This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: 0/N0uKqYBK/24WD3EdGpydoGYWHv4mq0c1zQHcp0LvE= Subject key identifier: B2:B9:71:CF:30:47:9C:73:65:8B:DA:21:32:DD:53:46:7C:48:B9:81 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 020F Signing time: Sun 21 Dec 2025 01:43:10 +0000 Manifest this update: Sun 21 Dec 2025 01:43:09 +0000 Manifest next update: Sun 28 Dec 2025 01:43:09 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: SttbdE4C8HJcC4hNGULqHMCiGm/UQTK/SC3ncc2M4Fk=) 2: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 3: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: A2YwzeZCV7lXuESZaxuoNr3XCXQA1+q4ChTmE99OOZ8=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Dec 21 01:43:09 2025 GMT Not After : Dec 28 01:43:09 2025 GMT Subject: CN=694750ae-1133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:29:25:11:0c:ca:cf:8d:98:33:22:1e:c0: d8:96:0f:90:11:6b:d7:50:d8:99:bc:09:5b:86:1a: 6d:5c:5f:a2:b0:5b:5c:70:59:f1:70:f3:55:b2:7e: d2:a4:6d:4c:e0:95:28:0a:86:ae:ab:c1:0b:6b:f6: a4:97:f2:9e:ed:6b:3e:df:e1:80:e7:b8:4a:25:b9: bc:0d:36:db:3b:cf:c7:2b:1e:93:ee:a0:0d:9c:2b: 01:ea:68:1f:10:e0:5e:1d:31:cf:e6:b6:fd:99:d6: 60:fa:98:13:c5:3e:6f:c1:f9:91:c4:d2:c5:b3:aa: ad:cf:33:c2:ae:c2:76:42:b7:77:54:53:24:dd:c3: 24:d7:24:ba:41:01:1c:36:26:d9:b9:0d:20:ed:a8: 39:07:6d:52:49:0b:d1:ed:a1:b7:05:5e:9d:e5:05: b5:2e:20:fb:a9:94:82:99:88:ad:6e:98:ca:e4:3b: 4e:8b:81:69:ec:39:87:ad:1a:f5:08:82:b7:3f:c6: a8:03:e3:8d:f5:a7:f2:8a:1d:e7:6e:4a:3c:56:0c: ff:fc:f0:5a:1f:0d:f1:7d:68:15:ef:44:2d:08:df: eb:cb:b8:e9:2f:90:e2:0a:ba:94:88:3a:20:d2:95: 28:99:61:97:82:09:2c:6a:b9:64:16:50:1e:90:1c: 62:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B9:71:CF:30:47:9C:73:65:8B:DA:21:32:DD:53:46:7C:48:B9:81 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:04:6c:69:60:59:10:ff:08:bb:1c:a6:68:c3:1e:23:12:84: 6f:43:53:47:de:c1:9e:b4:58:27:c4:c6:a5:29:bd:1c:06:78: 8e:b1:38:f3:81:ec:58:b9:be:62:ce:8f:8b:5b:57:b7:23:22: aa:41:3f:e4:f1:c3:13:50:e1:9e:67:1c:7b:bf:87:7e:ea:42: 6e:14:da:95:c5:1c:6e:1d:b4:e8:4f:e2:22:8f:46:d6:bf:d5: 7d:64:75:33:1b:ad:9f:a9:87:df:c3:a0:c3:f1:62:36:49:05: 42:51:4d:2c:b0:3a:af:3b:73:80:a7:fe:46:64:a1:7e:36:0a: 5a:12:db:91:8a:8a:79:16:a4:cd:b7:5b:75:f0:36:e8:95:9c: 5d:78:02:36:65:e9:62:44:b0:eb:1c:a5:ac:45:f8:a7:74:de: 43:f4:fe:6f:a8:4d:d1:08:6d:c3:d6:ed:23:99:03:4b:54:21: e8:c2:dd:27:f5:dd:ba:38:61:ca:5d:15:cf:0f:93:a3:4e:ba: dd:15:8d:12:8f:5b:9e:fc:d0:76:b5:c7:1b:84:8a:c2:3a:31: 2c:01:14:9f:e2:17:38:3b:71:b0:ed:fd:6b:ef:78:0a:69:c8: 04:91:3b:4d:8f:48:94:88:45:e8:ca:89:0f:eb:d3:c8:49:d7: e8:ba:5e:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUxMjIxMDE0MzA5WhcNMjUxMjI4MDE0MzA5WjAYMRYwFAYD VQQDDA02OTQ3NTBhZS0xMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkUpJREMys+NmDMiHsDYlg+QEWvXUNiZvAlbhhptXF+isFtccFnxcPNVsn7S pG1M4JUoCoauq8ELa/akl/Ke7Ws+3+GA57hKJbm8DTbbO8/HKx6T7qANnCsB6mgf EOBeHTHP5rb9mdZg+pgTxT5vwfmRxNLFs6qtzzPCrsJ2Qrd3VFMk3cMk1yS6QQEc NibZuQ0g7ag5B21SSQvR7aG3BV6d5QW1LiD7qZSCmYitbpjK5DtOi4Fp7DmHrRr1 CIK3P8aoA+ON9afyih3nbko8Vgz//PBaHw3xfWgV70QtCN/ry7jpL5DiCrqUiDog 0pUomWGXggksarlkFlAekBxiGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLK5cc8w R5xzZYvaITLdU0Z8SLmBMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTBGxpYFkQ/wi7HKZowx4jEoRvQ1NH3sGetFgnxMalKb0cBniOsTjz gexYub5izo+LW1e3IyKqQT/k8cMTUOGeZxx7v4d+6kJuFNqVxRxuHbToT+Iij0bW v9V9ZHUzG62fqYffw6DD8WI2SQVCUU0ssDqvO3OAp/5GZKF+NgpaEtuRiop5FqTN t1t18DbolZxdeAI2ZeliRLDrHKWsRfindN5D9P5vqE3RCG3D1u0jmQNLVCHowt0n 9d26OGHKXRXPD5OjTrrdFY0Sj1ue/NB2tccbhIrCOjEsARSf4hc4O3Gw7f1r73gK acgEkTtNj0iUiEXoyokP69PISdfoul7a -----END CERTIFICATE-----Generated at Mon Dec 22 11:33:48 2025 by rpki-client