This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: HwrZBWv3eGakQ+1xzr3BqMUbTs2764earerm8YzJIQ8= Subject key identifier: B0:B9:9F:51:D4:18:31:DA:66:9E:00:DF:87:D2:7A:14:89:B4:15:AB Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A52 Signing time: Sat 20 Dec 2025 19:10:48 +0000 Manifest this update: Sat 20 Dec 2025 19:10:47 +0000 Manifest next update: Sat 27 Dec 2025 19:10:47 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: UMDDKqMkmt+ZXJ4YmGV9yMuADNEfUDgN2P7Jq0m99II=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Dec 20 19:10:47 2025 GMT Not After : Dec 27 19:10:47 2025 GMT Subject: CN=6946f4b8-3a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5e:c7:a9:4b:03:f2:6c:8a:73:0a:d5:99:d8: 09:ec:40:37:bc:64:7d:56:6b:70:46:70:d9:5e:a5: 97:be:5d:75:3f:e0:61:fe:94:c5:a5:19:0b:28:10: d2:1e:0c:25:61:34:23:1a:96:8b:fa:3a:7e:a6:e3: 5f:82:45:ad:62:c3:ab:35:69:cc:d6:99:a0:7f:61: 9b:02:c8:74:9f:e2:a3:39:1c:1d:fb:6d:fc:2a:d3: cc:e0:9e:ba:7a:d5:ce:c3:79:94:ed:d4:a0:7a:ff: d3:27:cb:db:82:7f:ef:a6:e6:8a:7a:91:2f:97:40: 7d:0c:2a:81:4e:c7:b3:e8:ff:0c:c7:e1:ff:48:57: 82:1c:f1:0f:66:46:e5:91:d6:4b:a7:25:0f:3e:67: c9:7b:5e:05:b6:09:2c:36:f2:01:71:7a:af:ea:39: d3:39:fc:59:7a:1f:9b:12:64:0f:4e:29:48:4c:81: d4:0d:c4:9f:16:1e:c8:7a:e5:5f:e7:eb:66:fb:b2: 9d:23:17:c5:85:d3:7e:fb:c1:f3:95:f2:33:7e:aa: 23:1f:f8:6d:52:ca:51:53:9d:92:b4:88:fb:3b:57: 05:02:30:a2:ad:14:11:60:81:88:73:f0:b2:55:22: 1d:64:8b:f6:a8:3b:3c:d3:00:33:cc:58:0d:4f:2e: 27:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B9:9F:51:D4:18:31:DA:66:9E:00:DF:87:D2:7A:14:89:B4:15:AB X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:fb:6d:2d:a2:6f:74:57:c9:54:d5:59:40:fa:91:61:24:ee: 06:7d:f1:15:6b:75:6e:f2:a8:b8:0a:fe:35:2e:d5:dd:87:a6: b9:4d:6a:89:ba:7b:ce:d9:a6:92:04:4d:03:ad:9f:79:fe:c2: 42:ed:a0:e7:be:4c:6d:c4:e5:8c:48:ce:51:e6:9a:ed:f9:25: 3a:a6:50:11:8f:5f:7d:aa:f4:1f:2b:1e:1f:e2:11:90:7f:ad: 47:47:fa:91:d4:87:a2:82:47:3f:58:77:fc:5c:7c:9f:8b:6e: 4b:75:41:af:fa:3a:29:ac:9c:c3:ee:b8:bb:c8:bd:a1:8f:76: b8:fa:26:7d:51:45:bd:b6:a7:bf:a6:5b:80:72:91:a0:d8:3c: e1:9e:58:5c:33:ec:6a:5d:4d:e3:ce:89:23:f1:18:34:7e:4c: a4:96:11:c2:22:c9:85:87:54:34:da:65:5d:e2:51:55:18:cd: 7d:e5:77:95:44:0b:f7:1f:61:37:a1:92:28:47:b9:82:1d:a9: 9d:12:2b:d2:af:96:e6:18:89:30:a0:f0:a2:32:e2:9e:93:fa: e5:9e:03:9c:e3:69:8d:50:83:b3:3f:25:2e:3b:0a:3a:4a:66: 9c:9d:0e:0e:b4:eb:55:e5:65:22:8c:8c:c0:9c:fe:b2:6d:6a: de:81:82:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMjIwMTkxMDQ3WhcNMjUxMjI3MTkxMDQ3WjAYMRYwFAYD VQQDDA02OTQ2ZjRiOC0zYTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4V7HqUsD8myKcwrVmdgJ7EA3vGR9VmtwRnDZXqWXvl11P+Bh/pTFpRkLKBDS HgwlYTQjGpaL+jp+puNfgkWtYsOrNWnM1pmgf2GbAsh0n+KjORwd+238KtPM4J66 etXOw3mU7dSgev/TJ8vbgn/vpuaKepEvl0B9DCqBTsez6P8Mx+H/SFeCHPEPZkbl kdZLpyUPPmfJe14FtgksNvIBcXqv6jnTOfxZeh+bEmQPTilITIHUDcSfFh7IeuVf 5+tm+7KdIxfFhdN++8HzlfIzfqojH/htUspRU52StIj7O1cFAjCirRQRYIGIc/Cy VSIdZIv2qDs80wAzzFgNTy4njwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLC5n1HU GDHaZp4A34fSehSJtBWrMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj+20tom90V8lU1VlA+pFhJO4GffEVa3Vu8qi4Cv41LtXdh6a5TWqJ unvO2aaSBE0DrZ95/sJC7aDnvkxtxOWMSM5R5prt+SU6plARj199qvQfKx4f4hGQ f61HR/qR1Ieigkc/WHf8XHyfi25LdUGv+joprJzD7ri7yL2hj3a4+iZ9UUW9tqe/ pluAcpGg2DzhnlhcM+xqXU3jzokj8Rg0fkyklhHCIsmFh1Q02mVd4lFVGM195XeV RAv3H2E3oZIoR7mCHamdEivSr5bmGIkwoPCiMuKek/rlngOc42mNUIOzPyUuOwo6 SmacnQ4OtOtV5WUijIzAnP6ybWregYID -----END CERTIFICATE-----Generated at Sun Dec 21 16:44:58 2025 by rpki-client