This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft File: TrnMSjh3s_-dQLwbs-YMkK36zVM.mft (raw, json) Hash identifier: 7he22qcFpIBGGCmn+3X3szSRgnmtKraGVqdyNRO7k4Y= Subject key identifier: 30:1F:99:D2:E4:21:28:B0:0D:57:BB:3C:E7:50:88:0D:E1:D7:BD:CE Authority key identifier: 4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 Certificate issuer: /CN=A91F104D/serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Certificate serial: 0AFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft Manifest number: 0AF8 Signing time: Sat 06 Dec 2025 18:38:24 +0000 Manifest this update: Sat 06 Dec 2025 18:38:24 +0000 Manifest next update: Sat 13 Dec 2025 18:38:24 +0000 Files and hashes: 1: TrnMSjh3s_-dQLwbs-YMkK36zVM.crl (hash: +ee17HZMnOUGbFs3NfAdRL1NqXQEzzWziX77OTFAdrw=) 2: 1979A7C0586111EA9FC98555C4F9AE02.roa (hash: ZDs2CUVgufghQf+Lc8A/Bot+97mQvkMQ7xGXz6nIftU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F104D, serialNumber=4EB9CC4A3877B3FF9D40BC1BB3E60C90ADFACD53 Validity Not Before: Dec 6 18:38:24 2025 GMT Not After : Dec 13 18:38:24 2025 GMT Subject: CN=69347820-0e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f5:68:25:1b:f2:e6:c7:4d:32:66:8e:f4:45: b4:b1:5d:3c:c5:2d:68:c1:d7:43:7a:7c:0a:4e:76: e9:bc:1c:00:32:18:a9:a3:f4:82:5b:fb:8e:34:01: 85:20:0e:48:a3:a5:34:1b:23:51:bf:a3:a4:1c:af: 33:a1:f7:6c:a6:3d:58:6a:af:31:a0:e1:f9:50:ff: 8f:92:39:62:6a:50:7b:c2:7e:dd:ec:23:96:29:b0: ef:86:6c:62:2f:04:d2:88:27:19:96:cf:73:c6:32: 5e:b5:3b:01:ed:b4:88:7f:57:71:6c:ef:b8:9d:34: c1:e0:c6:8d:19:9a:36:0a:f2:8d:69:4f:d8:d7:ee: 5f:53:54:be:38:d8:66:1c:12:45:0c:f8:92:58:7e: bf:82:4e:e3:6f:5c:09:a6:fe:51:8f:f4:ae:af:ae: 04:a8:f7:4c:68:21:71:9f:c2:46:a6:ce:fe:a1:1b: 25:44:23:cd:be:06:26:aa:8e:36:18:d8:ef:5c:82: 7f:d0:de:6f:11:1d:2c:6f:a7:73:aa:19:8f:9b:e4: 2f:54:dd:15:a3:11:19:a6:14:18:3b:20:d1:27:5f: e9:7f:01:21:d9:96:44:07:eb:32:1c:a9:0f:2f:3d: ac:4c:8f:1a:ab:20:be:02:cf:2f:01:03:0e:68:55: 1d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1F:99:D2:E4:21:28:B0:0D:57:BB:3C:E7:50:88:0D:E1:D7:BD:CE X509v3 Authority Key Identifier: keyid:4E:B9:CC:4A:38:77:B3:FF:9D:40:BC:1B:B3:E6:0C:90:AD:FA:CD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TrnMSjh3s_-dQLwbs-YMkK36zVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F104D/21C2A08C585F11EA8A1B8753C4F9AE02/TrnMSjh3s_-dQLwbs-YMkK36zVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c9:ad:63:ad:18:46:95:8d:29:fe:ee:82:8c:26:ed:cc:2f: 