This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: xQgOOsfHSU6JBuhd4g+F/63RC0C/IjhSuxxpXL11G3U= Subject key identifier: 5F:7E:5D:2B:FA:83:BF:A0:9A:CE:81:4A:01:10:06:6F:4B:52:B9:AD Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 0973 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 2093 Signing time: Mon 22 Dec 2025 16:22:21 +0000 Manifest this update: Mon 22 Dec 2025 16:22:20 +0000 Manifest next update: Mon 29 Dec 2025 16:22:20 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: RjSsseg7vRXvMBz+VtpgfUaFx0ZIYNsNROBJUrgXz98=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: Lmn08n30AiKaOdta7GpDKIWNdyU/iej42lU+unei0xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Dec 22 16:22:20 2025 GMT Not After : Dec 29 16:22:20 2025 GMT Subject: CN=6949703d-89c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:84:1a:08:3b:8d:7a:0b:7c:2e:64:ed:8b:38: 22:d4:ce:83:c5:be:28:72:95:48:cb:65:85:89:83: 05:33:af:1d:bd:77:a3:32:aa:e5:85:c7:8b:f4:68: a0:06:63:e1:d9:d8:1a:d0:8d:d7:94:b2:68:0f:84: 79:d0:6f:55:9a:66:2b:f7:8b:9b:76:b5:6e:41:5b: 84:32:af:1f:c1:f8:38:27:24:71:a4:21:54:bf:0f: eb:44:5b:66:01:b9:2d:f0:80:4d:f2:f3:16:f6:8c: 40:14:51:79:8e:5e:f7:45:89:87:e6:12:bb:90:e0: 0f:d7:6e:cb:40:c7:e6:b3:d1:47:22:94:9c:30:4f: 05:9c:a2:0b:4f:04:50:4a:fb:a6:0d:ee:33:93:62: 09:f3:82:11:49:ce:ce:ab:d1:33:f0:25:39:e4:fe: 63:92:42:7d:66:16:f3:ff:a1:51:42:b9:b9:34:95: 68:e2:de:35:bb:35:ab:32:94:9b:c5:2c:7c:16:fd: e7:ac:d8:30:c8:8e:6f:35:f3:f3:df:64:12:d5:f9: f9:56:51:c3:72:5a:8f:b1:c6:b1:58:cd:0a:54:6a: 87:af:b4:71:f0:42:ce:65:10:da:d2:89:eb:1c:b5: b1:76:5c:79:5e:ba:78:19:2b:d3:33:1b:f6:eb:a5: e7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7E:5D:2B:FA:83:BF:A0:9A:CE:81:4A:01:10:06:6F:4B:52:B9:AD X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:d3:59:77:52:e3:83:21:25:1d:e3:55:e3:8d:38:45:e2:45: 3e:b5:52:8b:2d:7e:b4:f9:1d:83:f7:a8:1c:93:87:46:de:4d: 1a:da:e2:69:25:0f:cf:af:77:3e:35:a4:27:1c:da:f7:7d:83: aa:0f:f8:6c:14:6e:b9:ff:01:c4:a0:54:9f:c1:ff:26:4f:7f: bb:54:9e:86:ff:00:04:9a:13:b2:dc:bc:61:b7:2f:a7:e0:76: 5a:a8:ba:c7:f9:35:14:2d:bb:3c:59:e6:01:db:73:07:f1:2e: d4:ad:33:46:55:05:14:7a:27:ca:c7:2e:30:ec:0e:56:87:bd: f3:ec:8d:75:1b:cd:cb:a6:c4:89:7a:29:77:d1:35:67:8b:58: 63:af:da:d7:78:91:f2:52:21:c7:c6:c6:d8:60:cc:5c:df:bd: a2:69:cb:a6:12:a8:d8:8b:74:4d:88:38:63:69:4d:63:41:38: d8:9c:32:5e:50:f5:01:a8:2d:6a:e5:32:ad:1a:33:22:ca:bf: 42:33:0f:14:61:e9:f9:f1:ec:0e:e7:49:01:83:27:66:f0:87: f5:7b:e9:9c:e2:17:bb:ba:7f:57:70:bb:29:64:fd:b5:3e:bf: 27:e1:af:ca:d4:63:8e:61:e7:95:2e:89:f8:0d:85:0b:f3:c3: 9e:c0:4b:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjUxMjIyMTYyMjIwWhcNMjUxMjI5MTYyMjIwWjAYMRYwFAYD VQQDDA02OTQ5NzAzZC04OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14QaCDuNegt8LmTtizgi1M6Dxb4ocpVIy2WFiYMFM68dvXejMqrlhceL9Gig BmPh2dga0I3XlLJoD4R50G9VmmYr94ubdrVuQVuEMq8fwfg4JyRxpCFUvw/rRFtm Abkt8IBN8vMW9oxAFFF5jl73RYmH5hK7kOAP127LQMfms9FHIpScME8FnKILTwRQ SvumDe4zk2IJ84IRSc7Oq9Ez8CU55P5jkkJ9Zhbz/6FRQrm5NJVo4t41uzWrMpSb xSx8Fv3nrNgwyI5vNfPz32QS1fn5VlHDclqPscaxWM0KVGqHr7Rx8ELOZRDa0onr HLWxdlx5Xrp4GSvTMxv266XnWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9+XSv6 g7+gms6BSgEQBm9LUrmtMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo01l3UuODISUd41XjjThF4kU+tVKLLX60+R2D96gck4dG3k0a2uJp JQ/Pr3c+NaQnHNr3fYOqD/hsFG65/wHEoFSfwf8mT3+7VJ6G/wAEmhOy3Lxhty+n 4HZaqLrH+TUULbs8WeYB23MH8S7UrTNGVQUUeifKxy4w7A5Wh73z7I11G83LpsSJ eil30TVni1hjr9rXeJHyUiHHxsbYYMxc372iacumEqjYi3RNiDhjaU1jQTjYnDJe UPUBqC1q5TKtGjMiyr9CMw8UYen58ewO50kBgydm8If1e+mc4he7un9XcLspZP21 Pr8n4a/K1GOOYeeVLon4DYUL88OewEvI -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:16 2025 by rpki-client