This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: 9u7eO2ajqMcG5CAp7T5CHeF0yHgINf1k/WjrpNlmtvw= Subject key identifier: 48:9F:F2:5B:34:60:26:4E:88:35:1F:EB:17:D1:F8:F1:C3:4C:13:BA Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 0813 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 0813 Signing time: Mon 22 Dec 2025 20:15:11 +0000 Manifest this update: Mon 22 Dec 2025 20:15:11 +0000 Manifest next update: Mon 29 Dec 2025 20:15:11 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: z4gp07PPxU5TlwwPA30DSBCO99wVJUjIEkPE/jn/Vmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Dec 22 20:15:11 2025 GMT Not After : Dec 29 20:15:11 2025 GMT Subject: CN=6949a6cf-869a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:7f:f5:62:69:1a:58:7e:56:b8:a3:7c:90: 1a:b8:52:35:c3:fd:7f:5e:8e:c3:ca:c4:f6:74:74: 6f:9e:1c:9d:4f:6e:af:d2:f1:f8:8b:81:22:70:c1: 45:4f:f6:6d:0b:4d:90:d5:68:50:56:f2:f0:96:2a: 6d:a8:4d:a9:c5:90:fb:ff:be:a6:6a:95:05:bb:6f: 9e:e9:ec:d2:c3:7e:78:a9:49:52:41:41:4a:37:c8: 11:d3:a4:b6:58:84:9c:9b:25:cf:ad:eb:a8:61:6a: bc:ff:8b:39:87:86:b3:a5:b9:96:49:2d:48:85:f6: 0c:0f:e0:71:f5:b1:42:3f:37:f4:f1:c8:b6:40:b5: f8:9c:c9:b8:36:ec:e1:c2:97:9d:a7:cb:6c:a5:fe: 09:c2:cf:3b:8a:23:eb:63:06:bc:a4:be:17:38:1f: 64:a7:d6:53:bb:54:9c:3f:f9:f4:fd:75:85:ee:df: cb:4e:82:d8:47:07:e3:b8:89:e9:21:36:f4:bc:68: 89:3f:e1:da:24:be:83:bd:68:2c:1f:36:b6:1f:a5: 70:b8:c1:c7:47:80:be:ca:a6:03:1a:d6:d4:f0:db: 40:8e:13:73:79:5b:77:14:05:05:e6:5a:5a:64:cd: 20:68:06:80:93:00:05:29:16:a8:a2:ab:58:1a:05: c9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9F:F2:5B:34:60:26:4E:88:35:1F:EB:17:D1:F8:F1:C3:4C:13:BA X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:2a:29:60:84:67:3f:10:96:58:11:d6:ff:bc:ad:17:6b:0b: 64:cc:2a:65:50:75:3c:ed:fd:a1:92:76:9e:ba:21:57:4c:6d: 6d:f7:9f:b0:f3:63:16:53:bf:9c:05:33:62:bb:8b:45:d5:a8: 35:09:03:b4:d4:59:fb:6b:f4:1a:72:8f:e3:db:94:d8:c0:07: 79:dc:01:e9:b0:8c:c2:7e:1c:b4:76:62:4e:1c:24:df:75:a9: 18:57:d6:3a:c0:99:d4:85:ec:59:8c:00:77:4b:0b:6b:04:40: 2e:56:fe:8e:7c:3e:8a:63:ce:1c:2b:8a:69:35:0d:33:0c:0e: 78:87:84:b3:d7:86:16:07:6c:d1:bf:06:75:47:43:e0:c6:07: 7d:22:ed:48:64:e3:a7:d0:c4:61:1b:61:c6:c6:77:88:a8:bb: b6:d7:a4:52:a8:07:4e:6f:e7:1a:74:32:a8:40:da:f8:b4:97: 22:31:b9:1e:b5:e9:dc:7c:52:9f:d2:e8:70:e8:07:53:52:05: f2:b2:bf:e1:e9:d5:29:6c:04:c9:e0:b3:21:bc:12:ec:e4:08: 11:84:7b:c0:8f:2a:0d:c5:93:02:15:46:74:66:64:5f:bc:eb: f7:7b:9a:b0:fe:30:ac:45:db:3b:6d:33:29:d8:4c:e0:cf:00: a8:58:b4:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUxMjIyMjAxNTExWhcNMjUxMjI5MjAxNTExWjAYMRYwFAYD VQQDDA02OTQ5YTZjZi04NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNp/9WJpGlh+VrijfJAauFI1w/1/Xo7DysT2dHRvnhydT26v0vH4i4EicMFF T/ZtC02Q1WhQVvLwliptqE2pxZD7/76mapUFu2+e6ezSw354qUlSQUFKN8gR06S2 WIScmyXPreuoYWq8/4s5h4azpbmWSS1IhfYMD+Bx9bFCPzf08ci2QLX4nMm4Nuzh wpedp8tspf4Jws87iiPrYwa8pL4XOB9kp9ZTu1ScP/n0/XWF7t/LToLYRwfjuInp ITb0vGiJP+HaJL6DvWgsHza2H6VwuMHHR4C+yqYDGtbU8NtAjhNzeVt3FAUF5lpa ZM0gaAaAkwAFKRaooqtYGgXJFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEif8ls0 YCZOiDUf6xfR+PHDTBO6MB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZKilghGc/EJZYEdb/vK0XawtkzCplUHU87f2hknaeuiFXTG1t95+w 82MWU7+cBTNiu4tF1ag1CQO01Fn7a/Qaco/j25TYwAd53AHpsIzCfhy0dmJOHCTf dakYV9Y6wJnUhexZjAB3SwtrBEAuVv6OfD6KY84cK4ppNQ0zDA54h4Sz14YWB2zR vwZ1R0Pgxgd9Iu1IZOOn0MRhG2HGxneIqLu216RSqAdOb+cadDKoQNr4tJciMbke tencfFKf0uhw6AdTUgXysr/h6dUpbATJ4LMhvBLs5AgRhHvAjyoNxZMCFUZ0ZmRf vOv3e5qw/jCsRds7bTMp2EzgzwCoWLSl -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:40 2025 by rpki-client