70:8f:5c:c4:2a:38:db:a8:2b:ab:b1:30:af:44:f4:89:c5:20: 60:dd:bb:bc:40:c1:41:3c:55:0d:91:61:50:5d:8b:df:d5:64: 5f:9f:6e:54:11:4e:15:fd:08:1a:f6:0d:cd:7f:03:38:88:56: 3b:7c:9b:d1:e1:87:ff:25:94:cc:ba:41:1c:fc:f1:91:72:32: 4f:38:d4:2f:28:76:34:0c:bc:24:fb:03:84:0d:91:6a:c4:81: 30:5d:9e:09:dd:9c:ab:5c:41:8b:57:dd:62:de:92:73:c3:36: 31:c1:f5:c1:82:38:19:2c:6e:eb:91:5a:7a:37:74:65:c6:5d: 4f:e7:dd:0a:26:ee:73:0d:bc:cd:fc:ff:b2:b3:b0:e6:0b:4d: 79:9d:56:ab:68:0c:78:b0:e4:72:8b:87:2d:07:1a:97:c4:27: 4f:3d:6a:6e:b5:c4:37:6d:47:8e:fb:23:58:4b:52:02:e2:61: f7:ec:aa:f8:46:fc:b6:55:0f:d1:8b:e2:e4:96:98:11:91:70: 0d:69:71:c5:48:5d:af:4d:24:26:1d:3e:7a:70:3c:c4:2a:17: 3f:13:1d:65:75:77:3d:ff:8a:8e:36:b0:a8:9f:fc:a2:1f:2f: d6:47:2c:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEwNEQxMTAvBgNVBAUTKDRFQjlDQzRBMzg3N0IzRkY5RDQwQkMxQkIzRTYwQzkw QURGQUNENTMwHhcNMjUxMjA2MTgzODI0WhcNMjUxMjEzMTgzODI0WjAYMRYwFAYD VQQDEw02OTM0NzgyMC0wZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fVoJRvy5sdNMmaO9EW0sV08xS1owddDenwKTnbpvBwAMhipo/SCW/uONAGF IA5Io6U0GyNRv6OkHK8zofdspj1Yaq8xoOH5UP+PkjlialB7wn7d7COWKbDvhmxi LwTSiCcZls9zxjJetTsB7bSIf1dxbO+4nTTB4MaNGZo2CvKNaU/Y1+5fU1S+ONhm HBJFDPiSWH6/gk7jb1wJpv5Rj/Sur64EqPdMaCFxn8JGps7+oRslRCPNvgYmqo42 GNjvXIJ/0N5vER0sb6dzqhmPm+QvVN0VoxEZphQYOyDRJ1/pfwEh2ZZEB+syHKkP Lz2sTI8aqyC+As8vAQMOaFUdjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAfmdLk ISiwDVe7POdQiA3h173OMB8GA1UdIwQYMBaAFE65zEo4d7P/nUC8G7PmDJCt+s1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTA0RC8yMUMyQTA4QzU4 NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3NfLWRRTHdicy1ZTWtLMzZ6 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rybk1Tamgzc18tZFFMd2JzLVlNa0szNnpWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTA0RC8yMUMyQTA4QzU4NUYxMUVBOEExQjg3NTNDNEY5QUUwMi9Ucm5NU2poM3Nf LWRRTHdicy1ZTWtLMzZ6Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFya1jrRhGlY0p/u6CjCbtzC9wj1zEKjjbqCursTCvRPSJxSBg3bu8 QMFBPFUNkWFQXYvf1WRfn25UEU4V/Qga9g3NfwM4iFY7fJvR4Yf/JZTMukEc/PGR cjJPONQvKHY0DLwk+wOEDZFqxIEwXZ4J3ZyrXEGLV91i3pJzwzYxwfXBgjgZLG7r kVp6N3Rlxl1P590KJu5zDbzN/P+ys7DmC015nVaraAx4sORyi4ctBxqXxCdPPWpu tcQ3bUeO+yNYS1IC4mH37Kr4Rvy2VQ/Ri+LklpgRkXANaXHFSF2vTSQmHT56cDzE Khc/Ex1ldXc9/4qONrCon/yiHy/WRyxt -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:55 2025 by rpki-client