This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: 6mOMq0yowo3kcfZiiWxh+KByfMPBrcrPo2Ajy59K7gc= Subject key identifier: 83:D2:BC:4E:BC:60:DA:17:E9:B3:D3:E6:32:AA:6C:85:A4:41:E7:8F Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 85 Signing time: Fri 05 Dec 2025 04:36:12 +0000 Manifest this update: Fri 05 Dec 2025 04:36:12 +0000 Manifest next update: Fri 12 Dec 2025 04:36:12 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: NW91z6nvPxmQ/Qs9ablLGaqgTsy+wDux6ggP6Nwd5yo=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Dec 5 04:36:12 2025 GMT Not After : Dec 12 04:36:12 2025 GMT Subject: CN=6932613c-436e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:99:d4:98:44:32:29:a1:cb:cb:b8:4e:63:9e: 96:2c:5b:3f:3a:87:9f:31:b2:b7:d5:ea:af:0c:41: 4d:64:06:cb:26:41:3d:98:85:64:de:51:f3:a5:e5: 53:aa:a8:e9:3b:ed:60:6c:2c:2a:c7:e3:2b:1d:3d: 14:c3:d0:09:61:24:49:04:78:05:ab:39:1e:8c:81: 15:2a:cb:c2:22:e6:b4:b5:4a:74:fc:17:81:be:c6: d2:b4:0d:69:cc:4c:ba:72:bc:26:90:36:bf:47:14: d3:48:21:5d:cf:20:85:97:be:15:04:2b:b5:6b:6d: 80:5b:84:c1:f3:d6:48:5f:5a:47:45:e3:38:16:59: e7:15:e0:c5:7c:2c:d2:11:ed:8a:68:40:dd:c4:57: 21:d5:e6:7d:51:6c:f3:7d:36:f5:ae:29:76:7a:4b: 10:38:f1:c1:73:8a:b5:a2:e8:26:9b:d5:46:77:92: 72:d4:f1:1a:c5:65:52:e4:50:1d:3d:66:46:dc:6e: e1:12:93:1b:d3:e6:82:b8:70:b2:5a:07:bf:e9:8b: c8:84:6d:09:f6:6f:a9:21:6b:92:f6:90:72:25:f0: 03:f1:95:fd:3f:17:04:8c:19:52:e9:cd:20:9a:6e: 38:7c:07:e5:cc:1a:4d:a5:da:83:f4:93:82:18:d2: 65:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D2:BC:4E:BC:60:DA:17:E9:B3:D3:E6:32:AA:6C:85:A4:41:E7:8F X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:4d:81:e0:c5:ba:c4:03:ad:1e:69:4f:15:f7:07:98:44:80: c1:0f:0c:f6:11:a2:f2:64:ea:2e:af:c9:c2:c4:cc:eb:43:0b: e5:92:95:5a:e9:35:ce:66:e6:d5:0f:94:df:a3:7e:1a:ef:dd: 19:ab:a1:90:59:ba:2c:75:c3:1a:2f:66:68:1f:fd:79:2c:39: 78:d2:af:52:89:53:56:a4:1f:b0:52:f6:6b:31:cb:dc:8f:f9: 71:63:0c:38:3c:59:7a:87:db:6c:d5:f0:ab:f6:3e:34:19:6b: 30:45:48:da:d8:87:65:c7:13:b2:f4:35:d1:96:d2:ed:79:8f: e2:e8:5b:de:8b:92:28:ab:0e:6c:a1:5e:bb:a7:70:53:17:8c: 47:54:04:e3:bc:3a:68:5a:b7:37:4c:1d:f9:83:b3:9a:69:c0: a6:25:97:93:c5:97:c8:b0:80:db:2f:2d:9e:04:05:62:3b:9a: ba:5e:95:2c:92:6b:33:e6:4b:ea:96:e8:f0:ab:71:4f:65:ef: ca:c3:0c:62:52:38:57:fe:d9:97:ae:88:2e:23:ee:fa:ed:11: 4e:78:6c:78:63:47:d7:c1:8e:69:92:9e:d8:59:cc:f9:9d:eb: 9c:cb:16:30:33:f8:96:0a:25:14:4d:f3:ec:85:52:1a:a8:f3: 47:ed:b5:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjUxMjA1MDQzNjEyWhcNMjUxMjEyMDQzNjEyWjAYMRYwFAYD VQQDEw02OTMyNjEzYy00MzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JnUmEQyKaHLy7hOY56WLFs/OoefMbK31eqvDEFNZAbLJkE9mIVk3lHzpeVT qqjpO+1gbCwqx+MrHT0Uw9AJYSRJBHgFqzkejIEVKsvCIua0tUp0/BeBvsbStA1p zEy6crwmkDa/RxTTSCFdzyCFl74VBCu1a22AW4TB89ZIX1pHReM4FlnnFeDFfCzS Ee2KaEDdxFch1eZ9UWzzfTb1ril2eksQOPHBc4q1ougmm9VGd5Jy1PEaxWVS5FAd PWZG3G7hEpMb0+aCuHCyWge/6YvIhG0J9m+pIWuS9pByJfAD8ZX9PxcEjBlS6c0g mm44fAflzBpNpdqD9JOCGNJlVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPSvE68 YNoX6bPT5jKqbIWkQeePMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpTYHgxbrEA60eaU8V9weYRIDBDwz2EaLyZOour8nCxMzrQwvlkpVa 6TXOZubVD5Tfo34a790Zq6GQWbosdcMaL2ZoH/15LDl40q9SiVNWpB+wUvZrMcvc j/lxYww4PFl6h9ts1fCr9j40GWswRUja2IdlxxOy9DXRltLteY/i6Fvei5Ioqw5s oV67p3BTF4xHVATjvDpoWrc3TB35g7OaacCmJZeTxZfIsIDbLy2eBAViO5q6XpUs kmsz5kvqlujwq3FPZe/KwwxiUjhX/tmXroguI+767RFOeGx4Y0fXwY5pkp7YWcz5 neucyxYwM/iWCiUUTfPshVIaqPNH7bVZ -----END CERTIFICATE-----Generated at Sun Dec 7 02:48:03 2025 by rpki-client