This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: i+MjVdsJ1yl+49uSnTbFNCb9fteBpn1cCaEd6MaLztU= Subject key identifier: 4A:15:A6:92:88:83:55:59:DF:D7:41:38:36:41:B5:EA:7A:DF:D3:0D Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34F4 Signing time: Thu 18 Dec 2025 15:14:14 +0000 Manifest this update: Thu 18 Dec 2025 15:14:14 +0000 Manifest next update: Thu 25 Dec 2025 15:14:14 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: wnv+xw/yh3uw9UoZvr7TihoV6WoUIa5WUxFVpqj9A/U=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: RGbkUiQObiN5kNn1fOoTLpQbUrsGEdo5yysiJ0yuXAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13564 (0x34fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Dec 18 15:14:14 2025 GMT Not After : Dec 25 15:14:14 2025 GMT Subject: CN=69441a46-0da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:4d:99:c2:c1:32:3c:3f:14:8e:a8:37:3b: 90:08:25:d7:ed:dd:40:00:03:84:9b:40:c1:9f:bf: 0c:21:15:0f:9d:df:69:89:87:3c:d6:ec:00:17:a5: 85:10:63:ce:80:b4:40:25:57:fa:3b:93:85:3e:73: 18:48:bf:6a:5d:17:b6:2a:d8:cd:20:12:ef:6c:14: 24:0e:ee:be:a4:37:5b:08:e4:7c:59:aa:36:ab:33: 65:15:2a:44:ca:89:52:a9:45:f3:f4:2e:fe:ff:cd: 12:82:e5:5d:04:f7:67:67:db:3e:72:47:79:7c:b4: 31:d8:57:48:82:c6:65:54:f9:e5:45:3f:34:8e:6b: 20:b4:38:b9:c6:ff:74:8f:e2:f1:cc:07:e2:d6:cd: 9e:42:28:47:c1:fa:12:73:f2:50:b7:44:bb:f4:65: 97:67:f1:56:80:b1:41:2a:09:34:36:66:0e:19:32: ee:4c:84:a1:97:af:37:1d:d4:53:b6:9d:4b:74:54: 38:8d:14:c1:c0:d5:50:64:fd:a8:86:51:c9:cd:ec: e1:33:1b:37:fd:c4:15:27:14:a5:07:31:07:84:34: 1c:86:f1:63:c5:ef:b0:69:09:52:9d:c9:c2:d0:5d: 49:64:2a:f1:55:71:0c:b0:e6:b1:24:26:8b:bd:f2: 24:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:15:A6:92:88:83:55:59:DF:D7:41:38:36:41:B5:EA:7A:DF:D3:0D X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:e2:be:74:df:c6:7b:16:fc:45:53:b1:17:c1:b0:ea:80:06: 41:b1:db:9f:85:92:82:9e:f6:d9:b6:76:b1:65:ef:9a:eb:6e: 08:98:b6:e1:09:05:0e:4b:66:3a:5c:f2:ba:ca:32:03:93:6a: 1e:42:95:bf:f3:6b:b1:9a:6b:bf:37:c2:e1:35:28:36:f3:2e: 85:77:5d:ef:e1:d2:5f:e3:8f:78:3c:5b:ca:54:23:78:50:87: 05:94:ad:1e:86:bd:48:1f:40:e1:87:fa:ef:ac:99:bc:e2:94: a0:6b:f1:d4:a7:e4:0a:eb:ac:b0:93:fb:69:cd:15:58:d0:e4: 65:17:ad:60:6f:fa:8a:b8:e0:91:6f:54:20:65:2d:5e:7c:39: 94:1c:8a:4f:f4:a1:23:be:ec:42:9b:4e:a9:ce:cf:f1:7b:e0: 1e:0a:f6:a8:f2:29:91:84:a7:73:a8:27:d0:ff:c7:1d:02:c6: 11:bd:72:d4:19:1a:d8:0e:cb:3c:b2:ad:9d:f5:c2:0c:dd:a0: 97:3e:8f:73:78:37:ab:45:e6:47:e6:58:53:e6:7f:34:ab:b8: e5:66:36:0b:33:76:cc:61:15:98:29:0d:e4:0d:c9:57:18:89: 51:96:e4:2a:fc:61:fc:9d:94:00:01:82:be:c2:19:bb:94:4d: 01:c0:38:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUxMjE4MTUxNDE0WhcNMjUxMjI1MTUxNDE0WjAYMRYwFAYD VQQDDA02OTQ0MWE0Ni0wZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4pNmcLBMjw/FI6oNzuQCCXX7d1AAAOEm0DBn78MIRUPnd9piYc81uwAF6WF EGPOgLRAJVf6O5OFPnMYSL9qXRe2KtjNIBLvbBQkDu6+pDdbCOR8Wao2qzNlFSpE yolSqUXz9C7+/80SguVdBPdnZ9s+ckd5fLQx2FdIgsZlVPnlRT80jmsgtDi5xv90 j+LxzAfi1s2eQihHwfoSc/JQt0S79GWXZ/FWgLFBKgk0NmYOGTLuTIShl683HdRT tp1LdFQ4jRTBwNVQZP2ohlHJzezhMxs3/cQVJxSlBzEHhDQchvFjxe+waQlSncnC 0F1JZCrxVXEMsOaxJCaLvfIkAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoVppKI g1VZ39dBODZBtep639MNMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr4r5038Z7FvxFU7EXwbDqgAZBsdufhZKCnvbZtnaxZe+a624ImLbh CQUOS2Y6XPK6yjIDk2oeQpW/82uxmmu/N8LhNSg28y6Fd13v4dJf4494PFvKVCN4 UIcFlK0ehr1IH0Dhh/rvrJm84pSga/HUp+QK66ywk/tpzRVY0ORlF61gb/qKuOCR b1QgZS1efDmUHIpP9KEjvuxCm06pzs/xe+AeCvao8imRhKdzqCfQ/8cdAsYRvXLU GRrYDss8sq2d9cIM3aCXPo9zeDerReZH5lhT5n80q7jlZjYLM3bMYRWYKQ3kDclX GIlRluQq/GH8nZQAAYK+whm7lE0BwDiH -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:48 2025 by rpki-client