This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: IVtDEc1rFzD1NzXJKisxL/jd0ECmrun+GGjHkbYZw4c= Subject key identifier: 02:61:AE:BC:51:C2:8A:2B:4E:C3:8F:C2:B0:C4:97:1A:A7:C8:CD:32 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 021A Signing time: Fri 05 Dec 2025 00:31:22 +0000 Manifest this update: Fri 05 Dec 2025 00:31:21 +0000 Manifest next update: Fri 12 Dec 2025 00:31:21 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: rAT1OPJZRDWkx57JApQabyYLTTILC2Z1l1Wn+nMAcBc=) 2: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: sFUlSAs686BHpBPHFZ6jJXEM4AvroBrl/QL/VRc6YMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D, serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Dec 5 00:31:21 2025 GMT Not After : Dec 12 00:31:21 2025 GMT Subject: CN=693227da-201a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:0e:75:ad:83:5d:f7:de:c0:b1:26:2f:84: 4f:8d:e0:d4:bf:b9:46:07:90:1c:66:c0:e1:bf:aa: 85:98:07:65:22:8b:46:29:30:7d:64:f6:e3:54:a2: e4:7e:4c:47:68:25:8a:f5:3b:ef:a2:fb:2f:a9:9b: 7f:7c:f7:5b:b3:1a:43:29:70:7f:1d:b3:9a:4e:19: dc:df:e8:46:6d:98:73:38:2a:e5:43:e0:68:66:fb: 67:df:bd:e2:ef:9a:f7:b0:ad:fc:8c:21:7a:99:6a: 11:bf:88:2b:2b:7a:4a:a2:a1:7d:9a:50:23:4d:2d: 63:5e:6f:88:bf:1b:18:b2:0d:4c:c6:2c:9b:9a:0e: 80:23:c8:4f:9c:50:fe:fc:46:26:15:4b:98:cb:88: 80:59:dc:00:09:83:dc:fd:bd:71:06:e5:1a:3b:63: 10:1f:0f:41:b3:a1:77:a9:07:de:7e:05:f3:cc:44: a3:da:d2:da:88:dd:79:b9:fd:51:02:52:45:1c:a0: 9b:20:a1:06:70:82:78:cc:87:08:25:8c:cd:0d:5b: 05:1e:ce:9c:e2:6f:03:2e:27:84:de:ca:91:b3:3c: b5:49:57:da:95:50:63:37:f7:cf:a8:97:18:d5:d3: a0:70:e1:21:5f:ec:d7:3b:85:be:32:4f:2d:95:2d: e3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:61:AE:BC:51:C2:8A:2B:4E:C3:8F:C2:B0:C4:97:1A:A7:C8:CD:32 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5b:4c:bf:ce:0a:28:65:e7:30:ed:f2:75:90:87:7a:c7:1c: 55:99:25:ab:99:60:ce:05:9a:8e:a2:f9:93:7d:bd:82:c2:55: 36:bf:df:61:52:8c:ef:1e:9d:9a:47:77:b5:d4:47:4f:84:8d: 8e:ae:d0:66:91:da:7a:4d:ab:73:8c:4b:d4:00:96:3f:d5:14: 0b:95:7b:5d:4a:50:5c:3f:44:dc:89:c6:47:a1:7d:cb:23:7a: 3a:30:51:35:36:fc:ec:5d:74:f1:6c:d3:cb:63:25:2d:f5:20: 45:a0:f2:e0:6a:02:ec:70:7f:51:1b:cb:ea:05:55:2d:ed:87: 27:ed:00:31:cf:cf:55:47:21:2f:b5:f5:39:f5:d9:1a:a1:a9: d9:10:be:e2:9f:ef:b3:3f:d4:14:2b:e3:3d:09:c5:4d:fc:23: f5:70:2b:12:54:1d:c1:be:6d:a9:6d:e1:d6:44:8c:54:ef:ab: 1f:ec:5c:ab:f4:f1:31:d2:f0:75:e2:88:d2:fd:65:7a:ab:e0: 80:18:ba:3f:35:1f:26:ee:f9:83:ad:6b:e0:66:a5:28:dc:04: 7a:38:ee:6e:e0:57:c1:ff:4e:e0:53:48:14:3c:e0:8d:d3:35: 51:e9:a8:06:0e:6b:28:7e:3e:f8:ac:41:04:be:fe:66:2c:6b: e4:54:5f:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjUxMjA1MDAzMTIxWhcNMjUxMjEyMDAzMTIxWjAYMRYwFAYD VQQDEw02OTMyMjdkYS0yMDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp10Oda2DXffewLEmL4RPjeDUv7lGB5AcZsDhv6qFmAdlIotGKTB9ZPbjVKLk fkxHaCWK9TvvovsvqZt/fPdbsxpDKXB/HbOaThnc3+hGbZhzOCrlQ+BoZvtn373i 75r3sK38jCF6mWoRv4grK3pKoqF9mlAjTS1jXm+IvxsYsg1Mxiybmg6AI8hPnFD+ /EYmFUuYy4iAWdwACYPc/b1xBuUaO2MQHw9Bs6F3qQfefgXzzESj2tLaiN15uf1R AlJFHKCbIKEGcIJ4zIcIJYzNDVsFHs6c4m8DLieE3sqRszy1SVfalVBjN/fPqJcY 1dOgcOEhX+zXO4W+Mk8tlS3jvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJhrrxR woorTsOPwrDElxqnyM0yMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvW0y/zgooZecw7fJ1kId6xxxVmSWrmWDOBZqOovmTfb2CwlU2v99h UozvHp2aR3e11EdPhI2OrtBmkdp6TatzjEvUAJY/1RQLlXtdSlBcP0TcicZHoX3L I3o6MFE1NvzsXXTxbNPLYyUt9SBFoPLgagLscH9RG8vqBVUt7Ycn7QAxz89VRyEv tfU59dkaoanZEL7in++zP9QUK+M9CcVN/CP1cCsSVB3Bvm2pbeHWRIxU76sf7Fyr 9PEx0vB14ojS/WV6q+CAGLo/NR8m7vmDrWvgZqUo3AR6OO5u4FfB/07gU0gUPOCN 0zVR6agGDmsofj74rEEEvv5mLGvkVF9e -----END CERTIFICATE-----Generated at Sat Dec 6 12:19:04 2025 by rpki-client