This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: Mma9Cx6FIMX1wuN6nOznegdWljefr/bhgkocn20QKoQ= Subject key identifier: 0B:31:0C:18:57:A8:1C:BE:68:FF:05:E7:23:0C:EE:05:4C:AA:F1:47 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0214 Signing time: Sun 07 Dec 2025 00:49:28 +0000 Manifest this update: Sun 07 Dec 2025 00:49:28 +0000 Manifest next update: Sun 14 Dec 2025 00:49:28 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: tUf6QEbcpQyXZxnaG9z7sygEnqPWqWFv54EDIn3RoHs=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Dec 7 00:49:28 2025 GMT Not After : Dec 14 00:49:28 2025 GMT Subject: CN=6934cf18-3cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d6:83:cc:b8:fa:9a:0d:4d:d9:17:d9:58:78: 1c:ec:bf:cb:54:2f:ca:43:80:e0:48:a7:cf:b8:75: 85:59:6f:2d:a2:b1:70:4d:e0:6d:6e:92:05:94:cc: 05:03:3c:ff:87:a7:38:5e:59:70:a0:3c:3a:94:96: 2a:4c:a2:37:c0:a6:cf:d4:d1:e2:b7:0e:1e:87:d7: 67:28:26:56:2e:ac:3b:12:98:36:f9:b5:4e:15:2f: 37:2b:27:fb:3b:35:06:19:c1:92:35:bd:b4:05:21: 87:69:10:d7:3d:cc:ce:71:00:14:69:cb:56:50:c5: 3d:f1:79:1f:bb:17:95:63:6a:5b:3e:76:8d:18:5c: 4e:f3:f6:1f:3b:96:b6:bc:b4:60:8e:e3:d2:6d:da: 9d:3a:32:20:5b:29:6d:ca:ef:7d:39:a2:36:51:32: 78:44:e9:b0:e1:14:80:9e:17:5d:2e:40:a8:88:64: a2:e8:cc:cf:ae:77:0a:41:c7:38:0a:d9:4f:dc:21: c2:b8:5e:2f:74:f0:ef:70:c6:4a:e7:e0:6c:52:91: f6:d7:44:0a:80:fd:7f:78:ba:cb:15:cd:ff:8e:fa: cb:ac:2e:d5:27:e3:bb:1b:24:0a:0b:7a:75:4a:39: a4:c6:41:3e:18:b1:c7:50:fe:57:29:11:06:42:25: b3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:31:0C:18:57:A8:1C:BE:68:FF:05:E7:23:0C:EE:05:4C:AA:F1:47 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4c:e0:d1:76:90:17:7b:6d:5a:7a:74:29:5a:aa:7a:17:90: d1:a7:bf:24:d7:da:54:89:d2:68:97:f4:03:1e:ec:2d:1c:0c: 66:7d:2a:9f:01:3b:4b:40:c0:78:9e:bd:ac:dd:3e:9e:65:1e: e3:a6:93:82:fc:8d:f4:2e:e8:5d:b5:7b:d5:9a:d6:c4:4c:45: 5f:2f:69:76:5c:5b:58:f7:54:2e:ef:0c:6c:f7:59:64:26:13: 1d:18:87:80:9b:da:87:80:38:cc:cf:cd:2b:8f:e4:93:f9:2f: a0:dd:4c:8a:fa:c5:fa:3b:f9:71:89:e5:24:36:9f:8a:5d:6b: 5d:7c:d5:f2:a9:f3:57:4a:da:02:29:98:93:2a:c1:45:ec:bf: 4a:16:fe:fb:63:46:b3:1f:39:b2:43:16:03:bb:1d:0c:d6:97: 80:80:d6:ae:78:d0:4a:f8:9a:d9:be:e4:9b:a2:56:02:21:b1: d6:79:45:28:03:05:a0:db:ac:1c:05:be:b0:ae:62:5c:58:11: 59:90:60:34:fe:e2:39:5a:1f:85:e4:06:ca:f0:1c:72:f0:1f: 24:89:d7:ee:22:60:88:f0:dd:ed:09:5c:9f:ce:d1:7a:92:70: 72:cc:32:42:0e:67:ec:82:4a:9a:b5:61:df:68:06:92:d7:1d: 0a:1b:6f:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMjA3MDA0OTI4WhcNMjUxMjE0MDA0OTI4WjAYMRYwFAYD VQQDEw02OTM0Y2YxOC0zY2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtaDzLj6mg1N2RfZWHgc7L/LVC/KQ4DgSKfPuHWFWW8torFwTeBtbpIFlMwF Azz/h6c4XllwoDw6lJYqTKI3wKbP1NHitw4eh9dnKCZWLqw7Epg2+bVOFS83Kyf7 OzUGGcGSNb20BSGHaRDXPczOcQAUactWUMU98XkfuxeVY2pbPnaNGFxO8/YfO5a2 vLRgjuPSbdqdOjIgWyltyu99OaI2UTJ4ROmw4RSAnhddLkCoiGSi6MzPrncKQcc4 CtlP3CHCuF4vdPDvcMZK5+BsUpH210QKgP1/eLrLFc3/jvrLrC7VJ+O7GyQKC3p1 SjmkxkE+GLHHUP5XKREGQiWzHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsxDBhX qBy+aP8F5yMM7gVMqvFHMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKTODRdpAXe21aenQpWqp6F5DRp78k19pUidJol/QDHuwtHAxmfSqf ATtLQMB4nr2s3T6eZR7jppOC/I30LuhdtXvVmtbETEVfL2l2XFtY91Qu7wxs91lk JhMdGIeAm9qHgDjMz80rj+ST+S+g3UyK+sX6O/lxieUkNp+KXWtdfNXyqfNXStoC KZiTKsFF7L9KFv77Y0azHzmyQxYDux0M1peAgNaueNBK+JrZvuSbolYCIbHWeUUo AwWg26wcBb6wrmJcWBFZkGA0/uI5Wh+F5AbK8Bxy8B8kidfuImCI8N3tCVyfztF6 knByzDJCDmfsgkqatWHfaAaS1x0KG29g -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:01 2025 by rpki-client