This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft File: tkuBBCq0EWB9hgdv78nllia7iBY.mft (raw, json) Hash identifier: 8oMq/OeQ0Uv4jbE3zSmWo/wpBxgf7AVYWVRpwBdloG4= Subject key identifier: 69:8F:15:6A:C0:D7:F7:DF:7B:2F:5F:C6:DA:75:12:04:B5:19:AE:99 Authority key identifier: B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 Certificate issuer: /CN=A91D3037/serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft Manifest number: 3A Signing time: Tue 23 Dec 2025 06:22:56 +0000 Manifest this update: Tue 23 Dec 2025 06:22:56 +0000 Manifest next update: Tue 30 Dec 2025 06:22:56 +0000 Files and hashes: 1: tkuBBCq0EWB9hgdv78nllia7iBY.crl (hash: O8VFHlORDsOTPy2TA2coxVBSS+kwFpOYPbAkCnBYPgY=) 2: 0A16B10E8EE011F09A1AE72BC4F9AE02.roa (hash: 49rBi75NWLedbZFV/zCs/LhYwYBaC9SkJOjaSAzVrHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3037, serialNumber=B64B81042AB411607D86076FEFC9E59626BB8816 Validity Not Before: Dec 23 06:22:56 2025 GMT Not After : Dec 30 06:22:56 2025 GMT Subject: CN=694a3540-11f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:62:b0:52:ec:01:6b:4a:50:e9:f8:3e:ce:bc: 13:93:43:0b:3e:3d:d9:41:41:2a:8a:45:36:75:15: ec:fc:10:c0:29:aa:cb:3f:dc:e9:91:77:84:ba:fd: a0:2e:af:be:0a:34:af:b3:09:46:a4:73:71:68:ab: b6:f7:f8:f9:4d:3c:a1:b2:37:9b:d0:1b:45:26:cf: 6b:e0:0b:e3:9e:21:7d:15:d8:ec:2f:1a:2b:2d:b5: f3:54:73:e3:18:8f:ab:64:94:14:62:d0:92:da:cd: 0f:ee:7e:a2:45:cc:68:03:b8:08:00:c2:ee:14:02: 24:93:f2:73:eb:ce:ff:28:17:c7:e4:08:cc:b2:93: 7d:18:75:02:96:82:51:92:fa:42:70:3a:e5:8a:3b: 09:46:1a:f6:7d:db:4e:0f:36:73:7c:2b:88:85:67: 61:f8:91:36:6e:ed:78:a0:d4:dc:b8:f1:7e:84:a0: 87:39:b9:cb:a9:d1:30:97:34:a7:ad:52:6a:be:55: ed:cb:14:22:57:a3:38:51:c4:52:e2:94:17:50:81: e5:d1:bf:ca:fc:94:6f:d8:15:dc:f2:dd:dd:c4:99: b8:84:b8:19:07:f5:9e:34:90:57:90:f4:ac:2e:db: 49:70:bb:55:ba:c2:87:ad:2e:49:ee:50:bf:4e:f9: 3e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8F:15:6A:C0:D7:F7:DF:7B:2F:5F:C6:DA:75:12:04:B5:19:AE:99 X509v3 Authority Key Identifier: keyid:B6:4B:81:04:2A:B4:11:60:7D:86:07:6F:EF:C9:E5:96:26:BB:88:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkuBBCq0EWB9hgdv78nllia7iBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3037/8B8DE27E8EDC11F09880C478C4F9AE02/tkuBBCq0EWB9hgdv78nllia7iBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e6:fa:ee:f6:1b:66:95:15:ed:fc:96:b4:57:53:0d:17:4c: 