This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft File: T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft (raw, json) Hash identifier: GS+zWGFQeGtAzX1WtnkzOjnwkv8WTRBScwKVHCDqvdc= Subject key identifier: 34:A6:41:9A:F5:7A:0F:AE:77:C7:06:6A:6E:83:F1:71:6E:2D:34:1C Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft Manifest number: 1486 Signing time: Thu 04 Dec 2025 17:59:32 +0000 Manifest this update: Thu 04 Dec 2025 17:59:31 +0000 Manifest next update: Thu 11 Dec 2025 17:59:31 +0000 Files and hashes: 1: T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl (hash: /zRbBYZZHmhe20/ILsJmqptB84y9qqv2TltKd/xJ34M=) 2: 3C73210E29E711F0AB5EBA80C4F9AE02.roa (hash: k142c1mhkeL45x3p2n9As909+kYuHAEo9TNndwZMKuc=) 3: 81A55E3629E711F08823E620C4F9AE02.roa (hash: hX5dpHGXTGcDiyEWkvOCWSK7VdcIwU2X7lTjxGfS0x8=) 4: F4075E7CF28611EF976CB83AC4F9AE02.roa (hash: LHvxfj3VCNmuKnrLv2NsZrToWYHoHHWWd+F8Qkfp44A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF, serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Dec 4 17:59:31 2025 GMT Not After : Dec 11 17:59:31 2025 GMT Subject: CN=6931cc03-b4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:c8:8c:8c:28:72:c1:2b:bc:b9:da:10:e6: cb:93:cb:16:a5:67:04:1a:89:99:01:e2:45:4d:ca: db:5c:59:29:a3:14:78:2c:78:65:80:80:7f:94:62: 44:6e:21:1e:08:d7:11:ce:d4:63:15:4d:5e:88:ef: 31:dc:e1:43:f8:6f:4c:1e:20:11:7c:b9:a9:42:08: 43:c1:60:3f:d6:20:78:82:1a:bf:8a:ed:21:6a:60: b9:37:a8:89:c7:e8:61:fd:a6:d5:f6:84:c0:76:dc: e4:8a:ca:6b:a4:8a:87:99:9b:26:db:bf:e6:c7:3f: b4:57:4f:07:c2:33:b9:76:c6:c1:ea:70:33:21:bd: 17:bc:e4:c2:05:39:c2:1e:a1:47:fc:d6:4f:62:3c: f0:b3:11:fd:13:71:17:34:cd:9b:9e:48:2d:84:a2: 22:35:bd:55:a5:d6:3e:7f:d6:b2:9f:a6:cf:70:cf: c9:e8:6b:eb:a5:35:58:4d:88:7d:b1:1e:47:a5:9d: c2:41:4d:a6:16:30:92:b7:bb:91:6d:f0:5d:86:c5: be:07:ca:22:d8:fb:f3:1d:e8:72:40:b7:73:0d:25: 50:b2:16:7a:d3:43:e9:a3:05:38:e9:0b:d5:0a:06: 4b:02:6d:02:74:50:cb:29:64:7c:c3:38:b1:df:1f: 39:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A6:41:9A:F5:7A:0F:AE:77:C7:06:6A:6E:83:F1:71:6E:2D:34:1C X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:d1:ab:27:b9:a7:c3:cf:d2:a4:f5:04:63:26:46:18:d5:1b: c0:71:aa:fb:ec:9c:64:61:2a:d9:3a:9f:cc:43:ea:02:b9:40: f2:ef:9d:c9:0b:7e:9f:75:70:88:04:c5:d7:ef:f3:04:07:aa: 05:f2:ca:15:dd:c9:13:97:63:78:c6:7a:55:f4:00:26:d1:8b: 9d:66:93:55:da:26:49:5f:2e:f3:bb:2f:ca:85:1f:0d:6b:5b: 75:e0:08:a2:92:6b:e8:45:0e:74:ce:e5:92:ab:4a:a7:44:6d: 6d:db:95:95:10:ea:d4:b9:69:96:44:a3:3f:82:39:76:3f:53: 57:57:9b:c9:03:72:03:f5:a7:6b:35:be:85:e6:4b:62:51:94: b2:41:a2:a3:c3:df:62:dd:3d:d7:51:c1:68:13:47:77:0d:7e: b2:79:8e:5a:95:90:47:99:ca:82:2e:cf:94:97:6e:b9:47:c2: 3f:a6:a2:ad:fc:e5:09:4e:b3:36:77:59:23:da:34:cb:16:05: d5:82:6e:af:c2:04:6c:d4:bf:3b:86:43:72:ed:66:83:80:12: 41:a3:45:f5:fc:40:d8:3a:f0:8c:50:81:3c:92:66:ec:43:d3: 6c:79:24:d7:b2:15:ae:b2:42:dd:9b:ee:a4:3b:8a:4b:d0:11: 08:05:0f:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjUxMjA0MTc1OTMxWhcNMjUxMjExMTc1OTMxWjAYMRYwFAYD VQQDEw02OTMxY2MwMy1iNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv87IjIwocsErvLnaEObLk8sWpWcEGomZAeJFTcrbXFkpoxR4LHhlgIB/lGJE biEeCNcRztRjFU1eiO8x3OFD+G9MHiARfLmpQghDwWA/1iB4ghq/iu0hamC5N6iJ x+hh/abV9oTAdtzkisprpIqHmZsm27/mxz+0V08HwjO5dsbB6nAzIb0XvOTCBTnC HqFH/NZPYjzwsxH9E3EXNM2bnkgthKIiNb1VpdY+f9ayn6bPcM/J6GvrpTVYTYh9 sR5HpZ3CQU2mFjCSt7uRbfBdhsW+B8oi2PvzHehyQLdzDSVQshZ600PpowU46QvV CgZLAm0CdFDLKWR8wzix3x85FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSmQZr1 eg+ud8cGam6D8XFuLTQcMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0RERi8yNjYwOEQ0NjEwNzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0 Ulk5VFg4WEczWjItME01emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm0asnuafDz9Kk9QRjJkYY1RvAcar77JxkYSrZOp/MQ+oCuUDy753J C36fdXCIBMXX7/MEB6oF8soV3ckTl2N4xnpV9AAm0YudZpNV2iZJXy7zuy/KhR8N a1t14AiikmvoRQ50zuWSq0qnRG1t25WVEOrUuWmWRKM/gjl2P1NXV5vJA3ID9adr Nb6F5ktiUZSyQaKjw99i3T3XUcFoE0d3DX6yeY5alZBHmcqCLs+Ul265R8I/pqKt /OUJTrM2d1kj2jTLFgXVgm6vwgRs1L87hkNy7WaDgBJBo0X1/EDYOvCMUIE8kmbs Q9NseSTXshWuskLdm+6kO4pL0BEIBQ9R -----END CERTIFICATE-----Generated at Sat Dec 6 13:28:21 2025 by rpki-client