This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft File: TUTi91KilQtrVSjAaZsUkOdXd0Q.mft (raw, json) Hash identifier: cyOXgXqPsj/Hd1Rd33SefmmYyGn7F/RDZaEBueqHFiQ= Subject key identifier: 96:0D:72:8D:8B:A8:C2:F0:9A:4C:AF:AC:DB:6A:3D:60:14:32:D2:23 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0FAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft Manifest number: 0FA3 Signing time: Mon 22 Dec 2025 17:12:10 +0000 Manifest this update: Mon 22 Dec 2025 17:12:10 +0000 Manifest next update: Mon 29 Dec 2025 17:12:10 +0000 Files and hashes: 1: TUTi91KilQtrVSjAaZsUkOdXd0Q.crl (hash: Nsropfpi0y3XpMHuY6zKyVHuAG0tuvLWXgm7eSfrzbg=) 2: 3D371C5C708F11E9B105E92CC4F9AE02.roa (hash: YkmY4q4YSypbm13HUH++xACjilqSAUGjIIEq3zMyNH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4013 (0xfad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4, serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Dec 22 17:12:10 2025 GMT Not After : Dec 29 17:12:10 2025 GMT Subject: CN=69497bea-ff02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e3:59:a6:70:a1:d0:cc:5d:1b:06:97:45:6e: 02:12:75:bf:1c:e1:5e:63:ba:94:18:3c:e8:4e:b7: 8b:be:bd:68:41:54:44:09:fa:54:e6:ab:d6:dc:c2: c8:7d:76:67:ef:0c:b4:ed:da:2b:22:6c:eb:ea:41: bd:6a:11:61:d5:f0:a8:79:c3:58:cb:44:7e:be:e2: 91:45:8b:6c:81:6b:1a:25:c5:d5:49:ce:b5:2a:c1: 51:17:f9:21:e2:af:1e:ea:01:7c:58:36:e5:01:92: 60:35:ad:63:06:da:6c:e3:d4:4f:80:f7:7c:25:d0: 4b:61:cd:3c:8f:fa:50:45:87:f8:61:35:85:25:bc: c5:21:ab:02:53:b0:be:6a:68:57:90:f1:91:e0:a0: 83:8f:70:5b:95:ea:89:b0:d3:bb:15:34:65:e5:1f: f9:af:eb:51:45:78:f8:d3:eb:3f:fa:c7:d4:f8:31: a9:fc:e3:d4:2a:ac:d9:55:85:14:6f:9c:33:b9:d1: 76:f4:b3:0a:f5:53:79:0b:23:8c:3b:d7:00:82:ca: e3:70:d8:7a:7f:b8:ab:5d:b6:5e:ff:28:36:35:d5: e0:42:30:7e:7e:1a:7a:ca:44:2c:23:e9:2d:3d:7f: 05:dc:e7:a1:b6:1e:db:a9:4d:32:b6:3b:b3:cb:03: ae:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0D:72:8D:8B:A8:C2:F0:9A:4C:AF:AC:DB:6A:3D:60:14:32:D2:23 X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:0e:a1:c8:98:f9:88:28:7c:ca:1d:9e:9a:b6:f6:2f:20:60: ba:2e:c6:57:a1:8a:dd:a4:de:89:d5:a1:e4:5d:3b:31:c2:e3: 86:59:a6:da:1e:82:25:57:ec:65:46:df:32:01:53:ca:93:a4: b7:ff:19:cf:90:37:33:78:a9:31:05:7a:2b:3f:3c:60:41:c1: e3:b4:0e:2e:3b:6a:11:af:8b:07:23:48:02:7a:3f:0b:c9:0a: d1:39:e8:ae:96:90:54:b5:0c:fc:99:8e:62:ea:b5:fd:72:3b: 81:67:f7:a3:51:53:8c:23:7a:91:97:9b:4c:5a:5a:1d:82:18: 49:da:d4:b8:be:b8:06:00:ee:a0:72:3e:19:19:f9:4d:29:d4: 7e:97:df:0a:52:dd:05:7f:8d:9f:e5:5c:27:1e:e6:3f:b1:50: ec:9c:ff:e3:6b:6e:91:31:f7:5d:cb:57:6a:e6:8f:5c:87:61: d6:4c:08:cb:1d:65:ae:a5:68:b4:42:24:b3:bf:68:fc:89:62: d6:80:f9:49:5f:f9:7d:23:ff:44:1f:1b:4d:47:6d:d9:4e:c7: ac:2c:55:c3:09:ee:07:40:97:4a:eb:63:bd:f3:a5:57:ec:5c: 2f:98:3f:ce:a5:08:48:4e:5e:23:75:bd:04:c2:79:7b:7d:5d: 01:63:67:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjUxMjIyMTcxMjEwWhcNMjUxMjI5MTcxMjEwWjAYMRYwFAYD VQQDDA02OTQ5N2JlYS1mZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ONZpnCh0MxdGwaXRW4CEnW/HOFeY7qUGDzoTreLvr1oQVRECfpU5qvW3MLI fXZn7wy07dorImzr6kG9ahFh1fCoecNYy0R+vuKRRYtsgWsaJcXVSc61KsFRF/kh 4q8e6gF8WDblAZJgNa1jBtps49RPgPd8JdBLYc08j/pQRYf4YTWFJbzFIasCU7C+ amhXkPGR4KCDj3BbleqJsNO7FTRl5R/5r+tRRXj40+s/+sfU+DGp/OPUKqzZVYUU b5wzudF29LMK9VN5CyOMO9cAgsrjcNh6f7irXbZe/yg2NdXgQjB+fhp6ykQsI+kt PX8F3Oehth7bqU0ytjuzywOucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYNco2L qMLwmkyvrNtqPWAUMtIjMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTVBNC9CMzRFNkQ1MDcwOEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxR dHJWU2pBYVpzVWtPZFhkMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9DqHImPmIKHzKHZ6atvYvIGC6LsZXoYrdpN6J1aHkXTsxwuOGWaba HoIlV+xlRt8yAVPKk6S3/xnPkDczeKkxBXorPzxgQcHjtA4uO2oRr4sHI0gCej8L yQrROeiulpBUtQz8mY5i6rX9cjuBZ/ejUVOMI3qRl5tMWlodghhJ2tS4vrgGAO6g cj4ZGflNKdR+l98KUt0Ff42f5VwnHuY/sVDsnP/ja26RMfddy1dq5o9ch2HWTAjL HWWupWi0QiSzv2j8iWLWgPlJX/l9I/9EHxtNR23ZTsesLFXDCe4HQJdK62O986VX 7FwvmD/OpQhITl4jdb0Ewnl7fV0BY2d0 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:43 2025 by rpki-client