This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft File: TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft (raw, json) Hash identifier: kcRBEM4cqfNRdVfYimMxEAI7RL6BeMQuYpq8WVqWQgU= Subject key identifier: D5:F9:01:56:F3:3C:CC:87:F8:53:EB:74:47:39:B9:9F:7A:B0:28:A5 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft Manifest number: 0461 Signing time: Thu 04 Dec 2025 22:39:57 +0000 Manifest this update: Thu 04 Dec 2025 22:39:57 +0000 Manifest next update: Thu 11 Dec 2025 22:39:57 +0000 Files and hashes: 1: TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl (hash: zs1t4LINop9f2ZH5wx8Z3TSepl0RPEMy6/hXSPqw8+o=) 2: E2348176D54D11EF8A899250C4F9AE02.roa (hash: 306xxmMO0L8F4kDhDkLe1fwHAL2pRNtzpCEiuu3Fy6g=) 3: 75FC6CC2753711EC9091CB62C4F9AE02.roa (hash: 09H6WJNzMO6bY1CShsLhlCFgsX+1B/xNo5NQ+Cdhlps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE, serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Dec 4 22:39:57 2025 GMT Not After : Dec 11 22:39:57 2025 GMT Subject: CN=69320dbd-6d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f0:30:a3:a6:d7:d4:4e:10:7b:e7:2f:d2:aa: 66:92:f7:41:9c:3d:b8:51:7a:21:9d:af:b6:cb:07: 8f:bb:27:fc:10:be:8c:40:66:a5:71:c0:b4:bb:86: 13:32:9a:c0:d3:3e:ff:bc:d9:2e:be:26:0e:e8:b4: 81:bd:03:03:08:48:98:28:10:3a:0d:68:56:25:73: 33:ae:86:01:30:82:03:03:7d:d0:53:56:7e:11:a4: e3:bb:54:29:67:3b:1b:a2:50:f1:ac:94:da:4c:23: 68:f3:00:69:fe:8a:a5:a6:a7:85:4a:25:9d:52:22: 3e:2a:9d:b2:aa:20:21:ee:ec:30:2b:6a:c4:bd:6b: a6:4d:5c:d3:ee:ed:37:9c:31:65:db:d9:19:20:7b: 76:35:9c:66:36:63:b5:e7:47:e2:e7:24:41:56:13: de:82:30:8a:e4:25:7a:3a:d6:6d:47:22:07:6c:a3: a7:1c:de:70:f4:a1:e2:33:80:d7:fb:f1:31:34:2c: c4:f6:f3:a4:c6:8e:2b:5f:cf:0d:0f:66:f7:58:63: ec:20:0d:d6:9b:7a:5c:5a:20:ef:0b:24:7e:e5:2e: 28:a5:0a:dc:e6:60:81:14:01:3c:34:e9:d3:35:17: 7c:4b:19:bc:b1:1d:c3:03:e3:c7:bb:a7:0d:90:66: cc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F9:01:56:F3:3C:CC:87:F8:53:EB:74:47:39:B9:9F:7A:B0:28:A5 X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:69:0d:ca:0b:dd:e6:4c:09:77:6f:3f:95:c0:c1:37:e3:d7: d7:a4:66:99:e3:d4:2b:50:7d:87:c2:44:4b:93:46:d2:6f:ee: 59:13:01:0b:72:43:88:e6:32:51:44:ee:03:9b:dc:01:e7:2d: c2:48:e0:7c:65:6c:d4:78:d4:32:5c:74:59:cf:26:60:70:da: 3d:6a:04:01:cd:60:25:38:37:3a:91:36:3b:06:b0:bb:56:a7: e1:de:3d:6e:76:b5:db:03:68:7f:08:f5:cc:87:81:b1:6d:72: 33:6d:78:04:e3:2a:6a:ba:2c:b5:7d:74:8d:e7:e4:d2:eb:19: 35:ba:8f:25:b9:a0:4a:f8:76:2b:01:0e:fc:c4:48:3c:84:a0: c7:88:b8:b6:73:fc:d5:05:15:73:de:95:cd:71:86:62:99:01: ec:dc:9f:ab:30:7f:12:2e:e8:bd:b3:c9:22:dc:da:f7:38:aa: 12:56:c4:a7:14:40:be:6a:7b:e7:f7:13:92:4f:22:b9:f6:96: de:5a:b7:23:86:81:d3:7f:f0:9c:44:21:9b:a6:3d:53:2e:18: 46:d2:07:3b:8f:88:5d:da:63:66:21:14:6e:d6:9f:4a:7b:1c: bd:c8:f9:e0:18:19:75:b7:17:6a:97:54:c5:24:21:70:94:20: 5b:fb:da:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUxMjA0MjIzOTU3WhcNMjUxMjExMjIzOTU3WjAYMRYwFAYD VQQDEw02OTMyMGRiZC02ZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPAwo6bX1E4Qe+cv0qpmkvdBnD24UXohna+2ywePuyf8EL6MQGalccC0u4YT MprA0z7/vNkuviYO6LSBvQMDCEiYKBA6DWhWJXMzroYBMIIDA33QU1Z+EaTju1Qp ZzsbolDxrJTaTCNo8wBp/oqlpqeFSiWdUiI+Kp2yqiAh7uwwK2rEvWumTVzT7u03 nDFl29kZIHt2NZxmNmO150fi5yRBVhPegjCK5CV6OtZtRyIHbKOnHN5w9KHiM4DX +/ExNCzE9vOkxo4rX88ND2b3WGPsIA3Wm3pcWiDvCyR+5S4opQrc5mCBFAE8NOnT NRd8Sxm8sR3DA+PHu6cNkGbMqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX5AVbz PMyH+FPrdEc5uZ96sCilMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTZERS84RjM0MEREMDc1MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201 T2tTazlsNzdJS2dBMXQxLWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJaQ3KC93mTAl3bz+VwME349fXpGaZ49QrUH2HwkRLk0bSb+5ZEwEL ckOI5jJRRO4Dm9wB5y3CSOB8ZWzUeNQyXHRZzyZgcNo9agQBzWAlODc6kTY7BrC7 Vqfh3j1udrXbA2h/CPXMh4GxbXIzbXgE4ypquiy1fXSN5+TS6xk1uo8luaBK+HYr AQ78xEg8hKDHiLi2c/zVBRVz3pXNcYZimQHs3J+rMH8SLui9s8ki3Nr3OKoSVsSn FEC+anvn9xOSTyK59pbeWrcjhoHTf/CcRCGbpj1TLhhG0gc7j4hd2mNmIRRu1p9K exy9yPngGBl1txdql1TFJCFwlCBb+9oF -----END CERTIFICATE-----Generated at Sat Dec 6 16:13:44 2025 by rpki-client