This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Muy1Z4x6uLL5b4OHocsTJZ1p9JN/Oi82RbGrHOuXi24= Subject key identifier: E0:36:77:DF:F2:BA:B8:F4:BB:AA:EE:12:C3:63:B7:A2:D7:2E:8E:13 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34EF Signing time: Sat 20 Dec 2025 15:07:05 +0000 Manifest this update: Sat 20 Dec 2025 15:07:04 +0000 Manifest next update: Sat 27 Dec 2025 15:07:04 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 3eiNHcY795c9PH6KFdKKmwjOQnJV/fM6sm1hq4P/vk0=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) 4: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Dec 20 15:07:04 2025 GMT Not After : Dec 27 15:07:04 2025 GMT Subject: CN=6946bb98-82a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ef:bf:12:2a:2b:af:79:e1:5a:2d:d7:39:00: f4:3c:4c:a4:35:b4:a6:cf:3a:e3:54:0c:17:21:4a: f3:0b:30:fd:3e:88:92:49:bf:fe:36:24:f8:af:2a: aa:fb:8d:86:ce:46:b0:0e:fa:65:47:27:1a:3e:6d: 32:1a:cb:05:ca:ee:8d:43:f8:59:1d:fe:08:08:b1: 99:13:57:14:ba:36:24:bc:4e:fb:c6:83:6d:19:13: 44:0d:e1:2d:ad:d0:32:d8:22:29:f8:70:de:bf:d4: 69:10:20:d8:0a:cb:ec:5c:64:8f:b3:03:cb:7a:01: 4e:bf:0e:ee:31:e2:49:05:ea:e8:84:f5:df:c6:1e: ff:90:f3:e4:dd:c5:43:a7:ab:ba:5c:ba:f2:e6:8d: 3b:5d:00:b9:71:01:7e:bb:0a:62:01:35:45:88:17: 96:69:8a:cd:ba:44:0e:4a:98:45:8a:74:46:b2:84: 9f:07:13:a0:22:3f:ba:8c:a0:19:72:73:b0:fc:15: e5:8a:d2:2e:6b:11:bb:3a:5c:ee:ce:96:f1:b1:04: ac:42:fe:6e:5b:f5:0c:3b:48:43:83:26:f8:42:cd: e1:ee:9e:2f:aa:f0:b1:f2:a9:50:2e:65:3d:1b:2a: 34:9d:d9:a6:cc:e0:2a:7c:e1:c1:0f:28:d6:70:b4: e5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:36:77:DF:F2:BA:B8:F4:BB:AA:EE:12:C3:63:B7:A2:D7:2E:8E:13 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:01:42:aa:9e:61:8a:de:dd:13:54:32:92:18:ff:13:a5:1c: 7a:67:79:4d:50:8c:fc:de:cf:1a:97:12:59:19:03:5a:24:7b: e0:7d:2e:70:ef:6a:3a:5f:2c:e5:17:6c:fc:12:2d:8c:59:4c: d9:db:72:b8:b9:21:c1:4e:6e:71:8e:f5:77:88:57:6d:e7:f0: 6d:46:26:fd:3b:b3:59:3c:7f:5b:47:71:76:2a:da:52:a8:da: 93:c2:5e:65:9f:0a:4e:ec:16:47:3a:21:01:bd:ef:30:ea:1c: b1:da:c4:94:dd:46:0c:4d:1c:40:d9:e3:5a:9d:5b:99:91:b2: 76:3b:93:f4:0e:ec:ec:1f:c2:eb:ac:d3:41:29:6d:64:a3:ac: 59:99:a0:84:f9:2b:79:60:20:e1:9d:f3:60:b9:a5:41:98:2b: 77:01:69:d5:9e:02:c4:83:31:46:39:d9:95:fe:c0:15:57:d6: b6:2d:05:dc:a6:c0:4f:d1:02:7a:0b:d8:d5:f2:9f:10:ff:ee: 56:ea:8b:b1:2a:36:3a:27:47:40:6d:1a:f4:45:10:7d:76:ca: 4d:aa:a7:43:a1:a8:4e:dd:37:fb:6d:e6:ab:83:20:88:45:e0: c8:6e:96:57:12:20:64:79:19:48:24:69:8b:b7:d2:39:b2:bd: 80:a2:b5:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMjIwMTUwNzA0WhcNMjUxMjI3MTUwNzA0WjAYMRYwFAYD VQQDDA02OTQ2YmI5OC04MmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7++/Eiorr3nhWi3XOQD0PEykNbSmzzrjVAwXIUrzCzD9PoiSSb/+NiT4ryqq +42GzkawDvplRycaPm0yGssFyu6NQ/hZHf4ICLGZE1cUujYkvE77xoNtGRNEDeEt rdAy2CIp+HDev9RpECDYCsvsXGSPswPLegFOvw7uMeJJBerohPXfxh7/kPPk3cVD p6u6XLry5o07XQC5cQF+uwpiATVFiBeWaYrNukQOSphFinRGsoSfBxOgIj+6jKAZ cnOw/BXlitIuaxG7OlzuzpbxsQSsQv5uW/UMO0hDgyb4Qs3h7p4vqvCx8qlQLmU9 Gyo0ndmmzOAqfOHBDyjWcLTl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOA2d9/y urj0u6ruEsNjt6LXLo4TMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdAUKqnmGK3t0TVDKSGP8TpRx6Z3lNUIz83s8alxJZGQNaJHvgfS5w 72o6XyzlF2z8Ei2MWUzZ23K4uSHBTm5xjvV3iFdt5/BtRib9O7NZPH9bR3F2KtpS qNqTwl5lnwpO7BZHOiEBve8w6hyx2sSU3UYMTRxA2eNanVuZkbJ2O5P0DuzsH8Lr rNNBKW1ko6xZmaCE+St5YCDhnfNguaVBmCt3AWnVngLEgzFGOdmV/sAVV9a2LQXc psBP0QJ6C9jV8p8Q/+5W6ouxKjY6J0dAbRr0RRB9dspNqqdDoahO3Tf7beargyCI ReDIbpZXEiBkeRlIJGmLt9I5sr2AorWf -----END CERTIFICATE-----Generated at Sun Dec 21 10:37:46 2025 by rpki-client