This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: jEttMxUe9yU4pbIWC7yHtjRLXJln+NqdT/RzdzPYttY= Subject key identifier: 2D:98:64:D1:E3:55:68:4E:32:4D:DF:D9:7F:DE:CB:87:B6:1E:E0:FD Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B6F Signing time: Sat 06 Dec 2025 18:24:30 +0000 Manifest this update: Sat 06 Dec 2025 18:24:30 +0000 Manifest next update: Sat 13 Dec 2025 18:24:30 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: CGxQAV/HEVezOpTkLUonv0NrLFESiJB+wnaPniXKgb8=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: o16pooFHIEBYiC/U+8swfJroVM1JsQPPQfuyHDWfNA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Dec 6 18:24:30 2025 GMT Not After : Dec 13 18:24:30 2025 GMT Subject: CN=693474de-20a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a5:49:be:a3:e6:b1:4d:d9:b1:8e:f6:cb:b7: c6:30:7e:8f:7a:88:54:10:49:fa:6b:c2:b8:bc:ef: c1:e9:a3:28:c7:0e:93:98:dc:7d:8d:59:d5:be:3b: 0d:93:ec:ff:f0:9b:f4:5d:3c:01:05:51:ba:74:20: 65:43:04:e9:f5:b0:c9:bf:09:fb:79:82:be:82:0d: e9:5d:6e:e2:e4:a0:16:b2:67:fe:b0:15:1a:1d:73: 68:89:0a:9e:fb:ef:35:f6:04:70:59:ab:c3:88:6b: 9d:10:de:e6:f7:66:ad:72:57:5c:65:b5:49:ae:11: c7:2f:0d:b4:c3:42:c6:38:af:0f:32:8a:1b:e4:34: 6c:ac:a9:b9:96:e8:7d:d0:de:67:af:0b:d8:32:67: 1a:c2:c3:e8:3f:2e:17:41:e2:b5:a2:ca:73:66:88: eb:1e:a6:92:65:86:1a:8e:36:51:31:65:2d:1d:ab: 64:cc:ef:05:ae:98:03:31:59:fe:fb:8c:0a:3f:41: 0c:2a:66:67:48:39:ab:61:fd:e9:e7:2c:3e:40:ce: 1a:89:42:0a:e7:38:5a:fe:da:fe:65:6a:f2:87:b4: 27:ae:d7:88:8a:ca:76:89:8d:a3:14:1d:89:2d:24: ef:ee:98:8f:ac:8f:14:57:28:d7:89:9f:26:23:ef: 8a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:98:64:D1:E3:55:68:4E:32:4D:DF:D9:7F:DE:CB:87:B6:1E:E0:FD X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f3:35:7a:d1:43:ff:25:32:3a:c6:25:d3:51:d7:2d:d9:28: 82:8d:b7:45:0d:86:f2:7a:47:0f:b2:39:a3:75:ac:17:0e:95: 7e:15:81:82:ab:79:e9:87:e4:64:6b:f8:46:2a:df:17:a5:40: 35:5f:d5:49:7e:1c:2c:1e:c0:e7:89:cb:b2:34:a9:78:19:d3: 5f:98:86:f6:9f:9f:85:ce:91:ed:5b:38:d2:bb:18:49:f9:35: 50:dc:0a:f4:e6:5b:5a:6e:9d:d3:33:79:8d:b9:ad:20:5b:b6: 01:1e:83:34:3d:3b:30:6a:10:47:67:37:e8:84:62:cb:44:c4: 5c:f7:4d:95:3c:87:84:dc:c6:58:3b:8c:76:cf:ae:53:39:d8: cb:92:41:2a:e3:0d:a7:87:b5:76:15:07:3c:a8:f2:62:3b:03: 81:7f:50:e8:47:8c:a6:c0:7e:b7:c8:ef:46:93:67:b0:e5:9f: 2a:2c:59:ec:ac:52:72:34:f3:35:ed:88:11:53:56:80:5a:9d: 4e:73:6c:c6:ff:cf:8f:11:af:64:9f:9b:5d:80:cb:7a:54:6a: ae:71:67:f0:f9:3d:c4:fd:d6:60:93:c9:0c:72:49:e7:f8:ad: 8d:4e:19:ce:4c:fa:87:de:a4:79:37:4d:9f:fc:ad:72:17:b7: 54:12:c2:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUxMjA2MTgyNDMwWhcNMjUxMjEzMTgyNDMwWjAYMRYwFAYD VQQDEw02OTM0NzRkZS0yMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6VJvqPmsU3ZsY72y7fGMH6PeohUEEn6a8K4vO/B6aMoxw6TmNx9jVnVvjsN k+z/8Jv0XTwBBVG6dCBlQwTp9bDJvwn7eYK+gg3pXW7i5KAWsmf+sBUaHXNoiQqe ++819gRwWavDiGudEN7m92atcldcZbVJrhHHLw20w0LGOK8PMoob5DRsrKm5luh9 0N5nrwvYMmcawsPoPy4XQeK1ospzZojrHqaSZYYajjZRMWUtHatkzO8FrpgDMVn+ +4wKP0EMKmZnSDmrYf3p5yw+QM4aiUIK5zha/tr+ZWryh7QnrteIisp2iY2jFB2J LSTv7piPrI8UVyjXiZ8mI++KrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2YZNHj VWhOMk3f2X/ey4e2HuD9MB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT8zV60UP/JTI6xiXTUdct2SiCjbdFDYbyekcPsjmjdawXDpV+FYGC q3nph+Rka/hGKt8XpUA1X9VJfhwsHsDnicuyNKl4GdNfmIb2n5+FzpHtWzjSuxhJ +TVQ3Ar05ltabp3TM3mNua0gW7YBHoM0PTswahBHZzfohGLLRMRc902VPIeE3MZY O4x2z65TOdjLkkEq4w2nh7V2FQc8qPJiOwOBf1DoR4ymwH63yO9Gk2ew5Z8qLFns rFJyNPM17YgRU1aAWp1Oc2zG/8+PEa9kn5tdgMt6VGqucWfw+T3E/dZgk8kMcknn +K2NThnOTPqH3qR5N02f/K1yF7dUEsKu -----END CERTIFICATE-----Generated at Sat Dec 6 22:20:59 2025 by rpki-client