This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: xTm1AvYy+oCvpSfRCW0LK/azvhanq4B7GeihoCs1jDQ= Subject key identifier: B8:C2:D3:C7:B8:70:F8:AF:BA:49:A0:D7:97:22:FD:0C:F3:4A:84:7A Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 36A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 35B3 Signing time: Thu 18 Dec 2025 14:28:18 +0000 Manifest this update: Thu 18 Dec 2025 14:28:17 +0000 Manifest next update: Thu 25 Dec 2025 14:28:17 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: 6VPzgWrgaqHlVmbbeqAqHkZVFcuXv44a+53xGdiI6rU=) 2: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: GFZWZ3rY5zt4p9q/6cuuzyfCvGg513UOOMNp5vgzTLM=) 3: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: 5WE41zFMFc5HZkU5VkY9kQVVNvhSy9TJUUfKgnqnIio=) 4: 4DC27210558111EF880A8679C4F9AE02.roa (hash: h9yTe7lhrg8907g7zfUvE00jCBHzORz0gLImI24Dzc0=) 5: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: LsJPOhg+IjFHq4u5TuKS1Cgl9ZV//qocSQmKLNrjfHY=) 6: 27616F5ECEAC11F0B2B83021C4F9AE02.roa (hash: knSe5jZGms6LMWNvxzhPkURbNbM1D1vM5K0fKKMzHmI=) 7: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: hczGze/n+6jjz7J+S1ccsb/kUT2mL3ytpGyW1gYxmpM=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: hMNH1yK3IUdK/bsrfxvFW1bCN5AbdrDoJdwyVBW90z0=) 9: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: J9Vl4wNaQZvW7IrY3A4iHXeF9rMyxRBebQD8gmdAqF0=) 10: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: 5+KD/HbUpLkpcs6HV5lJJIsrRNB6iK/DXAWMFWpmA48=) 11: 3AE27D1ACEAD11F0AD3AAB23C4F9AE02.roa (hash: 6DppbaQQTeNgu9PcDH29P7MYPExUXAiYE2rkkXlKtpg=) 12: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: uVN+bNlw+OOE50aRxrD+T3n1qZSGGMQ4+q09H5P1seg=) 13: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: KO5kyx4oPYD6fcEJBxLZwcnGof9xv+dWoDd139PGb/A=) 14: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: sLM5FwTdAuw73CSCPgse3usHMaTriQRAMzmSo6I03pc=) 15: C3D03364CC6511F0A9733883C4F9AE02.roa (hash: d2EFkkg9z2ANiy6mAg9GRFdioHi7o04L717Q+8iWbY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13986 (0x36a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Dec 18 14:28:17 2025 GMT Not After : Dec 25 14:28:17 2025 GMT Subject: CN=69440f82-14e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:db:d5:46:1b:cb:47:0b:1d:d1:90:ad:d6:b2: 01:b5:a2:90:62:4b:ac:6d:5f:3c:49:cc:53:b1:69: 71:2e:fd:46:ba:55:c0:b5:79:25:95:4d:b1:3c:2c: 8a:61:48:b8:3f:16:d6:fd:07:32:97:85:ac:3e:a7: ca:cf:41:60:60:4d:76:20:03:2f:4e:ee:55:cb:c2: b2:65:b0:af:8b:11:f6:60:3f:29:44:c8:e5:ee:17: fc:de:4d:d9:31:dc:38:f9:99:77:8c:c8:dd:9e:65: