This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: z3CJraChX9rZid9QmH5J2+a/zfzeFFmtLESrHGtOSIQ= Subject key identifier: 7B:E2:D3:54:C1:B2:EA:21:16:4E:8D:10:03:A8:47:C8:88:C8:3C:B6 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 34F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 34EC Signing time: Sun 14 Dec 2025 15:07:27 +0000 Manifest this update: Sun 14 Dec 2025 15:07:26 +0000 Manifest next update: Sun 21 Dec 2025 15:07:26 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: BJk9Ft6oSfW10h2hWIBGduUQy4WR0cGKkWLYSYIKWAM=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: zHkGq6W1DSD5ffW+BnhDs7qnRsRpvtxDIEM0SIuuDg4=) 3: 41623A12778111ED8F236A62C4F9AE02.roa (hash: OYhGj+v27n+SqxvC/qZ2JFeWyJlSzi9WwyujTQsPl7E=) 4: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: /yGsH3AYsghIUdTIUcXoSyBB3f9raZ59e9j2Pg64iUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Dec 14 15:07:26 2025 GMT Not After : Dec 21 15:07:26 2025 GMT Subject: CN=693ed2af-d0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:39:da:19:96:01:58:5f:30:16:7f:02:09:04: d2:61:13:46:64:16:6d:3e:36:04:a2:eb:ed:82:06: d0:c2:e2:ee:b4:42:a6:8d:de:97:71:dd:ff:f9:0c: 9a:cf:f3:61:e7:27:91:95:72:2f:d5:58:ac:41:f0: 26:40:72:b3:10:d7:1b:6d:96:70:b8:2e:c3:ba:e0: c4:3e:65:26:8a:af:f1:65:c5:02:2b:fb:b1:33:ff: c8:a4:95:c7:c9:6a:10:4c:30:a9:11:0f:1f:ff:a6: a5:46:bd:f7:17:05:ad:70:29:6f:3e:87:5a:dc:0b: 1e:42:df:cf:e5:62:0e:ef:09:7e:7e:15:d7:cf:8e: 4a:06:9a:97:5a:79:e8:95:84:ef:be:fc:00:dd:59: 6f:63:17:e6:5b:16:04:40:ed:c4:49:54:79:1b:54: f3:38:dc:11:07:63:7a:4d:f9:52:85:16:06:06:96: bc:6b:d5:dc:33:69:ad:f1:68:f2:af:13:a8:8b:94: 3c:ba:c1:65:f9:52:c3:6f:1f:03:b3:63:bd:43:91: 4d:a7:ce:5e:da:9d:30:9a:54:c2:53:9c:77:0c:29: 57:20:bb:82:5d:7c:ea:ba:76:cc:3d:a3:01:a5:95: 00:43:c0:2f:56:8f:63:94:0c:2e:fc:de:a3:a9:f4: e3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E2:D3:54:C1:B2:EA:21:16:4E:8D:10:03:A8:47:C8:88:C8:3C:B6 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:3c:da:9f:3c:97:a6:c1:2f:b1:0a:fc:2b:eb:60:b9:d4:68: cc:19:51:f4:dd:7a:32:9d:d2:fc:85:63:92:d8:fd:9a:e4:9a: de:d1:1f:04:75:3a:4e:22:3f:5d:55:dc:32:0b:7e:d5:01:f8: 4e:45:cf:be:5d:4e:ae:b9:47:6c:2b:ea:d6:d9:ca:1b:ef:f3: d0:bc:40:da:d7:7e:d9:39:0b:7d:a8:6e:87:b2:70:c1:de:16: e4:60:ac:7c:4f:9d:03:48:36:cb:61:60:0e:a0:41:a3:b6:58: ed:9b:1d:8d:14:8c:13:18:ec:bd:04:f4:be:be:b5:b0:0e:5e: 8a:57:cd:ba:c8:c9:80:aa:23:c2:b2:dc:10:1a:64:fa:be:4c: 23:87:43:c4:5a:11:ca:a1:bd:6f:f7:0f:f1:2a:1d:cd:e1:0f: a5:02:7e:37:71:47:b7:e2:cf:59:61:d5:fa:92:29:29:b6:e4: 52:c1:de:40:6f:32:46:6d:f5:ce:a9:d2:8f:e9:b6:1c:df:57: ed:8f:de:90:ce:af:03:93:aa:9f:39:f1:25:b3:7f:27:30:a4: f2:a4:13:39:ec:71:9a:97:0f:b8:dd:a5:0d:62:5b:cd:03:00: a6:6b:d9:d9:6d:04:af:79:6b:23:47:79:a8:2a:52:f1:86:bd: 95:e3:63:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjUxMjE0MTUwNzI2WhcNMjUxMjIxMTUwNzI2WjAYMRYwFAYD VQQDDA02OTNlZDJhZi1kMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTnaGZYBWF8wFn8CCQTSYRNGZBZtPjYEouvtggbQwuLutEKmjd6Xcd3/+Qya z/Nh5yeRlXIv1VisQfAmQHKzENcbbZZwuC7DuuDEPmUmiq/xZcUCK/uxM//IpJXH yWoQTDCpEQ8f/6alRr33FwWtcClvPoda3AseQt/P5WIO7wl+fhXXz45KBpqXWnno lYTvvvwA3VlvYxfmWxYEQO3ESVR5G1TzONwRB2N6TflShRYGBpa8a9XcM2mt8Wjy rxOoi5Q8usFl+VLDbx8Ds2O9Q5FNp85e2p0wmlTCU5x3DClXILuCXXzqunbMPaMB pZUAQ8AvVo9jlAwu/N6jqfTjYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvi01TB suohFk6NEAOoR8iIyDy2MB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6PNqfPJemwS+xCvwr62C51GjMGVH03XoyndL8hWOS2P2a5Jre0R8E dTpOIj9dVdwyC37VAfhORc++XU6uuUdsK+rW2cob7/PQvEDa137ZOQt9qG6HsnDB 3hbkYKx8T50DSDbLYWAOoEGjtljtmx2NFIwTGOy9BPS+vrWwDl6KV826yMmAqiPC stwQGmT6vkwjh0PEWhHKob1v9w/xKh3N4Q+lAn43cUe34s9ZYdX6kikptuRSwd5A bzJGbfXOqdKP6bYc31ftj96Qzq8Dk6qfOfEls38nMKTypBM57HGalw+43aUNYlvN AwCma9nZbQSveWsjR3moKlLxhr2V42Mb -----END CERTIFICATE-----Generated at Tue Dec 16 14:42:35 2025 by rpki-client