This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft File: ItyTZY3G6XAwereu8eJV3j1D9bc.mft (raw, json) Hash identifier: Ly7D3wuRILpgwmmxIbTVyeiXipILp9YnEROmE+agglw= Subject key identifier: CA:2C:6D:B6:61:AE:26:63:A1:4E:71:18:AD:02:74:5E:B0:D9:7E:D0 Authority key identifier: 22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 Certificate issuer: /CN=A91F0C45/serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft Manifest number: 3C Signing time: Tue 23 Dec 2025 06:20:31 +0000 Manifest this update: Tue 23 Dec 2025 06:20:30 +0000 Manifest next update: Tue 30 Dec 2025 06:20:30 +0000 Files and hashes: 1: ItyTZY3G6XAwereu8eJV3j1D9bc.crl (hash: 571TzsZC4bJ97J31dXYglEQIdBNkuHvRX7SnwJzCHBQ=) 2: 96AF1D609A0F11F09F475111C4F9AE02.roa (hash: rH3cJ6JWPpAU1UGqd4APT+fscK5dwv/1sng6u23C4yU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C45, serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Validity Not Before: Dec 23 06:20:30 2025 GMT Not After : Dec 30 06:20:30 2025 GMT Subject: CN=694a34ae-393c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4b:0d:45:db:e9:2b:c1:79:e3:9b:6c:45:f3: 1a:95:70:4d:5b:c4:83:99:ae:df:5c:20:8b:2a:37: 15:67:27:7f:15:88:94:d0:84:19:90:7c:f4:81:90: ca:c5:0c:e0:e3:a8:16:dc:16:e6:75:29:33:f8:f9: 63:92:3c:48:a8:63:51:16:d4:db:db:96:03:47:00: ea:1b:95:99:17:ba:a4:d1:7b:81:f6:6a:1c:4a:14: 6c:a2:57:af:eb:e2:91:53:67:d5:9a:a5:6e:4e:ab: 1e:d1:c6:84:7d:fb:4d:fd:1d:43:09:63:c1:5e:7d: 2c:1f:6e:7d:18:ee:13:2b:0a:ea:64:58:14:ec:d4: d1:da:13:fb:95:4c:0e:ac:b7:36:25:fa:f9:3e:8e: 80:ff:d7:e9:ba:86:d7:4a:ba:32:7e:ca:1f:29:50: 1b:36:8a:f1:83:e7:cf:0e:31:b7:bf:a3:d7:49:d3: d0:06:80:84:30:cb:a1:73:10:34:81:e3:ce:38:b4: 17:18:22:5f:4f:a2:03:63:91:7d:8c:08:1d:1e:04: c3:f2:2b:7f:52:16:c7:2c:ff:cd:ac:2b:63:7a:d7: ab:d7:6e:a4:2a:6c:33:5a:47:e8:ec:a0:89:d6:ed: 68:ee:66:60:12:5a:f8:46:50:16:75:13:31:b0:42: 56:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2C:6D:B6:61:AE:26:63:A1:4E:71:18:AD:02:74:5E:B0:D9:7E:D0 X509v3 Authority Key Identifier: keyid:22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:09:7b:c8:15:02:ac:3b:dd:81:d5:fa:77:92:59:b3:4d:57: a5:23:33:85:a3:33:f1:b5:dd:74:80:02:f1:9f:b1:45:d7:29: 66:1d:60:67:e2:9c:cd:42:97:83:d0:a6:9c:fe:8b:c3:94:0f: 15:44:57:f4:a8:82:b0:e6:83:16:6c:77:5c:35:9c:76:a9:29: d8:f1:62:93:00:dc:9f:53:77:aa:46:a2:18:78:b7:c5:16:81: 2d:49:c4:58:f9:bc:1c:85:0e:21:df:1d:07:20:2a:51:a8:4b: 2e:53:a8:49:3f:ba:39:be:63:83:fe:17:1c:1f:dd:87:9b:e0: ec:34:0f:c8:e0:c8:1d:e9:cf:81:04:23:22:fa:60:3d:bc:94: 6d:76:69:eb:4c:c0:95:5e:f0:94:dc:26:d9:ed:41:1f:2a:5b: 0d:7d:9d:a7:32:7e:2b:df:87:f7:5c:bc:95:14:bb:dc:c2:10: 54:fc:bb:fe:11:bf:d6:b6:1a:2e:62:65:fc:52:0d:05:1a:9e: 9f:1b:c6:2f:df:b1:a7:37:2a:09:e0:e5:eb:18:a1:98:ab:18: 24:13:b9:c8:ca:ff:66:72:e1:2e:ba:4c:35:8b:34:7b:85:04: 13:1a:ab:fb:e9:1a:62:e7:40:4a:7b:f5:74:23:50:b0:c5:ba: 7c:36:eb:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEM0NTExMC8GA1UEBRMoMjJEQzkzNjU4REM2RTk3MDMwN0FCN0FFRjFFMjU1REUz RDQzRjVCNzAeFw0yNTEyMjMwNjIwMzBaFw0yNTEyMzAwNjIwMzBaMBgxFjAUBgNV BAMMDTY5NGEzNGFlLTM5M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsSw1F2+krwXnjm2xF8xqVcE1bxIOZrt9cIIsqNxVnJ38ViJTQhBmQfPSBkMrF DODjqBbcFuZ1KTP4+WOSPEioY1EW1NvblgNHAOoblZkXuqTRe4H2ahxKFGyiV6/r 4pFTZ9WapW5Oqx7RxoR9+039HUMJY8FefSwfbn0Y7hMrCupkWBTs1NHaE/uVTA6s tzYl+vk+joD/1+m6htdKujJ+yh8pUBs2ivGD588OMbe/o9dJ09AGgIQwy6FzEDSB 4844tBcYIl9PogNjkX2MCB0eBMPyK39SFscs/82sK2N616vXbqQqbDNaR+jsoInW 7WjuZmASWvhGUBZ1EzGwQlbVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyixttmGu JmOhTnEYrQJ0XrDZftAwHwYDVR0jBBgwFoAUItyTZY3G6XAwereu8eJV3j1D9bcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQzQ1LzkxQTE4OTlFODky RTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhBd2VyZXU4ZUpWM2oxRDli Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXR5VFpZM0c2WEF3ZXJldThlSlYzajFEOWJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw QzQ1LzkxQTE4OTlFODkyRTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhB d2VyZXU4ZUpWM2oxRDliYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEwJe8gVAqw73YHV+neSWbNNV6UjM4WjM/G13XSAAvGfsUXXKWYdYGfi nM1Cl4PQppz+i8OUDxVEV/SogrDmgxZsd1w1nHapKdjxYpMA3J9Td6pGohh4t8UW gS1JxFj5vByFDiHfHQcgKlGoSy5TqEk/ujm+Y4P+Fxwf3Yeb4Ow0D8jgyB3pz4EE IyL6YD28lG12aetMwJVe8JTcJtntQR8qWw19nacyfivfh/dcvJUUu9zCEFT8u/4R v9a2Gi5iZfxSDQUanp8bxi/fsac3Kgng5esYoZirGCQTucjK/2Zy4S66TDWLNHuF BBMaq/vpGmLnQEp79XQjULDFunw26+o= -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:13 2025 by rpki-client