This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft File: _10TK8Zqqiu89lw-X-iaDDcdizo.mft (raw, json) Hash identifier: kIiW518kG3zcjpGHDkkK+37JFx4JSo5D4ccEuqKvwzE= Subject key identifier: FA:A9:43:C8:41:29:EE:02:05:2E:C7:AF:7D:7D:B0:D8:A6:33:EF:5A Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft Manifest number: 0245 Signing time: Sun 07 Dec 2025 00:19:37 +0000 Manifest this update: Sun 07 Dec 2025 00:19:36 +0000 Manifest next update: Sun 14 Dec 2025 00:19:36 +0000 Files and hashes: 1: _10TK8Zqqiu89lw-X-iaDDcdizo.crl (hash: PJZyLtobvTxdAulfemZ2ZTK6Njt67+haSRYFEXrsadg=) 2: 064042F259F511EDB22E3F2BC4F9AE02.roa (hash: S8UZRzpubYCJ+X0jACj9ZehbJ6hRsnjRgE1noRmlqCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7, serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Dec 7 00:19:36 2025 GMT Not After : Dec 14 00:19:36 2025 GMT Subject: CN=6934c818-6379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:dd:00:cf:a7:46:bf:7b:6f:d8:25:66:38: d5:6e:a2:e6:d9:50:48:23:38:1a:51:64:d1:bb:c4: 66:19:5e:bb:de:de:49:46:8d:e2:e9:65:ff:e3:e1: 53:fe:0c:93:21:c8:fb:04:f5:95:70:bd:23:78:5b: 6a:c7:c9:88:85:dd:87:0c:08:a2:b3:99:2f:b6:31: 7d:4e:da:d4:bf:24:d1:c5:9c:d9:81:36:67:4d:aa: f2:24:72:b1:e8:9d:9b:cf:cc:70:52:c6:14:a1:cc: 28:aa:04:12:2b:13:e6:bf:c0:91:2f:dd:9a:f6:b8: e7:c1:e0:8f:9f:ec:9e:ce:e7:90:1d:01:e8:83:aa: 67:21:c7:0e:41:b4:fb:05:9b:25:b8:ff:41:69:b7: cd:64:50:98:e9:f1:3c:db:d6:85:96:4f:0d:80:e8: e6:cb:6c:b0:f2:64:b7:64:7d:49:e1:d7:39:19:00: 87:3e:bd:f2:2e:3a:73:4b:df:6a:8c:b7:7e:e3:d0: 03:62:bc:2c:67:cf:f4:d6:45:57:f3:1f:60:38:0f: d7:7b:f2:c1:54:ca:c4:2f:11:c7:d4:30:f2:6b:fa: f2:e3:45:09:cc:0c:d5:f1:66:ca:06:19:49:c0:e8: b1:16:4e:46:81:35:d5:9c:ac:86:41:9b:e3:c5:99: 17:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:A9:43:C8:41:29:EE:02:05:2E:C7:AF:7D:7D:B0:D8:A6:33:EF:5A X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:97:f5:74:78:d1:1a:d9:b5:d9:76:5a:48:9d:e3:d3:04:08: ec:1a:c7:d8:ae:03:82:a2:bb:de:e7:43:e3:b8:20:7d:07:16: 79:fa:33:f2:35:49:21:de:b5:75:5d:74:ae:1a:0d:a7:7e:00: 31:af:b5:14:78:b0:b9:db:1d:2b:7e:1a:aa:85:05:0e:4e:37: 38:7a:a3:2f:03:81:c8:9f:10:16:f1:28:c3:06:04:a3:ae:65: 88:fc:e0:b6:56:98:ad:02:23:c9:b8:d3:92:a8:ed:34:e8:54: 4b:c7:d9:14:f6:4c:84:12:8c:fd:74:f5:58:f6:cf:c5:c3:02: 7b:41:2e:3a:b8:0c:d1:eb:ea:81:ff:f6:66:33:f3:95:d7:e2: ef:a5:af:c3:ca:9f:3b:53:86:c9:04:52:bc:9e:4c:3a:5c:30: 07:1f:9f:a9:8b:ab:d1:50:50:27:31:83:18:e7:79:06:98:5c: f4:0c:57:2c:ae:be:aa:cd:4d:bf:35:23:48:d8:ba:8a:5f:ef: 4b:a0:fd:c0:68:c7:81:66:b7:73:88:dd:0a:76:da:fd:cd:6e: d4:03:07:bb:b1:46:01:e8:2b:dd:5e:3c:21:c1:a3:03:3b:2a: 1d:f7:4e:00:bc:73:83:14:39:56:81:a0:d9:97:88:c4:8a:b9: 90:46:5a:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjUxMjA3MDAxOTM2WhcNMjUxMjE0MDAxOTM2WjAYMRYwFAYD VQQDEw02OTM0YzgxOC02Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTXdAM+nRr97b9glZjjVbqLm2VBIIzgaUWTRu8RmGV673t5JRo3i6WX/4+FT /gyTIcj7BPWVcL0jeFtqx8mIhd2HDAiis5kvtjF9TtrUvyTRxZzZgTZnTaryJHKx 6J2bz8xwUsYUocwoqgQSKxPmv8CRL92a9rjnweCPn+yezueQHQHog6pnIccOQbT7 BZsluP9BabfNZFCY6fE829aFlk8NgOjmy2yw8mS3ZH1J4dc5GQCHPr3yLjpzS99q jLd+49ADYrwsZ8/01kVX8x9gOA/Xe/LBVMrELxHH1DDya/ry40UJzAzV8WbKBhlJ wOixFk5GgTXVnKyGQZvjxZkX+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqpQ8hB Ke4CBS7Hr319sNimM+9aMB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZBNy8yRDk5MUNEMDU5OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFp dTg5bHctWC1pYUREY2Rpem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDl/V0eNEa2bXZdlpInePTBAjsGsfYrgOCorve50PjuCB9BxZ5+jPy NUkh3rV1XXSuGg2nfgAxr7UUeLC52x0rfhqqhQUOTjc4eqMvA4HInxAW8SjDBgSj rmWI/OC2VpitAiPJuNOSqO006FRLx9kU9kyEEoz9dPVY9s/FwwJ7QS46uAzR6+qB //ZmM/OV1+Lvpa/Dyp87U4bJBFK8nkw6XDAHH5+pi6vRUFAnMYMY53kGmFz0DFcs rr6qzU2/NSNI2LqKX+9LoP3AaMeBZrdziN0Kdtr9zW7UAwe7sUYB6CvdXjwhwaMD Oyod904AvHODFDlWgaDZl4jEirmQRlpm -----END CERTIFICATE-----Generated at Sun Dec 7 06:07:13 2025 by rpki-client