This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft File: f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft (raw, json) Hash identifier: BC3i9Rv20DkNKJWrmSgvQh95V+64zOprJ/qD6TPuWCc= Subject key identifier: CA:18:6E:C9:0D:61:61:D8:22:AA:8B:83:FB:FC:B5:68:2C:BC:44:3B Authority key identifier: 7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 Certificate issuer: /CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Certificate serial: 08F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft Manifest number: 08C2 Signing time: Sat 20 Dec 2025 14:43:02 +0000 Manifest this update: Sat 20 Dec 2025 14:43:02 +0000 Manifest next update: Sat 27 Dec 2025 14:43:02 +0000 Files and hashes: 1: f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl (hash: 57XTpqt4miiUi1d3Yok2cp55Iti5mGUhGAOTWxDJ0Vc=) 2: AB20F8C0DD3311EF8B8A711FC4F9AE02.roa (hash: geYBmD1DM/AUXSPUgRalrZ3WyRIJCoCzSg/oC0uheIE=) 3: 0A0B8CF8308911F0A95E944AC4F9AE02.roa (hash: zD1hAOWgfFf8imPdjoaN6Kre5zSjJhCHRQDKqb4UceI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2290 (0x8f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B, serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Validity Not Before: Dec 20 14:43:02 2025 GMT Not After : Dec 27 14:43:02 2025 GMT Subject: CN=6946b5f6-c507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:79:b3:62:e8:8f:9c:2f:03:f1:67:50:c8:f0: c8:85:7e:ff:61:44:e4:26:a5:34:92:28:f9:51:9d: 2c:b3:43:eb:5d:2a:6e:a8:63:36:52:fa:b2:11:81: 4d:95:78:8e:a8:32:51:5a:60:7a:1c:94:81:2a:4b: dc:ce:47:55:0d:72:04:5e:06:2c:6f:6c:30:b6:bf: c7:13:14:74:3d:9c:51:bf:34:c4:56:6b:2d:55:84: e9:6b:fd:2d:ca:3d:20:9a:72:20:b0:e5:b0:b0:59: 91:43:ef:68:34:ce:3f:00:49:76:bf:94:58:ea:d5: 53:00:eb:36:2c:43:d3:d3:7f:fa:3d:3c:b7:53:48: 09:fa:5d:cb:62:22:b0:b5:82:7e:82:0a:48:aa:85: 70:b9:3e:ae:5c:1d:cf:86:4e:3e:46:c2:b4:48:99: dc:bc:fd:6b:56:4c:d0:af:12:e5:66:cf:18:1b:36: aa:c8:95:59:58:85:a9:e8:7f:47:51:4c:59:cf:08: 65:e5:21:1e:fd:4e:d9:6a:59:20:98:a7:4c:2e:86: d9:c6:a3:46:fc:27:3d:08:a7:bf:91:45:d0:79:54: 29:8e:61:ba:dd:7a:94:40:99:f6:4f:4c:41:fe:2d: 28:3d:25:41:a5:e9:14:f7:89:4c:b2:21:9a:92:b8: c7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:18:6E:C9:0D:61:61:D8:22:AA:8B:83:FB:FC:B5:68:2C:BC:44:3B X509v3 Authority Key Identifier: keyid:7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c3:7f:45:d6:8f:2e:76:32:1e:32:59:5f:73:68:fb:a6:1c: dd:0c:4e:df:02:70:f3:a9:a1:82:39:8b:99:c7:7c:6c:30:6c: cd:b6:4e:f0:29:5f:3a:b6:21:f2:da:bf:5d:f4:57:c4:22:12: f5:ba:67:32:5d:c2:aa:fc:85:a3:ed:d7:68:ee:7f:e9:15:9a: 01:57:02:01:54:28:b9:03:9d:2b:46:f3:08:19:21:ed:61:01: 43:a3:b2:30:cb:c7:0b:34:c4:35:e4:9f:e1:d0:90:05:e1:a2: 62:62:47:12:83:fb:2f:4f:0c:4f:b2:0d:ff:80:ae:bf:97:e7: 4f:ad:79:8f:35:c9:e6:53:cf:10:62:7f:c2:f6:c4:8d:bc:42: 57:b5:42:7c:51:e8:81:4f:e6:92:29:ff:a6:cb:fc:a2:07:39: 1f:46:01:96:05:4e:09:f1:6c:2e:b5:b7:83:e5:d0:1b:19:e7: 41:c4:f4:ce:63:3b:a9:b4:07:c9:2b:32:c1:0d:b4:51:fe:d2: da:b1:bc:b8:0e:35:3b:39:16:f3:6f:4c:d6:fb:94:7d:e9:7b: 25:9a:3d:a1:68:48:a0:1c:ad:70:db:53:0c:ee:86:8f:bd:74: e8:0a:32:66:81:07:23:1f:36:40:2f:7f:b0:6e:e8:6c:24:a0: 1f:be:29:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDdGNzk2NjVFNjNCRjNDRDU2REMyNEEwQTcwRDU3RjlB OTQyREQxQjgwHhcNMjUxMjIwMTQ0MzAyWhcNMjUxMjI3MTQ0MzAyWjAYMRYwFAYD VQQDDA02OTQ2YjVmNi1jNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83mzYuiPnC8D8WdQyPDIhX7/YUTkJqU0kij5UZ0ss0PrXSpuqGM2UvqyEYFN lXiOqDJRWmB6HJSBKkvczkdVDXIEXgYsb2wwtr/HExR0PZxRvzTEVmstVYTpa/0t yj0gmnIgsOWwsFmRQ+9oNM4/AEl2v5RY6tVTAOs2LEPT03/6PTy3U0gJ+l3LYiKw tYJ+ggpIqoVwuT6uXB3Phk4+RsK0SJncvP1rVkzQrxLlZs8YGzaqyJVZWIWp6H9H UUxZzwhl5SEe/U7ZalkgmKdMLobZxqNG/Cc9CKe/kUXQeVQpjmG63XqUQJn2T0xB /i0oPSVBpekU94lMsiGakrjHzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoYbskN YWHYIqqLg/v8tWgsvEQ7MB8GA1UdIwQYMBaAFH95Zl5jvzzVbcJKCnDVf5qULdG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi81QkZDRkY4Q0Q2 MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BOVnR3a29LY05WX21wUXQw YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2YzbG1YbU9fUE5WdHdrb0tjTlZfbXBRdDBiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEM3Qi81QkZDRkY4Q0Q2MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BO VnR3a29LY05WX21wUXQwYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRw39F1o8udjIeMllfc2j7phzdDE7fAnDzqaGCOYuZx3xsMGzNtk7w KV86tiHy2r9d9FfEIhL1umcyXcKq/IWj7ddo7n/pFZoBVwIBVCi5A50rRvMIGSHt YQFDo7Iwy8cLNMQ15J/h0JAF4aJiYkcSg/svTwxPsg3/gK6/l+dPrXmPNcnmU88Q Yn/C9sSNvEJXtUJ8UeiBT+aSKf+my/yiBzkfRgGWBU4J8WwutbeD5dAbGedBxPTO YzuptAfJKzLBDbRR/tLasby4DjU7ORbzb0zW+5R96Xslmj2haEigHK1w21MM7oaP vXToCjJmgQcjHzZAL3+wbuhsJKAfvimJ -----END CERTIFICATE-----Generated at Sat Dec 20 21:53:27 2025 by rpki-client