This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft File: tbNfkk61wy-7QYZ9OhZuSpa77KI.mft (raw, json) Hash identifier: 08iQ0PeN1Yyw2/BHp3obTNAJueqUmuGDD7qlQDk8PxU= Subject key identifier: 02:E0:4F:AB:F0:08:1A:E9:9D:6D:14:47:2A:BD:B8:BE:E8:98:21:DA Authority key identifier: B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 Certificate issuer: /CN=A91D9928/serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft Manifest number: 26 Signing time: Fri 05 Dec 2025 05:31:48 +0000 Manifest this update: Fri 05 Dec 2025 05:31:48 +0000 Manifest next update: Fri 12 Dec 2025 05:31:48 +0000 Files and hashes: 1: tbNfkk61wy-7QYZ9OhZuSpa77KI.crl (hash: Fg73jEnevSSfH6UANBDgv1vRvU8ou79wZebcQmlH6uI=) 2: A71814CA984F11F0B7A01E76C4F9AE02.roa (hash: 3U7vBnQl/Kdt2pXpdCyuzs/qAnaveVs4aYr8QCEMg6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9928, serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Validity Not Before: Dec 5 05:31:48 2025 GMT Not After : Dec 12 05:31:48 2025 GMT Subject: CN=69326e44-b97c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:18:87:46:4f:d3:e6:87:65:c3:3a:d3:dc:e0: 75:c7:c0:7c:e1:69:69:c7:35:fa:c8:2a:26:30:70: d8:92:4b:ae:2a:6c:f3:a5:a9:64:4a:28:4d:ac:21: 63:ca:a3:16:02:70:5b:a4:5d:4a:65:1a:f8:ef:4b: d8:e2:20:fe:cd:bf:7b:0a:42:cb:f3:1d:65:98:3b: 5e:14:c5:17:b2:35:33:4b:5c:93:0a:05:b1:ba:d6: e4:7d:ed:9d:95:22:5c:69:33:7b:57:73:b1:b6:eb: 7a:5d:c7:65:2b:1c:c1:7c:c2:88:4a:8c:79:c7:94: b8:4c:e6:7a:6a:10:66:54:fd:c6:ad:77:af:ca:16: ca:05:9e:e7:cd:0a:ff:d2:53:99:08:19:94:00:a5: 88:a6:d3:6b:06:7d:58:94:57:aa:6f:d6:61:a4:7a: 43:3d:66:9d:20:88:a1:ba:c0:80:8f:86:4f:26:09: 5f:7a:ba:29:3b:a9:b8:ed:b0:3d:ad:38:5d:1c:b4: eb:b6:97:fb:56:16:ad:a8:a6:1e:30:28:28:ea:4b: 8b:3d:59:5a:8b:76:c5:55:b7:42:41:12:f4:6c:46: 25:71:5d:de:1e:d1:3c:d8:e2:72:6b:e3:5e:7a:51: 9b:ed:93:80:24:a2:47:a1:6e:30:3e:54:18:f6:08: 78:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E0:4F:AB:F0:08:1A:E9:9D:6D:14:47:2A:BD:B8:BE:E8:98:21:DA X509v3 Authority Key Identifier: keyid:B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:71:3e:cf:84:46:c4:31:30:22:91:70:ef:b1:14:21:b2:4c: 66:24:23:e3:bc:f8:63:b0:f0:60:97:7a:b7:35:47:33:6b:ae: 6c:c9:7d:5e:05:a2:c0:35:00:49:98:bc:c8:23:b0:c7:a5:f7: 00:30:6f:a1:e4:16:c2:24:4c:f0:06:db:d9:f2:19:74:a1:14: 93:e0:3c:08:ad:cf:ee:ed:94:f0:dc:d5:8c:fb:3d:35:11:b7: cc:02:ad:a4:8c:64:58:fe:80:01:26:59:24:50:17:4a:a8:50: 5e:97:6f:0f:61:49:f8:8f:b6:91:ea:0d:3c:84:29:c6:4a:63: d0:04:54:6e:f8:ea:a1:18:83:de:4f:4f:83:24:e1:af:2c:22: 37:da:96:67:55:8e:f8:04:72:e9:3e:1b:a9:74:40:63:d0:29: 08:d6:90:3d:50:e2:5d:3a:63:55:6e:8c:a8:23:22:8d:92:ad: 33:40:d8:d4:b3:92:54:1e:f0:74:32:ef:82:e6:3e:2e:67:83: 9e:01:90:c6:eb:ec:7f:ce:07:1f:a5:4f:24:86:de:e8:aa:5c: b4:05:f6:1c:26:8e:4c:a6:2e:35:a6:7a:1a:c5:df:6c:e6:20: 70:24:1c:23:f2:eb:3a:2f:dd:1d:7a:b2:43:45:68:85:99:b8: b2:5f:d3:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTkyODExMC8GA1UEBRMoQjVCMzVGOTI0RUI1QzMyRkJCNDE4NjdEM0ExNjZFNEE5 NkJCRUNBMjAeFw0yNTEyMDUwNTMxNDhaFw0yNTEyMTIwNTMxNDhaMBgxFjAUBgNV BAMTDTY5MzI2ZTQ0LWI5N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1GIdGT9Pmh2XDOtPc4HXHwHzhaWnHNfrIKiYwcNiSS64qbPOlqWRKKE2sIWPK oxYCcFukXUplGvjvS9jiIP7Nv3sKQsvzHWWYO14UxReyNTNLXJMKBbG61uR97Z2V IlxpM3tXc7G263pdx2UrHMF8wohKjHnHlLhM5npqEGZU/catd6/KFsoFnufNCv/S U5kIGZQApYim02sGfViUV6pv1mGkekM9Zp0giKG6wICPhk8mCV96uik7qbjtsD2t OF0ctOu2l/tWFq2oph4wKCjqS4s9WVqLdsVVt0JBEvRsRiVxXd4e0TzY4nJr4156 UZvtk4AkokehbjA+VBj2CHhNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAuBPq/AI GumdbRRHKr24vuiYIdowHwYDVR0jBBgwFoAUtbNfkk61wy+7QYZ9OhZuSpa77KIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5OTI4LzU3REZCRUJDOTg0 RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3ktN1FZWjlPaFp1U3BhNzdL SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGJOZmtrNjF3eS03UVlaOU9oWnVTcGE3N0tJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 OTI4LzU3REZCRUJDOTg0RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3kt N1FZWjlPaFp1U3BhNzdLSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFRxPs+ERsQxMCKRcO+xFCGyTGYkI+O8+GOw8GCXerc1RzNrrmzJfV4F osA1AEmYvMgjsMel9wAwb6HkFsIkTPAG29nyGXShFJPgPAitz+7tlPDc1Yz7PTUR t8wCraSMZFj+gAEmWSRQF0qoUF6Xbw9hSfiPtpHqDTyEKcZKY9AEVG746qEYg95P T4Mk4a8sIjfalmdVjvgEcuk+G6l0QGPQKQjWkD1Q4l06Y1VujKgjIo2SrTNA2NSz klQe8HQy74LmPi5ng54BkMbr7H/OBx+lTySG3uiqXLQF9hwmjkymLjWmehrF32zm IHAkHCPy6zov3R16skNFaIWZuLJf05M= -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:48 2025 by rpki-client