This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Ep3mFoOFhmFHYClKAjFQbFSAw0T8RlhrYfNObu9W8wE= Subject key identifier: 0B:57:FF:47:7B:30:F7:3E:01:1F:C8:E0:96:16:63:14:A3:05:0D:52 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34E8 Signing time: Sat 06 Dec 2025 15:04:20 +0000 Manifest this update: Sat 06 Dec 2025 15:04:19 +0000 Manifest next update: Sat 13 Dec 2025 15:04:19 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: x+qK4RSTAgyTipGiTbGTVyrvy6pilsLGl9qfG7lEGV0=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Dec 6 15:04:19 2025 GMT Not After : Dec 13 15:04:19 2025 GMT Subject: CN=693445f4-497a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:13:16:f1:df:04:91:05:54:6e:12:d7:e5:8e: 75:38:b6:b1:ad:4d:28:3c:45:91:07:db:2c:68:d6: 96:c4:09:b1:09:66:42:dd:db:df:94:27:60:53:aa: 2b:fa:32:10:f6:bb:d4:d7:08:94:41:8f:96:0c:45: b5:62:67:02:fd:86:7c:ff:aa:be:d8:53:57:0b:5e: aa:92:0d:d4:91:c9:51:c0:a7:d0:08:5a:52:b6:40: 0a:ee:b6:f3:8c:c7:bc:8d:4e:6e:38:2f:5f:e1:4e: c3:5e:ea:96:ff:cf:14:7a:9b:31:46:bc:ce:e8:ac: 04:d5:e0:22:c6:ab:d4:73:e5:bd:95:c6:b1:ab:88: 50:1c:a4:08:b1:b3:c7:da:5e:46:87:4c:a8:d3:e0: a9:99:b5:32:12:d2:2d:09:d8:31:03:9e:4e:05:da: e6:61:a4:c6:18:48:0e:5b:9c:d4:73:ae:b2:63:c6: f8:de:a9:89:89:0a:09:69:68:3b:7a:0d:a0:aa:75: 7b:25:3e:5c:9e:12:bc:2f:02:96:e0:34:23:80:1f: 8e:3c:8d:1e:02:25:8b:ba:c1:0a:6f:0f:bc:5f:40: 9d:b6:ae:cd:eb:3a:28:5a:0a:f9:0a:60:d8:a3:97: 54:5a:46:3b:5d:9b:49:55:d0:8d:77:3c:0c:5f:2a: 6b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:57:FF:47:7B:30:F7:3E:01:1F:C8:E0:96:16:63:14:A3:05:0D:52 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:d7:6b:76:c4:7c:3b:cb:cb:61:dd:e5:bb:90:05:92:30:f8: 42:8f:b5:2b:6e:51:43:7c:c8:74:ec:15:f8:3b:2d:4e:2c:0e: 26:f2:a1:f3:0f:47:09:fb:18:7d:16:71:58:d2:b0:cc:f6:ce: 78:96:f7:4a:77:26:a2:fb:f7:31:25:75:70:f1:ee:4a:6e:4e: 7d:16:52:c9:2f:04:83:46:ca:23:1d:be:ac:63:85:57:72:dc: f3:1a:92:24:98:bb:0e:0a:e5:e4:e5:eb:51:8a:35:bb:58:6f: 43:0c:f5:c3:08:82:4d:ec:23:be:a5:b2:3a:7c:cb:0e:a7:14: 19:f7:bb:ba:68:1a:84:d3:c5:ca:de:26:ed:10:cc:48:dc:2d: 9f:20:ad:14:46:30:61:c4:45:4f:1e:95:f1:31:5e:11:6b:1b: 48:c7:93:4f:f2:af:a2:8b:6a:37:ce:dd:d1:53:e4:f9:6e:6c: 05:04:ee:f3:1b:68:7f:89:db:ab:7c:10:07:66:cd:eb:8f:18: 40:12:df:26:05:7f:e9:62:21:cb:52:f6:f1:ac:96:c3:4d:d7: 14:d2:d7:1c:80:ef:ef:76:35:96:bf:f7:77:77:b1:53:b4:37: aa:d2:81:a8:31:f9:d3:52:a6:4b:84:f8:6f:b4:bc:9b:3e:1b: 28:7d:d4:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMjA2MTUwNDE5WhcNMjUxMjEzMTUwNDE5WjAYMRYwFAYD VQQDEw02OTM0NDVmNC00OTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hMW8d8EkQVUbhLX5Y51OLaxrU0oPEWRB9ssaNaWxAmxCWZC3dvflCdgU6or +jIQ9rvU1wiUQY+WDEW1YmcC/YZ8/6q+2FNXC16qkg3UkclRwKfQCFpStkAK7rbz jMe8jU5uOC9f4U7DXuqW/88UepsxRrzO6KwE1eAixqvUc+W9lcaxq4hQHKQIsbPH 2l5Gh0yo0+CpmbUyEtItCdgxA55OBdrmYaTGGEgOW5zUc66yY8b43qmJiQoJaWg7 eg2gqnV7JT5cnhK8LwKW4DQjgB+OPI0eAiWLusEKbw+8X0Cdtq7N6zooWgr5CmDY o5dUWkY7XZtJVdCNdzwMXyprqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtX/0d7 MPc+AR/I4JYWYxSjBQ1SMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA12t2xHw7y8th3eW7kAWSMPhCj7UrblFDfMh07BX4Oy1OLA4m8qHz D0cJ+xh9FnFY0rDM9s54lvdKdyai+/cxJXVw8e5Kbk59FlLJLwSDRsojHb6sY4VX ctzzGpIkmLsOCuXk5etRijW7WG9DDPXDCIJN7CO+pbI6fMsOpxQZ97u6aBqE08XK 3ibtEMxI3C2fIK0URjBhxEVPHpXxMV4RaxtIx5NP8q+ii2o3zt3RU+T5bmwFBO7z G2h/idurfBAHZs3rjxhAEt8mBX/pYiHLUvbxrJbDTdcU0tccgO/vdjWWv/d3d7FT tDeq0oGoMfnTUqZLhPhvtLybPhsofdTi -----END CERTIFICATE-----Generated at Sun Dec 7 02:48:15 2025 by rpki-client