This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: prjb1iI1Lc0apoHhiOplwsidbl8YEFgGsbTpLBd0c7A= Subject key identifier: 85:F6:93:4F:83:86:51:C0:60:D6:FB:15:2D:49:94:F0:6F:FD:3D:6D Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 368C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 35AB Signing time: Sat 06 Dec 2025 14:27:05 +0000 Manifest this update: Sat 06 Dec 2025 14:27:04 +0000 Manifest next update: Sat 13 Dec 2025 14:27:04 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: w3h40F9KJuNgGA0q+RS0XkZplJFUNjDezv8GbPP744A=) 2: 27616F5ECEAC11F0B2B83021C4F9AE02.roa (hash: Ng85rts7TuJ4suxeTKyV+2xKEOP3HO20US2v4nbeH94=) 3: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 4: 8FD552C071F111F0AE49323FC4F9AE02.roa (hash: k0XECPDgxEsPxo1hnPOQ8t+HVImApkPuGWwQ5OUwJvs=) 5: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 6: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 7: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (hash: gBF3Jk34am1InKRIBH9CrloJz67l7rFKCD8FkbkPjyM=) 11: E83E047071F111F0BBD1B63FC4F9AE02.roa (hash: vqgqViMpJQbvpRF0eRLHvKsvOmM8OQ5c7Ho2iOiRHUM=) 12: 3AE27D1ACEAD11F0AD3AAB23C4F9AE02.roa (hash: wKDfKWnAUSKFfJ5WZ6cJ4y7gKPKXQZBNObDI0iCga0k=) 13: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 14: C3D03364CC6511F0A9733883C4F9AE02.roa (hash: KSOQKILeRuvG96eEaMwaX1hZLod3jsbwPCaLou1WSdA=) 15: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13964 (0x368c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Dec 6 14:27:04 2025 GMT Not After : Dec 13 14:27:04 2025 GMT Subject: CN=69343d38-c795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fb:c5:59:10:c2:00:05:36:51:82:53:13:84: d8:74:ce:6d:ae:2e:15:bc:a8:43:52:ee:3e:de:35: 50:c2:b3:61:bb:4c:a2:1a:1e:b9:ba:b5:63:0d:30: 71:40:be:7a:ea:a3:d7:3a:27:0d:de:fa:db:1f:ba: 1e:ff:39:62:db:24:47:e3:8d:6a:b4:1b:cd:aa:56: 02:5f:22:2b:ec:1e:c2:d7:d2:e8:59:16:38:ea:a3: b4:8f:80:3e:e2:88:60:56:44:a5:18:d6:f5:db:2c: d2:a3:9b:b7:dc:5b:d7:29:c3:9b:cd:c4:aa:e0:52: 73:ab:85:9d:a2:af:5f:9b:c3:9d:6c:44:0d:46:08: 60:83:c2:b6:a4:64:cb:58:a0:06:00:eb:67:59:b4: 60:d9:17:2f:b2:5b:63:53:39:85:5a:c3:9c:6e:69: 95:4b:77:3b:ea:6f:2c:a8:b9:d1:b3:f8:41:c3:4e: 7f:3f:59:19:81:ea:23:7d:bb:fc:7a:26:e8:a7:aa: 35:da:51:03:1f:7b:dc:34:af:cf:59:78:9a:be:4c: a3:37:93:a2:56:89:51:f5:5a:26:90:73:e5:28:5a: e6:3b:fe:20:67:d7:36:5c:c3:72:2d:d7:43:1d:61: fa:b7:4a:fb:fa:a6:4e:6b:3e:7d:9e:a6:ab:2d:eb: 6e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F6:93:4F:83:86:51:C0:60:D6:FB:15:2D:49:94:F0:6F:FD:3D:6D X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:d1:23:44:88:6e:33:3f:2e:d6:5c:fd:2e:cc:a5:1c:07:9b: a0:80:67:e6:95:c0:56:ea:8c:39:2a:82:30:33:7a:66:02:4c: a8:b7:6c:51:86:80:62:61:80:6d:7c:72:8c:f6:c7:06:24:0b: 1b:c2:b9:0f:e9:03:26:7b:66:fe:c7:1a:9b:ed:0f:47:5a:ed: e5:b5:7e:b7:2a:9b:99:5e:be:cf:a1:e9:20:00:23:f9:f1:1b: e8:2e:ba:66:f5:6f:de:67:ad:a9:38:9e:0f:31:40:9e:aa:ec: 59:87:8f:0d:0d:fe:7a:60:93:79:fb:77:9a:b3:8d:bb:fb:fa: 56:96:33:4a:7c:40:ab:5a:91:d1:ef:a3:a8:60:b1:d9:1d:65: d2:9a:cb:53:51:72:15:53:cc:61:bd:71:7b:39:fa:c9:82:c0: 8a:1c:ae:e9:c9:d7:cc:80:4a:90:fe:5e:56:42:0b:56:8a:e8: 7e:49:d6:3b:07:a9:0a:b7:fe:df:4d:45:84:8f:b6:e7:17:37: 14:ad:82:1f:5c:dd:cf:b7:fc:89:42:70:9e:3e:2f:20:14:3d: af:54:56:37:37:35:68:f6:ba:8a:0c:31:82:0f:6e:82:dc:e2: 73:80:df:37:35:3b:a1:24:f0:a1:b8:5c:aa:42:f5:90:87:dd: d3:df:5b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUxMjA2MTQyNzA0WhcNMjUxMjEzMTQyNzA0WjAYMRYwFAYD VQQDEw02OTM0M2QzOC1jNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvvFWRDCAAU2UYJTE4TYdM5tri4VvKhDUu4+3jVQwrNhu0yiGh65urVjDTBx QL566qPXOicN3vrbH7oe/zli2yRH441qtBvNqlYCXyIr7B7C19LoWRY46qO0j4A+ 4ohgVkSlGNb12yzSo5u33FvXKcObzcSq4FJzq4Wdoq9fm8OdbEQNRghgg8K2pGTL WKAGAOtnWbRg2RcvsltjUzmFWsOcbmmVS3c76m8sqLnRs/hBw05/P1kZgeojfbv8 eibop6o12lEDH3vcNK/PWXiavkyjN5OiVolR9VomkHPlKFrmO/4gZ9c2XMNyLddD HWH6t0r7+qZOaz59nqarLetuiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIX2k0+D hlHAYNb7FS1JlPBv/T1tMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm0SNEiG4zPy7WXP0uzKUcB5uggGfmlcBW6ow5KoIwM3pmAkyot2xR hoBiYYBtfHKM9scGJAsbwrkP6QMme2b+xxqb7Q9HWu3ltX63KpuZXr7PoekgACP5 8RvoLrpm9W/eZ62pOJ4PMUCequxZh48NDf56YJN5+3eas427+/pWljNKfECrWpHR 76OoYLHZHWXSmstTUXIVU8xhvXF7OfrJgsCKHK7pydfMgEqQ/l5WQgtWiuh+SdY7 B6kKt/7fTUWEj7bnFzcUrYIfXN3Pt/yJQnCePi8gFD2vVFY3NzVo9rqKDDGCD26C 3OJzgN83NTuhJPChuFyqQvWQh93T31vO -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:51 2025 by rpki-client