This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft File: tAgYFca67ZihzJUKxvoQvGAFiQI.mft (raw, json) Hash identifier: BVGMMt7AEusNBP5sgIba/mGWPdeUppCLei3VGinfa6c= Subject key identifier: 1F:0D:C9:D3:3D:4F:E0:86:F1:69:57:35:42:C1:FC:E9:5A:A0:57:31 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft Manifest number: 0133 Signing time: Tue 09 Dec 2025 02:40:48 +0000 Manifest this update: Tue 09 Dec 2025 02:40:47 +0000 Manifest next update: Tue 16 Dec 2025 02:40:47 +0000 Files and hashes: 1: tAgYFca67ZihzJUKxvoQvGAFiQI.crl (hash: 0GrR6czSfdtFVm1siqJ93szpkOrRqmBpEsJpQgd0/vI=) 2: C27BAE1E63B411EF9A87155DC4F9AE02.roa (hash: SSYQhoePXSEZdBWsz2dSUFdjtoPBSwBZmvZLvzmRmE0=) 3: 04B0D250076211EFB14D3B12C4F9AE02.roa (hash: P3/wZ7DQvbJJfKWvdajqCfHfPIC9vT8MvrKGyjWYukc=) 4: 052FFA76076211EFB14D3B12C4F9AE02.roa (hash: ZSCw86aRTNxpcp5h59Ua7FuiYhnQ7JZYo+fxXzI0qEo=) 5: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (hash: 81XCmtMAkz8d5MFKkbARa3r3fmwCBxTjGKLV+BXxDFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: Dec 9 02:40:47 2025 GMT Not After : Dec 16 02:40:47 2025 GMT Subject: CN=69378c30-2545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c8:0d:00:c6:0d:66:27:73:2c:a5:1c:2d:a9: 01:92:35:46:34:a9:a1:b4:19:6d:d0:f5:3c:aa:15: d5:32:db:97:91:e4:ea:b2:72:f1:b6:d5:75:9b:58: f3:6c:56:53:57:32:f3:4c:1d:ee:8d:57:d8:9a:9f: a2:44:39:23:6e:49:c9:7c:33:0e:82:36:f5:97:27: eb:75:74:c5:53:86:85:ee:b9:e4:b0:cb:d1:4d:31: d6:76:99:2d:bc:a0:a6:d9:fd:d7:05:61:6f:7e:81: a3:64:57:30:9f:0e:b7:87:4d:51:5a:9a:74:09:04: 2d:11:b0:15:de:58:2f:13:3e:e8:f1:5d:f8:37:0e: 43:40:3e:ca:24:e5:a4:81:c1:22:4d:fc:2f:bc:de: 86:4a:43:fe:c3:ad:c2:10:36:e3:ab:7e:d7:ce:59: 0e:70:1f:17:2c:ac:bc:2d:16:78:3c:18:83:c4:ea: b2:f7:54:44:19:b4:7c:93:60:ae:15:a9:37:f2:4f: 6b:30:cf:07:dc:bc:d5:ca:68:bb:f6:f3:e2:b2:98: a3:f5:18:48:e5:05:68:7f:17:5c:ee:cf:54:c4:5a: 6e:44:90:83:bf:bd:cf:77:f5:4e:6e:2f:06:20:49: 5f:d4:7a:a9:f4:11:ed:16:05:29:ec:e3:9f:d8:a6: 4b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0D:C9:D3:3D:4F:E0:86:F1:69:57:35:42:C1:FC:E9:5A:A0:57:31 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:03:c7:73:1a:47:24:71:ac:93:ea:7a:c3:aa:a2:f5:84:b1: 54:34:a2:9d:96:e4:f9:67:79:2f:e6:df:ee:16:95:16:97:de: e0:61:c3:e6:8d:8a:c0:e1:5b:2a:36:7f:21:76:98:64:f0:16: 76:41:7a:97:18:4f:04:46:ae:15:29:87:99:88:f8:7b:eb:e8: 02:ed:48:54:a5:21:ff:e3:6c:63:98:71:8d:7a:09:ae:71:38: 54:3e:61:c8:bd:8e:10:b2:14:14:27:06:d6:05:a6:80:2f:f0: 25:ef:3d:c5:1a:47:a1:c6:c4:f0:1c:00:99:8e:21:0d:2c:b8: 14:df:6c:b1:84:42:0b:17:3d:1a:79:77:c1:79:e0:cf:17:59: 37:39:af:34:81:af:ae:e2:1d:51:ef:6c:cd:18:a0:b5:d0:5b: 4b:3e:b3:10:3f:34:c5:42:06:53:4b:89:29:cc:17:91:f1:cf: 84:58:8a:ee:f1:87:93:b3:76:f3:f8:7f:de:fe:dc:b3:5d:45: 34:0d:34:cc:b9:c6:0c:9b:0c:84:a4:8f:d6:eb:a7:78:48:88: d6:02:d3:8e:c9:5f:67:e8:7e:81:7a:29:a2:25:41:8f:78:7b: ab:ed:16:06:96:db:7e:da:e0:2b:bf:8e:2e:11:83:fc:f6:d7: e3:73:4f:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGNUQxMTAvBgNVBAUTKEI0MDgxODE1QzZCQUVEOThBMUNDOTUwQUM2RkExMEJD NjAwNTg5MDIwHhcNMjUxMjA5MDI0MDQ3WhcNMjUxMjE2MDI0MDQ3WjAYMRYwFAYD VQQDEw02OTM3OGMzMC0yNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMgNAMYNZidzLKUcLakBkjVGNKmhtBlt0PU8qhXVMtuXkeTqsnLxttV1m1jz bFZTVzLzTB3ujVfYmp+iRDkjbknJfDMOgjb1lyfrdXTFU4aF7rnksMvRTTHWdpkt vKCm2f3XBWFvfoGjZFcwnw63h01RWpp0CQQtEbAV3lgvEz7o8V34Nw5DQD7KJOWk gcEiTfwvvN6GSkP+w63CEDbjq37XzlkOcB8XLKy8LRZ4PBiDxOqy91REGbR8k2Cu Fak38k9rMM8H3LzVymi79vPispij9RhI5QVofxdc7s9UxFpuRJCDv73Pd/VObi8G IElf1Hqp9BHtFgUp7OOf2KZL+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8NydM9 T+CG8WlXNULB/OlaoFcxMB8GA1UdIwQYMBaAFLQIGBXGuu2YocyVCsb6ELxgBYkC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Y1RC8xMEY5NEVGMDA2 QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjdaaWh6SlVLeHZvUXZHQUZp UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi90QWdZRmNhNjda aWh6SlVLeHZvUXZHQUZpUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIA8dzGkckcayT6nrDqqL1hLFUNKKdluT5Z3kv5t/uFpUWl97gYcPm jYrA4VsqNn8hdphk8BZ2QXqXGE8ERq4VKYeZiPh76+gC7UhUpSH/42xjmHGNegmu cThUPmHIvY4QshQUJwbWBaaAL/Al7z3FGkehxsTwHACZjiENLLgU32yxhEILFz0a eXfBeeDPF1k3Oa80ga+u4h1R72zNGKC10FtLPrMQPzTFQgZTS4kpzBeR8c+EWIru 8YeTs3bz+H/e/tyzXUU0DTTMucYMmwyEpI/W66d4SIjWAtOOyV9n6H6BeimiJUGP eHur7RYGltt+2uArv44uEYP89tfjc0/R -----END CERTIFICATE-----Generated at Thu Dec 11 15:29:37 2025 by rpki-client