This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: uf5BE9/wkL5Z/OT98qlZo/8uGuMSegkPcnRt5qJ3yFU= Subject key identifier: 1B:79:9B:E0:8A:34:83:86:2E:3E:05:A9:68:C4:80:52:33:DA:45:47 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0516 Signing time: Sun 14 Dec 2025 22:55:11 +0000 Manifest this update: Sun 14 Dec 2025 22:55:11 +0000 Manifest next update: Sun 21 Dec 2025 22:55:11 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: RNYsc6Kbut1YJ34KA7bPSc9qasmyUZMtPR1mn9bYlqs=) 2: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) 3: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Dec 14 22:55:11 2025 GMT Not After : Dec 21 22:55:11 2025 GMT Subject: CN=693f404f-bbff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:92:28:a3:7a:0e:8a:0e:16:95:63:0a:64:bd: 99:54:c1:96:b1:2c:35:48:19:f9:5f:d3:60:80:6e: f9:84:60:8f:76:aa:f4:dc:74:9f:30:81:8c:d7:f0: 90:e5:53:47:d6:39:6b:9e:ed:a3:ab:22:87:4a:86: 7c:e3:a0:71:e2:4c:85:47:57:30:82:41:e7:74:f7: 40:5a:9c:5d:85:67:8d:74:e0:cf:86:56:16:a7:f7: 8b:aa:af:07:7b:78:39:c1:6e:84:e7:64:b0:0d:85: e2:30:d2:fa:a3:6e:bd:6b:a7:56:40:e9:31:73:e7: 66:24:7b:c9:08:d5:29:c6:a0:c4:19:c7:c5:72:00: 61:02:bf:e8:22:cf:e1:ad:4a:31:88:41:b3:eb:28: 5a:72:95:00:85:96:fb:92:3d:2f:b4:86:50:4a:c9: 53:51:d2:e5:7e:4e:1b:8e:29:3f:28:96:70:28:53: 11:a2:63:80:93:7d:16:6c:27:15:77:f6:9e:2a:89: d7:d9:7c:23:c8:6f:18:7f:25:72:67:9a:9b:48:18: 7f:33:41:56:bf:3e:bf:18:2b:89:32:8d:b6:18:ee: 44:12:93:20:0e:7c:ad:41:3d:79:08:e2:db:0e:8a: c0:e5:1c:85:f2:34:73:8c:5c:ca:cf:59:57:86:cf: 7a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:79:9B:E0:8A:34:83:86:2E:3E:05:A9:68:C4:80:52:33:DA:45:47 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:d2:c4:4c:b5:30:bd:07:ce:22:03:af:fd:26:1a:53:77:60: 62:9e:55:b9:3b:2b:e6:6b:be:36:c3:2d:cc:22:bc:6b:7a:65: 0f:e8:15:77:57:11:b0:31:2c:32:e6:f5:7d:15:4f:dc:2d:fc: 46:0d:65:5d:b2:ea:75:eb:01:f7:bb:70:eb:50:42:0a:48:56: 03:3b:5b:86:6d:a6:5f:91:9e:84:c3:56:52:d6:22:01:62:19: b7:e0:1d:a8:1d:2d:04:97:eb:3d:c7:b5:a7:ef:25:ba:a0:d8: 17:e7:21:55:e4:69:ca:7b:ba:64:c4:98:47:37:7b:12:5d:01: ea:23:dd:45:f5:b5:0b:d8:eb:a1:c7:47:ca:a1:a1:e8:fd:8c: 19:85:6b:51:75:ab:67:07:15:5e:af:76:de:d6:06:24:9a:dd: 3f:66:8d:5c:af:03:fc:dc:9e:6f:5e:0f:89:13:0e:28:e4:98: 69:96:2d:f2:d5:df:e6:55:c7:6b:e0:5d:13:5b:96:b4:c7:e6: 1f:11:3d:47:02:81:f2:8c:86:72:3c:34:0a:3f:4b:19:ed:fb: 57:1d:ab:bc:21:5c:8e:64:d1:4d:91:a2:dd:f7:1b:24:1d:41: f5:67:b7:7e:b7:29:ef:90:32:c3:0e:a4:60:1d:da:b2:71:d9: cf:1b:99:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMjE0MjI1NTExWhcNMjUxMjIxMjI1NTExWjAYMRYwFAYD VQQDDA02OTNmNDA0Zi1iYmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ZIoo3oOig4WlWMKZL2ZVMGWsSw1SBn5X9NggG75hGCPdqr03HSfMIGM1/CQ 5VNH1jlrnu2jqyKHSoZ846Bx4kyFR1cwgkHndPdAWpxdhWeNdODPhlYWp/eLqq8H e3g5wW6E52SwDYXiMNL6o269a6dWQOkxc+dmJHvJCNUpxqDEGcfFcgBhAr/oIs/h rUoxiEGz6yhacpUAhZb7kj0vtIZQSslTUdLlfk4bjik/KJZwKFMRomOAk30WbCcV d/aeKonX2XwjyG8YfyVyZ5qbSBh/M0FWvz6/GCuJMo22GO5EEpMgDnytQT15COLb DorA5RyF8jRzjFzKz1lXhs96/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt5m+CK NIOGLj4FqWjEgFIz2kVHMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx0sRMtTC9B84iA6/9JhpTd2BinlW5Oyvma742wy3MIrxremUP6BV3 VxGwMSwy5vV9FU/cLfxGDWVdsup16wH3u3DrUEIKSFYDO1uGbaZfkZ6Ew1ZS1iIB Yhm34B2oHS0El+s9x7Wn7yW6oNgX5yFV5GnKe7pkxJhHN3sSXQHqI91F9bUL2Ouh x0fKoaHo/YwZhWtRdatnBxVer3be1gYkmt0/Zo1crwP83J5vXg+JEw4o5Jhpli3y 1d/mVcdr4F0TW5a0x+YfET1HAoHyjIZyPDQKP0sZ7ftXHau8IVyOZNFNkaLd9xsk HUH1Z7d+tynvkDLDDqRgHdqycdnPG5k3 -----END CERTIFICATE-----Generated at Tue Dec 16 12:52:03 2025 by rpki-client