This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: KLcViLx0QzEDkuBm/0f7JZ2zXja0pV1u8Nsu8v0T0+E= Subject key identifier: 46:A0:C1:F6:B6:D5:61:4C:F1:89:DD:68:B4:5E:9C:80:44:63:36:15 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 0202 Signing time: Wed 17 Dec 2025 01:55:52 +0000 Manifest this update: Wed 17 Dec 2025 01:55:51 +0000 Manifest next update: Wed 24 Dec 2025 01:55:51 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: HBquhmb4TnbDwVMcHsmxE98nSiQaIYMSB8mM48h6kWs=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: 5JjQBJx2Pjnhm+6Kg83lIxJriPqmmDrWvmhqbV4seEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 01:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16, serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Dec 17 01:55:51 2025 GMT Not After : Dec 24 01:55:51 2025 GMT Subject: CN=69420da8-ceb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:cb:d6:0b:f5:4c:f6:aa:06:43:1d:b3:45:af: ba:5f:7b:85:c1:39:28:c6:0d:73:99:3b:20:38:77: 23:2a:18:ed:fc:4a:7e:d4:ec:57:47:4c:df:77:db: 1c:6f:cd:f3:1c:36:46:d8:d9:e1:cf:3f:d4:63:0f: a5:46:d1:03:29:a6:63:0d:3d:33:42:2e:ae:64:c2: a6:0b:9e:fb:53:78:ed:b0:4a:c4:31:ef:df:c0:1a: f6:b7:c2:a5:d4:82:31:e0:e8:4a:6f:af:2b:08:da: ec:86:d7:f9:98:92:ea:b6:65:48:41:7b:4d:d6:86: 13:7b:a3:e9:20:2a:35:dd:02:92:cb:24:95:c2:f1: 30:4f:e2:9d:98:10:97:3e:cb:f5:98:2e:8d:74:25: f1:3f:a8:3f:89:1f:21:e1:39:8a:7d:c8:8d:e0:17: bd:1a:69:2f:49:7a:d3:e5:e3:11:a4:60:24:4d:31: c9:3a:d0:51:a8:08:9e:1d:3a:d1:15:2d:90:ef:c2: f3:1f:11:a2:3a:fe:7e:22:bc:dc:4f:35:4c:41:cb: 27:70:3c:8d:54:dd:6a:2a:cb:c3:42:e5:4e:9c:8e: 35:72:0d:be:84:b3:f0:f3:ba:48:1a:35:b2:fe:88: b8:d2:da:8e:14:ae:50:2a:e5:59:97:66:81:03:e2: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A0:C1:F6:B6:D5:61:4C:F1:89:DD:68:B4:5E:9C:80:44:63:36:15 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b5:3b:fb:b0:74:d9:28:e0:36:3d:2b:3b:c5:00:79:e3:93: d2:b6:90:57:6c:0e:b7:c6:7a:38:c2:6a:06:be:15:bf:1f:6b: cc:38:a9:56:fa:60:b9:1c:f0:65:c8:55:97:c8:8e:9c:89:b7: b7:40:51:e0:ca:5c:fa:e1:f6:c5:86:24:f4:e7:c9:8d:cd:62: cf:fa:27:10:03:4c:07:33:88:a7:66:0c:9d:06:bd:f9:c0:d5: a6:61:35:57:bd:a9:4f:9b:7a:1e:22:16:5d:49:6b:7d:f2:a3: 43:ad:df:d1:0c:a2:e4:3f:c4:94:7f:e2:57:61:70:ba:ae:ab: 04:d7:0a:30:f8:73:65:16:d9:e8:d2:21:e5:bf:72:29:01:c4: e8:56:7d:c8:0a:a1:29:3d:e0:13:b9:f9:24:ab:a8:69:59:f7: fb:86:40:b0:8c:6a:51:c6:2f:ca:3b:a7:10:9c:ae:55:76:91: fb:6b:96:f7:f4:d2:1d:8b:28:f0:37:56:61:b9:95:8d:b0:ae: f6:86:d8:2f:5f:fa:2a:0d:1a:21:39:43:31:8b:e5:06:69:88: e5:0b:76:f7:a1:53:79:d3:6c:53:f0:2a:38:7f:4a:8c:6a:5c: 46:b5:f4:80:aa:a1:ed:51:9f:3e:5e:30:26:8b:ce:30:73:b8: bf:e4:e3:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjUxMjE3MDE1NTUxWhcNMjUxMjI0MDE1NTUxWjAYMRYwFAYD VQQDDA02OTQyMGRhOC1jZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjMvWC/VM9qoGQx2zRa+6X3uFwTkoxg1zmTsgOHcjKhjt/Ep+1OxXR0zfd9sc b83zHDZG2Nnhzz/UYw+lRtEDKaZjDT0zQi6uZMKmC577U3jtsErEMe/fwBr2t8Kl 1IIx4OhKb68rCNrshtf5mJLqtmVIQXtN1oYTe6PpICo13QKSyySVwvEwT+KdmBCX Psv1mC6NdCXxP6g/iR8h4TmKfciN4Be9GmkvSXrT5eMRpGAkTTHJOtBRqAieHTrR FS2Q78LzHxGiOv5+IrzcTzVMQcsncDyNVN1qKsvDQuVOnI41cg2+hLPw87pIGjWy /oi40tqOFK5QKuVZl2aBA+IQBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEagwfa2 1WFM8YndaLRenIBEYzYVMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4tTv7sHTZKOA2PSs7xQB545PStpBXbA63xno4wmoGvhW/H2vMOKlW +mC5HPBlyFWXyI6cibe3QFHgylz64fbFhiT058mNzWLP+icQA0wHM4inZgydBr35 wNWmYTVXvalPm3oeIhZdSWt98qNDrd/RDKLkP8SUf+JXYXC6rqsE1wow+HNlFtno 0iHlv3IpAcToVn3ICqEpPeATufkkq6hpWff7hkCwjGpRxi/KO6cQnK5VdpH7a5b3 9NIdiyjwN1ZhuZWNsK72htgvX/oqDRohOUMxi+UGaYjlC3b3oVN502xT8Co4f0qM alxGtfSAqqHtUZ8+XjAmi84wc7i/5OMc -----END CERTIFICATE-----Generated at Fri Dec 19 01:22:31 2025 by rpki-client