This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: omdUvWVKdz3lHxI1m1jLpHQF6VpCs14tKgZ4cX1GAr0= Subject key identifier: 3F:66:42:7D:91:47:64:DE:2C:A5:31:B9:6D:89:98:02:8E:12:09:DF Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08A5 Signing time: Sat 06 Dec 2025 19:40:27 +0000 Manifest this update: Sat 06 Dec 2025 19:40:27 +0000 Manifest next update: Sat 13 Dec 2025 19:40:27 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: nvyikrCDxWsgVQyAihBW9CBrqigrPuVeQKTiAx/mc3M=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Dec 6 19:40:27 2025 GMT Not After : Dec 13 19:40:27 2025 GMT Subject: CN=693486ab-abf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:52:b5:25:97:fb:8f:e6:84:98:11:09:ed:38: 1e:24:fa:00:ba:c3:3e:68:97:df:2d:e3:c9:57:f7: 3c:38:62:56:32:98:e8:7e:f6:90:8a:e4:c3:de:b3: 78:05:64:48:f9:b8:4f:5a:6d:f9:62:d1:fa:cb:e0: 2e:39:ab:a2:d2:22:18:f8:ed:0a:30:f8:1e:7a:56: f3:32:11:f0:ab:6a:3f:99:8c:4c:7d:c8:11:99:00: eb:ee:3a:7f:a2:24:f1:ac:4c:dc:cd:e2:87:03:8d: d7:c6:45:9f:b3:4a:25:ed:4c:69:c1:77:93:a1:eb: 88:a3:e5:10:00:6b:e0:68:74:a6:74:fc:c9:32:31: 0f:fb:09:cc:1c:9a:ac:bf:33:69:26:95:34:46:7e: 1f:b2:cb:f1:6d:87:a6:84:99:d9:c2:88:0e:bd:2c: 5f:da:07:49:de:5d:aa:76:78:77:bf:bd:ac:ee:21: 28:96:f8:7b:f3:48:15:b8:dc:8a:44:cd:dd:7c:fe: 76:0b:43:e0:fd:6c:87:f8:2e:af:74:22:20:d4:64: 7b:30:55:4b:d3:f4:0b:db:18:71:7c:88:c8:fe:03: 3f:38:eb:19:63:4e:cd:fd:3d:7d:df:4d:58:09:1d: 89:5e:af:2f:16:84:92:f0:77:32:a4:b8:65:af:c7: 04:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:66:42:7D:91:47:64:DE:2C:A5:31:B9:6D:89:98:02:8E:12:09:DF X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d4:d0:95:36:d9:b3:46:f3:a7:b4:ca:a2:e4:17:63:cf:bd: 33:6e:94:15:ea:65:b5:a9:04:4b:89:61:ed:33:35:c0:b4:5a: 9a:7f:f4:a6:d3:ad:43:e6:2a:77:08:02:18:79:a2:7c:8e:2a: 8a:e1:0c:61:de:fa:6c:f6:d3:05:e7:05:68:32:80:d0:16:56: f6:86:5b:a6:8c:61:79:ca:04:c0:e5:63:57:f3:71:78:eb:05: 00:9c:8e:d0:4c:37:54:3c:91:fa:34:6a:1f:8b:3f:ce:e7:5a: 3d:33:aa:ed:80:ed:7b:24:6f:f8:00:be:7c:48:37:06:42:00: 57:5a:7f:24:02:7e:de:25:a7:ff:fa:db:57:ee:2d:e2:87:e6: 82:64:7d:cd:7a:6b:4b:9a:57:8f:73:61:e9:c5:f2:09:59:a8: 82:5f:e2:37:63:c9:10:84:7f:39:31:07:98:25:47:1a:7d:10: 9b:7d:18:c5:8e:3f:b2:24:44:64:c1:eb:12:41:f0:bd:fc:06: 72:85:d7:b8:42:45:60:25:16:72:78:06:30:a0:51:63:c1:96: cf:51:9c:25:ec:76:34:a8:1b:e5:bd:d8:e8:93:eb:08:93:6e: 4f:63:e0:80:b8:f8:f1:c5:7d:68:b8:61:02:f3:f3:79:ba:2b: 63:c3:58:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUxMjA2MTk0MDI3WhcNMjUxMjEzMTk0MDI3WjAYMRYwFAYD VQQDEw02OTM0ODZhYi1hYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41K1JZf7j+aEmBEJ7TgeJPoAusM+aJffLePJV/c8OGJWMpjofvaQiuTD3rN4 BWRI+bhPWm35YtH6y+AuOaui0iIY+O0KMPgeelbzMhHwq2o/mYxMfcgRmQDr7jp/ oiTxrEzczeKHA43XxkWfs0ol7UxpwXeToeuIo+UQAGvgaHSmdPzJMjEP+wnMHJqs vzNpJpU0Rn4fssvxbYemhJnZwogOvSxf2gdJ3l2qdnh3v72s7iEolvh780gVuNyK RM3dfP52C0Pg/WyH+C6vdCIg1GR7MFVL0/QL2xhxfIjI/gM/OOsZY07N/T19301Y CR2JXq8vFoSS8HcypLhlr8cEzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9mQn2R R2TeLKUxuW2JmAKOEgnfMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp1NCVNtmzRvOntMqi5Bdjz70zbpQV6mW1qQRLiWHtMzXAtFqaf/Sm 061D5ip3CAIYeaJ8jiqK4Qxh3vps9tMF5wVoMoDQFlb2hlumjGF5ygTA5WNX83F4 6wUAnI7QTDdUPJH6NGofiz/O51o9M6rtgO17JG/4AL58SDcGQgBXWn8kAn7eJaf/ +ttX7i3ih+aCZH3NemtLmlePc2HpxfIJWaiCX+I3Y8kQhH85MQeYJUcafRCbfRjF jj+yJERkwesSQfC9/AZyhde4QkVgJRZyeAYwoFFjwZbPUZwl7HY0qBvlvdjok+sI k25PY+CAuPjxxX1ouGEC8/N5uitjw1gK -----END CERTIFICATE-----Generated at Sun Dec 7 02:32:22 2025 by rpki-client