20:65:c1:66:9c:1b:57:5e:ee:9f:30:51:86:ba:c7:fb:3a:17: 8a:3f:59:5e:73:f0:95:f4:2b:f9:43:4e:9d:0e:9a:fe:9e:38: 8b:35:94:ab:a5:00:70:84:4b:ed:75:8c:38:69:c4:1f:a9:8a: f0:58:f1:b9:0f:a0:6f:78:27:59:65:13:ce:00:17:13:3f:e1: 5c:6e:17:70:9e:74:dc:7a:7f:c1:96:91:8f:63:dc:a6:0b:44: 51:b2:30:64:91:15:6d:48:7a:d9:2c:58:8c:d6:a6:94:9b:f6: cc:71:fa:df:81:5b:c9:75:6a:b2:7a:2c:4c:9b:40:28:cb:8b: 60:de:bb:54:ba:24:07:95:4a:38:b5:51:ef:1b:0e:fa:78:40: 8a:bb:45:ef:27:26:40:e0:4c:e6:be:6d:50:a9:51:e1:85:9a: fe:cc:58:18:8d:8c:30:62:01:09:ef:4d:67:6d:79:9b:cc:bb: d6:94:37:3a:05:d3:47:6a:bc:1c:34:ce:58:cd:70:5f:7d:ce: f1:d2:d4:21:09:45:7b:27:97:71:f2:b2:80:d4:06:9b:bd:98: 87:18:fb:8a:2b:e2:d9:d9:0b:08:2b:0b:fc:17:f5:dc:54:ae: fd:82:3c:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzAzNzExMC8GA1UEBRMoQjY0QjgxMDQyQUI0MTE2MDdEODYwNzZGRUZDOUU1OTYy NkJCODgxNjAeFw0yNTEyMjMwNjIyNTZaFw0yNTEyMzAwNjIyNTZaMBgxFjAUBgNV BAMMDTY5NGEzNTQwLTExZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiYrBS7AFrSlDp+D7OvBOTQws+PdlBQSqKRTZ1Fez8EMApqss/3OmRd4S6/aAu r74KNK+zCUakc3Foq7b3+PlNPKGyN5vQG0Umz2vgC+OeIX0V2OwvGisttfNUc+MY j6tklBRi0JLazQ/ufqJFzGgDuAgAwu4UAiST8nPrzv8oF8fkCMyyk30YdQKWglGS +kJwOuWKOwlGGvZ9204PNnN8K4iFZ2H4kTZu7Xig1Ny48X6EoIc5ucup0TCXNKet Umq+Ve3LFCJXozhRxFLilBdQgeXRv8r8lG/YFdzy3d3EmbiEuBkH9Z40kFeQ9Kwu 20lwu1W6woetLknuUL9O+T4ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaY8VasDX 9997L1/G2nUSBLUZrpkwHwYDVR0jBBgwFoAUtkuBBCq0EWB9hgdv78nllia7iBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDM3LzhCOERFMjdFOEVE QzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdCOWhnZHY3OG5sbGlhN2lC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGt1QkJDcTBFV0I5aGdkdjc4bmxsaWE3aUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDM3LzhCOERFMjdFOEVEQzExRjA5ODgwQzQ3OEM0RjlBRTAyL3RrdUJCQ3EwRVdC OWhnZHY3OG5sbGlhN2lCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/m+u72G2aVFe38lrRXUw0XTCBlwWacG1de7p8wUYa6x/s6F4o/WV5z 8JX0K/lDTp0Omv6eOIs1lKulAHCES+11jDhpxB+pivBY8bkPoG94J1llE84AFxM/ 4VxuF3CedNx6f8GWkY9j3KYLRFGyMGSRFW1IetksWIzWppSb9sxx+t+BW8l1arJ6 LEybQCjLi2Deu1S6JAeVSji1Ue8bDvp4QIq7Re8nJkDgTOa+bVCpUeGFmv7MWBiN jDBiAQnvTWdteZvMu9aUNzoF00dqvBw0zljNcF99zvHS1CEJRXsnl3HysoDUBpu9 mIcY+4or4tnZCwgrC/wX9dxUrv2CPHE= -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:13 2025 by rpki-client