This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: 4/maie8xtqf9CW9tBXaveLQRdBW0saihifTPf9pEx5I= Subject key identifier: 36:9D:77:90:D5:F1:27:44:01:CE:DC:CD:BC:FB:5B:E1:37:8B:EC:D4 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 0205 Signing time: Tue 23 Dec 2025 01:26:36 +0000 Manifest this update: Tue 23 Dec 2025 01:26:36 +0000 Manifest next update: Tue 30 Dec 2025 01:26:36 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: 1moifAd1UT4f0fPtwx3LvYb7LZizPgw/8nE4mgnPYio=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: 5JjQBJx2Pjnhm+6Kg83lIxJriPqmmDrWvmhqbV4seEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Dec 23 01:26:36 2025 GMT Not After : Dec 30 01:26:36 2025 GMT Subject: CN=6949efcc-0ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:27:94:df:af:19:a8:b3:19:98:8e:04:7c:b6: 42:19:fa:5a:cc:9a:aa:c6:e1:11:87:98:d4:6c:9e: aa:e1:10:14:44:ac:a5:40:90:8e:a3:bc:37:d6:07: df:72:cc:dd:67:63:1f:e8:24:8b:3a:82:c1:5b:8c: bb:91:dd:c7:83:ce:04:31:f7:f4:e0:3a:57:d6:04: 6d:c6:b8:73:75:04:a5:b7:67:57:9c:79:a9:59:f5: 19:cb:6a:2f:8e:1e:bf:2e:6b:86:83:66:4e:bf:9a: 33:ab:22:ef:47:e0:c4:2e:a4:97:87:08:d9:45:1e: 4f:d3:56:e4:f1:97:51:56:6c:36:5e:cb:0c:0f:ce: 63:f1:fd:a1:8d:b8:b6:92:40:1a:bd:c8:31:fb:95: 3b:a0:27:d2:a7:71:fa:1a:e9:73:f8:5b:4e:ad:ea: 84:38:0f:ea:22:16:ca:be:f7:4a:33:60:ef:54:82: 82:1e:91:a8:be:0b:52:e8:4b:e9:26:93:09:d1:07: 7a:6e:54:dc:8f:df:50:29:e8:ef:97:01:7f:6f:82: f0:4c:5e:34:fc:cb:49:b1:ee:99:92:64:8f:02:ad: dd:de:7d:e9:fa:9a:d9:fa:9c:db:5e:95:d9:e9:57: 80:db:d9:36:9a:51:2e:2e:8e:f4:d6:e8:8c:3b:02: 6e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9D:77:90:D5:F1:27:44:01:CE:DC:CD:BC:FB:5B:E1:37:8B:EC:D4 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4f:af:05:64:c8:ec:95:6d:0a:31:ad:9c:55:04:72:3d:d7: f9:97:89:7f:be:7c:7c:44:6f:6e:ec:e8:ed:e5:56:a6:ae:c9: af:1d:34:16:b8:0c:ce:05:b7:5d:30:ac:d0:d3:42:51:74:64: 1c:32:0e:38:b0:66:1c:f8:06:28:30:b3:3e:50:c8:30:82:b9: 4e:fa:e3:28:41:0e:7d:17:cb:da:d4:48:63:c7:4f:63:bf:35: 19:3c:b2:47:a8:dd:4e:14:0f:64:dd:a9:b9:8d:53:8b:df:8a: 1c:59:06:94:f3:95:10:37:ba:01:50:82:0e:5b:93:60:e0:d9: 82:bf:3f:ac:b9:0c:2a:ae:a0:e3:6c:ee:7a:7f:64:d0:3d:86: 18:4c:f3:7e:87:de:51:bd:1f:9c:89:80:a7:51:08:37:17:6f: e3:d5:e6:7b:f1:57:36:c4:3d:73:52:98:fb:9c:4c:02:39:6e: 6f:f3:60:d1:ab:87:74:12:5f:31:18:fa:c6:51:b6:09:1d:ed: a2:42:d3:d2:31:7e:27:db:56:11:89:54:53:65:1a:91:ac:96: 12:b1:19:97:30:9f:7a:31:25:91:fb:bd:51:13:75:bb:d6:d6: 9c:2e:84:ba:65:bb:1e:44:06:40:ad:3d:bd:42:1d:b1:92:c0: 6b:ee:a5:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUxMjIzMDEyNjM2WhcNMjUxMjMwMDEyNjM2WjAYMRYwFAYD VQQDDA02OTQ5ZWZjYy0wZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhyeU368ZqLMZmI4EfLZCGfpazJqqxuERh5jUbJ6q4RAURKylQJCOo7w31gff cszdZ2Mf6CSLOoLBW4y7kd3Hg84EMff04DpX1gRtxrhzdQSlt2dXnHmpWfUZy2ov jh6/LmuGg2ZOv5ozqyLvR+DELqSXhwjZRR5P01bk8ZdRVmw2XssMD85j8f2hjbi2 kkAavcgx+5U7oCfSp3H6Gulz+FtOreqEOA/qIhbKvvdKM2DvVIKCHpGovgtS6Evp JpMJ0Qd6blTcj99QKejvlwF/b4LwTF40/MtJse6ZkmSPAq3d3n3p+prZ+pzbXpXZ 6VeA29k2mlEuLo701uiMOwJuNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDadd5DV 8SdEAc7czbz7W+E3i+zUMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZT68FZMjslW0KMa2cVQRyPdf5l4l/vnx8RG9u7Ojt5VamrsmvHTQW uAzOBbddMKzQ00JRdGQcMg44sGYc+AYoMLM+UMgwgrlO+uMoQQ59F8va1Ehjx09j vzUZPLJHqN1OFA9k3am5jVOL34ocWQaU85UQN7oBUIIOW5Ng4NmCvz+suQwqrqDj bO56f2TQPYYYTPN+h95RvR+ciYCnUQg3F2/j1eZ78Vc2xD1zUpj7nEwCOW5v82DR q4d0El8xGPrGUbYJHe2iQtPSMX4n21YRiVRTZRqRrJYSsRmXMJ96MSWR+71RE3W7 1tacLoS6ZbseRAZArT29Qh2xksBr7qXs -----END CERTIFICATE-----Generated at Wed Dec 24 15:48:47 2025 by rpki-client