikMVDWgcV5FYEOXYsK ZXwMMwkcIw0TRdDI+pgd7LTd6FM8K4cwUsTV5kjbS5CiNVs+vi7TdGRUgbDY47bs 109QbcuKGppvX9ifFGn2RZwCU8YzZciHVGxC3k3OHp2725xW6i2sOe9waK5QjLrH wnMTifADP8O/aNcUlJBg3H3IkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuBUXT9 xE1ZFxQrngHdoQkVaUQiMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZswG0b6MWSOF1qLhP8h6AKrypETiyEqz+kvZ+DKIIq7cjUG0dJ0Yz XEWZqbq0UZ0erl11NzELEpC7WcnXLZE9UGEqZIJITlUCDQ8QCN+AJON0C3G8RjHY s4i0mmvlbrmUKrQuMk51ict/XjrH7Uy4RH/bzxjnVIF7A4PPrifSonvzwGoG7kHh UahNLLeFdaOTl0MPJ+EuQVHUTXIwGv6lFlvYcFHGsJSMACOARVgZbNUp9I7XpXED W4R6qCSaVmkP/h55BfkeS3h2ChzC8eTsZDFlvMCBxFPj70SUXYZB1MCmKOUyrt8o i4mOtzYK8cyj8nbdmoGgg5e4vC+3jtRI -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:49 2025 by rpki-client