This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: 5iXg78a7fXrV0WhT/Fp74ZnjblwZ26aWO9rLAMs1Wgo= Subject key identifier: FD:FE:64:69:C3:61:AD:1C:48:6F:5C:5B:8B:4B:3B:B6:EE:25:70:4E Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34ED Signing time: Thu 04 Dec 2025 15:07:16 +0000 Manifest this update: Thu 04 Dec 2025 15:07:16 +0000 Manifest next update: Thu 11 Dec 2025 15:07:16 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: Qy/Lk5j0J4a9kCmodANMajtae3zUgrJw2VpXmpykQsg=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: RGbkUiQObiN5kNn1fOoTLpQbUrsGEdo5yysiJ0yuXAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13557 (0x34f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Dec 4 15:07:16 2025 GMT Not After : Dec 11 15:07:16 2025 GMT Subject: CN=6931a3a4-f57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:ee:80:08:12:8c:f6:ba:fa:66:35:88:c1: 6e:78:b6:d5:11:af:77:bf:ee:f6:f9:55:16:bf:75: 50:50:e0:cb:d5:e7:96:f5:41:e1:bc:c3:bd:83:94: 32:76:54:aa:d1:ee:62:67:51:45:ee:e5:78:47:42: 7c:f5:3b:af:d8:2e:49:f2:39:a4:2f:4d:ba:fd:62: 58:a4:60:4e:5a:5a:58:be:63:7a:e3:db:6b:31:bc: 60:f1:47:c3:1e:0e:a1:24:9d:77:b7:ce:fc:1e:32: 6f:3f:b0:84:67:36:0b:bb:26:62:23:a9:be:e0:26: b2:50:e6:2f:56:1a:e2:e0:e0:a0:27:ed:af:75:6b: 1c:b1:f5:f0:40:ea:4a:b0:e9:07:10:d3:38:9f:98: 1a:e2:7e:7a:69:46:d7:98:4b:22:62:da:a5:58:02: 6d:4d:20:f0:a8:7e:84:ad:1f:c4:0a:fa:d9:5d:2c: ca:e4:8a:7b:c4:ab:e1:a7:76:db:d2:a4:ab:d4:f0: 19:b1:6c:3c:f5:4e:25:d8:71:a5:ff:7d:e4:99:e4: ce:13:3a:9a:84:bc:0f:2d:48:e0:1f:a9:ca:c9:9b: 2f:9f:1f:b9:ab:5b:57:40:25:1b:10:a0:81:78:95: b3:0e:db:44:1c:9e:f7:b4:2c:b3:c2:22:76:5f:10: a9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FE:64:69:C3:61:AD:1C:48:6F:5C:5B:8B:4B:3B:B6:EE:25:70:4E X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:18:9e:81:44:41:ff:89:a1:63:03:4d:4a:e2:12:62:bb:46: 8d:bd:6c:86:02:24:8d:08:fd:93:94:ff:a4:c1:51:5c:b9:48: 36:05:eb:2d:24:72:5f:1c:27:c8:72:0c:f2:95:04:ae:8c:25: 5c:03:15:e8:5d:82:ae:41:7f:5f:45:c6:3a:23:aa:99:67:28: 98:8c:f3:f4:1e:56:00:50:df:d0:0d:cb:59:b9:7e:11:c9:3f: d8:53:4a:36:72:0a:28:4f:47:5e:58:da:6b:cf:91:da:a8:cc: 9a:fd:67:62:9e:75:ac:ec:62:b0:96:92:5b:34:c3:70:22:be: 19:61:32:2c:1a:14:4f:97:dd:58:39:0a:ec:4a:11:6f:7a:43: 18:b4:17:02:3d:04:d0:81:0e:32:80:3c:c4:41:78:9f:9a:81: 0b:c1:6c:7e:75:7d:de:45:f0:3f:3a:d3:bb:44:bf:9d:78:1d: 88:a9:e8:11:71:aa:37:4c:c9:0d:ec:aa:f4:51:98:df:ab:b8: 97:ec:db:56:ac:cf:a5:b1:66:af:de:73:f6:9b:18:8e:eb:51: df:92:e3:26:11:86:d5:dc:c7:a0:ef:ff:79:c6:9f:b5:4e:e8: b6:77:6d:bc:03:4d:f4:4c:fd:00:5b:8e:75:f2:cd:a3:d8:a1: 3c:24:11:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUxMjA0MTUwNzE2WhcNMjUxMjExMTUwNzE2WjAYMRYwFAYD VQQDEw02OTMxYTNhNC1mNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOnugAgSjPa6+mY1iMFueLbVEa93v+72+VUWv3VQUODL1eeW9UHhvMO9g5Qy dlSq0e5iZ1FF7uV4R0J89Tuv2C5J8jmkL026/WJYpGBOWlpYvmN649trMbxg8UfD Hg6hJJ13t878HjJvP7CEZzYLuyZiI6m+4CayUOYvVhri4OCgJ+2vdWscsfXwQOpK sOkHENM4n5ga4n56aUbXmEsiYtqlWAJtTSDwqH6ErR/ECvrZXSzK5Ip7xKvhp3bb 0qSr1PAZsWw89U4l2HGl/33kmeTOEzqahLwPLUjgH6nKyZsvnx+5q1tXQCUbEKCB eJWzDttEHJ73tCyzwiJ2XxCpzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3+ZGnD Ya0cSG9cW4tLO7buJXBOMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmGJ6BREH/iaFjA01K4hJiu0aNvWyGAiSNCP2TlP+kwVFcuUg2Best JHJfHCfIcgzylQSujCVcAxXoXYKuQX9fRcY6I6qZZyiYjPP0HlYAUN/QDctZuX4R yT/YU0o2cgooT0deWNprz5HaqMya/WdinnWs7GKwlpJbNMNwIr4ZYTIsGhRPl91Y OQrsShFvekMYtBcCPQTQgQ4ygDzEQXifmoELwWx+dX3eRfA/OtO7RL+deB2IqegR cao3TMkN7Kr0UZjfq7iX7NtWrM+lsWav3nP2mxiO61HfkuMmEYbV3Meg7/95xp+1 Tui2d228A030TP0AW4518s2j2KE8JBEG -----END CERTIFICATE-----Generated at Sat Dec 6 12:25:07 2025 by rpki-client