This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: AzlXM/PFndJmQSdehUHNmeYpypZbq6LJsEm8cqbvHho= Subject key identifier: CC:71:07:79:6D:A4:25:E2:32:40:A7:B2:79:1B:A4:E3:A4:12:A0:7A Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0409 Signing time: Thu 04 Dec 2025 22:54:15 +0000 Manifest this update: Thu 04 Dec 2025 22:54:14 +0000 Manifest next update: Thu 11 Dec 2025 22:54:14 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: 0C71g12QsJDgZZSfVLHo/W11lhou7bc6rvhROQ8vwyE=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: D0wo+x5/eI47vVGDL5twz0n4up2ZDNjTCVO1Xyw3jxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Dec 4 22:54:14 2025 GMT Not After : Dec 11 22:54:14 2025 GMT Subject: CN=69321117-ff3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8f:d4:d3:7d:97:1a:ed:c8:08:85:d9:ba:62: a9:27:81:50:0d:c5:70:ee:8d:8e:46:b2:06:79:5e: bb:3e:1a:20:82:1a:81:37:9e:3c:3d:81:f2:a5:87: de:4c:9a:1c:87:1e:1d:b5:2d:9f:a8:86:ad:e5:3c: c8:c2:0b:18:dc:89:fe:3a:98:6c:98:b5:25:88:c9: d6:b2:e6:76:48:b9:62:e4:75:c3:20:a2:5e:5e:24: 38:a0:0e:1a:e4:8b:fe:55:39:d5:ca:dd:ca:ed:8d: c1:30:89:68:e0:c4:ee:3f:43:6b:a0:b6:0d:e1:65: 51:c4:f0:bf:38:11:83:fe:c2:51:80:a0:a2:3e:c5: cc:e0:80:cb:1b:72:92:04:99:fa:2e:78:83:cf:6a: db:55:3a:9c:95:80:7b:0c:57:d0:0c:eb:8b:26:61: 26:f6:4b:99:e6:5c:1b:08:72:ab:4f:02:b2:a0:0e: 97:1a:38:8d:72:92:96:4d:b1:ff:82:92:2b:2a:74: 30:f9:8f:3f:06:91:97:c3:89:cf:ca:ca:02:4b:2a: 80:8f:fd:84:ba:0b:c2:b9:5f:49:00:b9:ea:08:56: a4:63:d7:0b:f3:f5:af:a2:6e:bd:74:f7:a8:4a:3e: 64:f6:d1:b2:5d:8e:d4:83:f7:aa:4f:b9:4e:d1:cf: 26:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:71:07:79:6D:A4:25:E2:32:40:A7:B2:79:1B:A4:E3:A4:12:A0:7A X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:0f:9a:33:1b:b2:26:a9:13:01:d9:c5:4f:58:7e:ef:c3:8d: 17:f7:c2:0a:bc:47:56:aa:76:99:cd:77:63:35:70:e9:ef:de: 23:d2:07:ab:37:92:f6:b5:af:81:36:81:ea:f6:a2:6e:76:86: d1:26:1a:18:13:8e:f3:ef:2d:26:48:68:08:82:3f:51:b2:8c: ad:90:37:91:bf:7f:c2:d9:95:f6:1d:41:cb:3b:bc:17:97:ab: 2e:be:1c:b4:90:ad:53:51:e2:ba:2b:7a:9c:00:12:29:9b:c4: e0:a2:74:58:d1:1e:5b:e3:44:09:76:a1:70:80:52:b0:6b:98: de:ed:48:29:3f:d3:f5:34:13:82:20:34:72:54:2d:af:03:52: 95:44:04:be:23:ed:c5:60:c6:64:27:57:1f:79:b1:28:08:6f: 4e:fc:13:11:d9:86:29:7f:2c:f3:e9:49:50:92:85:76:10:db: 60:b4:69:2a:66:b8:ca:d9:71:1e:a7:b3:21:15:48:83:89:ca: 46:02:99:f9:33:ae:4a:45:7e:91:40:9c:59:28:56:28:c1:a0: 75:c9:c6:b7:04:ca:a8:9d:0e:c7:57:c4:9e:4e:09:d8:9f:f4: 8e:b6:01:8e:6f:74:8c:e5:05:2b:fb:70:cf:c4:3c:0e:c9:0b: 0f:02:bd:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUxMjA0MjI1NDE0WhcNMjUxMjExMjI1NDE0WjAYMRYwFAYD VQQDEw02OTMyMTExNy1mZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArI/U032XGu3ICIXZumKpJ4FQDcVw7o2ORrIGeV67PhogghqBN548PYHypYfe TJochx4dtS2fqIat5TzIwgsY3In+OphsmLUliMnWsuZ2SLli5HXDIKJeXiQ4oA4a 5Iv+VTnVyt3K7Y3BMIlo4MTuP0NroLYN4WVRxPC/OBGD/sJRgKCiPsXM4IDLG3KS BJn6LniDz2rbVTqclYB7DFfQDOuLJmEm9kuZ5lwbCHKrTwKyoA6XGjiNcpKWTbH/ gpIrKnQw+Y8/BpGXw4nPysoCSyqAj/2EugvCuV9JALnqCFakY9cL8/Wvom69dPeo Sj5k9tGyXY7Ug/eqT7lO0c8m6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxxB3lt pCXiMkCnsnkbpOOkEqB6MB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaD5ozG7ImqRMB2cVPWH7vw40X98IKvEdWqnaZzXdjNXDp794j0ger N5L2ta+BNoHq9qJudobRJhoYE47z7y0mSGgIgj9RsoytkDeRv3/C2ZX2HUHLO7wX l6suvhy0kK1TUeK6K3qcABIpm8TgonRY0R5b40QJdqFwgFKwa5je7UgpP9P1NBOC IDRyVC2vA1KVRAS+I+3FYMZkJ1cfebEoCG9O/BMR2YYpfyzz6UlQkoV2ENtgtGkq ZrjK2XEep7MhFUiDicpGApn5M65KRX6RQJxZKFYowaB1yca3BMqonQ7HV8SeTgnY n/SOtgGOb3SM5QUr+3DPxDwOyQsPAr3T -----END CERTIFICATE-----Generated at Sat Dec 6 20:42:26 2025 by rpki-client