This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: uaQ25GUYmjcvTtFSHrKZJsfVrHgFv63BP+LhgFUcYA8= Subject key identifier: 9E:35:06:B3:CB:8F:55:26:32:27:E5:8A:AB:D7:87:52:6E:FF:CB:C2 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0221 Signing time: Fri 19 Dec 2025 01:22:33 +0000 Manifest this update: Fri 19 Dec 2025 01:22:32 +0000 Manifest next update: Fri 26 Dec 2025 01:22:32 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: zJd4m5/RSla0pnohN/C8lwxasxY/vgOA232JRf4DjS8=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Dec 19 01:22:32 2025 GMT Not After : Dec 26 01:22:32 2025 GMT Subject: CN=6944a8d9-cfb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d3:8d:a1:65:1b:74:d0:f6:66:eb:45:55:95: 39:2d:43:ac:32:bf:de:74:58:ac:c8:f2:cb:e9:20: d7:31:45:09:0a:fe:b4:a9:97:62:97:34:69:01:6b: 7a:df:ea:09:2e:ee:56:b4:4e:f3:a3:5b:dc:43:e5: 26:c7:59:4c:23:0e:5a:34:d7:33:bb:f3:ed:dc:b3: f9:88:a2:67:4a:d7:ab:c7:03:1e:bf:93:87:00:d1: 1a:f7:27:2b:54:1a:2c:75:ec:42:f2:9f:5c:8d:01: 16:64:58:d6:66:4a:f4:23:7d:d3:9c:7a:b8:d5:da: 46:97:7a:cd:1f:cd:26:ef:28:42:20:73:a8:d6:6a: c1:c7:7a:f5:84:b7:bc:fe:46:a4:00:19:3d:e1:91: 95:e5:cc:67:c0:15:2e:17:5d:66:9b:b9:22:cc:b3: bc:a4:89:24:c4:ce:1b:35:93:cd:b8:26:2f:e1:22: 6a:88:62:73:87:df:42:e6:e2:ac:ac:3e:bc:47:e8: 31:fd:e4:63:ef:03:3a:56:50:bb:05:16:19:ea:16: d2:fa:05:4e:2f:85:60:72:3b:51:e3:f4:85:0a:63: 9d:89:ab:89:45:f8:b6:a6:10:53:d2:35:dd:a3:a0: ba:8d:f4:bc:12:59:ce:d1:86:a7:11:4e:40:ee:ad: f8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:35:06:B3:CB:8F:55:26:32:27:E5:8A:AB:D7:87:52:6E:FF:CB:C2 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:14:a4:6e:a1:05:3b:27:94:38:20:93:a3:e4:4b:4b:37:ae: 4d:78:e3:f7:fd:45:0e:ef:03:cc:ec:60:80:b2:f0:7d:88:3c: ca:81:7d:86:6d:e2:f9:3e:d9:50:bf:01:2b:c4:b0:4e:f9:7f: 87:af:74:8b:9f:18:50:49:e7:4a:9d:37:e3:cf:d2:05:3f:0a: fa:8a:bc:7b:2d:34:b8:6d:b3:1b:5b:b4:70:ea:9e:a0:e7:a7: aa:84:e2:c3:8e:bc:61:47:9d:25:c9:68:a5:3a:26:61:5e:68: ec:49:39:ba:80:5a:d6:ff:89:51:7b:6e:14:05:b5:a9:a6:cc: bf:e8:a5:5c:2f:78:73:34:2f:37:ee:fb:4d:f2:f8:1d:0b:f6: 2e:a1:19:60:2b:af:2d:d8:5a:63:6a:a1:80:01:05:74:1c:fb: 91:3a:8b:aa:a3:6d:ca:fd:03:84:2b:95:b6:20:28:51:c9:a8: 8b:e7:e9:da:9f:4a:60:3b:23:ed:82:d3:61:9f:8a:6a:2a:19: fb:c9:db:6d:c7:80:eb:e6:ba:43:cf:6a:aa:bf:c9:e8:50:d7: 33:97:30:7a:e2:c9:b9:0a:dd:0f:35:58:ca:6d:65:9d:be:28: 96:6c:57:7b:53:bd:95:a3:81:44:bc:ab:71:47:5d:13:61:82: b3:40:59:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMjE5MDEyMjMyWhcNMjUxMjI2MDEyMjMyWjAYMRYwFAYD VQQDDA02OTQ0YThkOS1jZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9ONoWUbdND2ZutFVZU5LUOsMr/edFisyPLL6SDXMUUJCv60qZdilzRpAWt6 3+oJLu5WtE7zo1vcQ+Umx1lMIw5aNNczu/Pt3LP5iKJnSterxwMev5OHANEa9ycr VBosdexC8p9cjQEWZFjWZkr0I33TnHq41dpGl3rNH80m7yhCIHOo1mrBx3r1hLe8 /kakABk94ZGV5cxnwBUuF11mm7kizLO8pIkkxM4bNZPNuCYv4SJqiGJzh99C5uKs rD68R+gx/eRj7wM6VlC7BRYZ6hbS+gVOL4VgcjtR4/SFCmOdiauJRfi2phBT0jXd o6C6jfS8ElnO0YanEU5A7q34fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ41BrPL j1UmMifliqvXh1Ju/8vCMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+FKRuoQU7J5Q4IJOj5EtLN65NeOP3/UUO7wPM7GCAsvB9iDzKgX2G beL5PtlQvwErxLBO+X+Hr3SLnxhQSedKnTfjz9IFPwr6irx7LTS4bbMbW7Rw6p6g 56eqhOLDjrxhR50lyWilOiZhXmjsSTm6gFrW/4lRe24UBbWppsy/6KVcL3hzNC83 7vtN8vgdC/YuoRlgK68t2FpjaqGAAQV0HPuROouqo23K/QOEK5W2IChRyaiL5+na n0pgOyPtgtNhn4pqKhn7ydttx4Dr5rpDz2qqv8noUNczlzB64sm5Ct0PNVjKbWWd viiWbFd7U72Vo4FEvKtxR10TYYKzQFna -----END CERTIFICATE-----Generated at Fri Dec 19 14:38:23 2025 by rpki-client