fe:f2:87:d6:b0:71:11:94:7e:a0:46:8a:d5:94:69: 44:4b:c3:eb:98:82:8f:04:5f:5a:f6:c8:7a:85:7f: 5e:5a:02:c0:f8:65:6f:94:75:46:e0:12:f3:9c:cb: 2a:c1:29:d4:29:9a:3d:24:98:a5:ff:ae:25:9d:2f: 84:78:45:e7:f5:9b:60:a1:ca:47:79:1b:b9:93:61: d8:f7:88:ef:23:1c:f5:b3:4f:b3:27:33:15:9e:e6: 7b:d0:96:c4:7b:f8:dc:3c:e7:e1:00:69:a3:6e:37: ac:64:ff:ad:f0:05:81:03:af:4f:6e:4f:d6:5f:fe: f2:ab:81:90:df:35:06:32:79:98:29:ea:4e:07:d7: 46:f3:4c:1c:df:75:0c:db:c8:ce:de:fa:47:c1:9b: 46:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C2:D3:C7:B8:70:F8:AF:BA:49:A0:D7:97:22:FD:0C:F3:4A:84:7A X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:2b:b4:9e:09:a3:fe:4d:f6:aa:df:e1:54:58:33:fc:8a:66: 6e:9d:f8:1f:c3:1b:bc:6f:d7:5b:2d:e4:cf:4b:89:07:57:97: 4e:9a:da:68:81:a0:2f:7b:cd:a0:f9:1c:ce:44:5c:77:58:d8: 0f:08:05:38:b3:6e:b1:41:e6:0f:0d:d2:eb:bd:03:5d:38:9a: ee:ad:86:3a:f9:61:c9:4f:3c:6f:ec:0b:ec:a2:64:d9:1c:26: 85:40:28:a1:7b:27:e4:cb:ab:ee:72:2b:3f:4f:c0:62:3a:54: 77:90:c0:df:13:b7:06:34:f6:87:5f:27:5b:21:48:91:32:b0: 88:3f:4a:93:4a:c5:90:3e:da:fe:48:e6:a8:95:03:8a:81:ca: cf:ad:65:f3:98:5b:4b:b7:72:82:85:a9:4a:f9:30:90:d4:8f: 10:5f:ab:4e:e3:2d:38:60:e1:e5:f6:12:45:c1:f1:94:c5:fc: 7a:1c:d1:03:74:82:96:1a:4c:54:7b:99:fe:a4:bd:ac:09:52: d9:1d:65:16:0f:3d:ce:9f:aa:2a:63:e0:3f:f8:47:65:63:20: 02:3e:8b:9a:ad:33:59:ed:0a:b5:32:91:19:95:90:64:a8:ac: a6:3f:e5:dd:11:27:04:34:0e:4d:95:14:b2:17:c4:ae:cf:41: fa:07:b0:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUxMjE4MTQyODE3WhcNMjUxMjI1MTQyODE3WjAYMRYwFAYD VQQDDA02OTQ0MGY4Mi0xNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdvVRhvLRwsd0ZCt1rIBtaKQYkusbV88ScxTsWlxLv1GulXAtXkllU2xPCyK YUi4PxbW/Qcyl4WsPqfKz0FgYE12IAMvTu5Vy8KyZbCvixH2YD8pRMjl7hf83k3Z Mdw4+Zl3jMjdnmX+8ofWsHERlH6gRorVlGlES8PrmIKPBF9a9sh6hX9eWgLA+GVv lHVG4BLznMsqwSnUKZo9JJil/64lnS+EeEXn9ZtgocpHeRu5k2HY94jvIxz1s0+z JzMVnuZ70JbEe/jcPOfhAGmjbjesZP+t8AWBA69Pbk/WX/7yq4GQ3zUGMnmYKepO B9dG80wc33UM28jO3vpHwZtGsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjC08e4 cPivukmg15ci/QzzSoR6MB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbK7SeCaP+Tfaq3+FUWDP8imZunfgfwxu8b9dbLeTPS4kHV5dOmtpo gaAve82g+RzORFx3WNgPCAU4s26xQeYPDdLrvQNdOJrurYY6+WHJTzxv7AvsomTZ HCaFQCiheyfky6vucis/T8BiOlR3kMDfE7cGNPaHXydbIUiRMrCIP0qTSsWQPtr+ SOaolQOKgcrPrWXzmFtLt3KChalK+TCQ1I8QX6tO4y04YOHl9hJFwfGUxfx6HNED dIKWGkxUe5n+pL2sCVLZHWUWDz3On6oqY+A/+EdlYyACPouarTNZ7Qq1MpEZlZBk qKymP+XdEScENA5NlRSyF8Suz0H6B7A1 -----END CERTIFICATE-----Generated at Fri Dec 19 11:50:17 2025 by rpki-client