This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft File: 3UhfmiMRbUEQwHvThx70phTsTSw.mft (raw, json) Hash identifier: y1aPl3dSa/6iZwA5l4UDD/4T9lPglbM3vmwp7YrtP9Q= Subject key identifier: 65:90:E3:37:97:89:C1:B7:CF:07:F7:6C:8F:11:4E:14:4B:FF:6B:4D Authority key identifier: DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C Certificate issuer: /CN=A91331AA/serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft Manifest number: 09 Signing time: Sun 07 Dec 2025 06:01:14 +0000 Manifest this update: Sun 07 Dec 2025 06:01:13 +0000 Manifest next update: Sun 14 Dec 2025 06:01:13 +0000 Files and hashes: 1: 3UhfmiMRbUEQwHvThx70phTsTSw.crl (hash: LIusIREap0eOd9Ajfr+SGzfg1GnmJm/pb95noWCWa5Y=) 2: DAC133B0C8EC11F08ED15548C4F9AE02.roa (hash: PjuAZHymRLgjyU1+dD4M+di6u+meaNL5ZJGfrmfJ0m8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 06:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91331AA, serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Validity Not Before: Dec 7 06:01:13 2025 GMT Not After : Dec 14 06:01:13 2025 GMT Subject: CN=6935182a-55d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b1:91:fb:fa:28:31:9c:0f:a3:4d:d2:91:84: 46:8b:73:ed:26:b0:3d:0f:0c:0a:d1:2e:9f:24:94: 11:6a:6d:f3:5b:43:a5:2f:a7:3d:08:cd:08:24:4f: 5e:77:01:2a:65:48:48:d3:d3:f4:f3:0f:1a:90:ef: b6:9c:ba:6e:a2:2f:bb:05:74:3f:d1:f5:69:aa:70: d2:57:bf:d4:2a:e0:be:76:7c:82:0b:83:2c:26:d0: aa:11:17:b1:25:d2:f7:a3:e5:dc:18:7d:cb:68:91: e0:9f:8c:ed:01:a5:d1:e8:3f:90:b2:be:44:cb:c2: e4:de:c6:df:9f:54:db:00:a3:96:1b:d7:df:0e:22: 57:c7:08:77:8b:4c:d5:6a:23:49:22:4c:5a:fb:f8: 79:4a:9e:7f:4a:78:9e:c8:39:bb:04:6e:23:fd:d0: e1:3f:04:0f:89:ac:4f:78:f5:91:e3:f9:ad:2a:6c: 6a:58:a8:a2:5c:82:6f:1a:b1:ab:0e:8e:91:3d:84: 83:7b:21:e4:4c:6d:bf:bb:3e:92:bf:56:2e:3b:65: ef:62:35:fb:f2:24:5e:9c:34:06:ef:3c:1b:af:c6: 35:3a:11:1f:f1:f9:be:0b:9d:ad:d0:5a:ae:77:69: 19:4e:17:cb:fb:b3:eb:e7:f1:7a:d4:43:99:c0:b5: 31:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:90:E3:37:97:89:C1:B7:CF:07:F7:6C:8F:11:4E:14:4B:FF:6B:4D X509v3 Authority Key Identifier: keyid:DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:58:05:73:53:3c:f5:62:54:79:7f:87:2f:3e:1f:73:eb:e4: 67:cb:c4:6e:28:62:c5:77:0d:6f:e0:d5:ef:68:5d:95:af:53: f5:12:a5:45:51:ed:2a:ef:e1:4d:9d:17:50:b2:7a:12:30:bf: fa:93:e2:a7:f9:dc:16:90:20:2a:f9:5c:17:d7:81:ac:6e:2d: 03:16:32:9b:15:94:af:ba:d6:93:52:d0:8a:37:e7:37:9f:7a: b4:c1:5d:81:f2:e1:4c:01:ff:70:54:c2:70:8d:f3:5d:47:75: 69:ba:47:5d:49:b7:6a:ee:1e:5c:00:20:36:e9:a9:f9:48:bd: 16:f5:ba:c3:15:7e:a8:f5:6b:89:6d:cf:1d:53:c0:c8:47:1b: 08:ce:82:11:f1:84:ed:94:78:61:c5:16:fa:7e:1c:70:68:4b: 32:d6:e6:2b:6c:9d:ee:f5:37:61:5a:b6:fd:af:05:b5:36:81: 12:88:cc:8f:06:09:a2:03:3f:37:6e:d3:e6:68:52:fd:6b:2d: 01:7c:6b:c4:bb:c4:cb:1b:31:b5:e1:39:aa:9f:c6:ac:7d:17: 6d:7e:5f:2d:d7:ed:de:d5:ee:fe:ac:ac:8f:dc:c0:f1:5a:61: 12:fc:04:a9:96:64:22:54:e8:14:56:40:99:f2:e1:30:60:15: 87:82:9c:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzFBQTExMC8GA1UEBRMoREQ0ODVGOUEyMzExNkQ0MTEwQzA3QkQzODcxRUY0QTYx NEVDNEQyQzAeFw0yNTEyMDcwNjAxMTNaFw0yNTEyMTQwNjAxMTNaMBgxFjAUBgNV BAMTDTY5MzUxODJhLTU1ZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7sZH7+igxnA+jTdKRhEaLc+0msD0PDArRLp8klBFqbfNbQ6Uvpz0IzQgkT153 ASplSEjT0/TzDxqQ77acum6iL7sFdD/R9WmqcNJXv9Qq4L52fIILgywm0KoRF7El 0vej5dwYfctokeCfjO0BpdHoP5CyvkTLwuText+fVNsAo5Yb198OIlfHCHeLTNVq I0kiTFr7+HlKnn9KeJ7IObsEbiP90OE/BA+JrE949ZHj+a0qbGpYqKJcgm8asasO jpE9hIN7IeRMbb+7PpK/Vi47Ze9iNfvyJF6cNAbvPBuvxjU6ER/x+b4Lna3QWq53 aRlOF8v7s+vn8XrUQ5nAtTEXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZZDjN5eJ wbfPB/dsjxFOFEv/a00wHwYDVR0jBBgwFoAU3UhfmiMRbUEQwHvThx70phTsTSww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMUFBLzhBRkJEQjYwQzhF QjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVFUXdIdlRoeDcwcGhUc1RT dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1VoZm1pTVJiVUVRd0h2VGh4NzBwaFRzVFN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz MUFBLzhBRkJEQjYwQzhFQjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVF UXdIdlRoeDcwcGhUc1RTdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAChYBXNTPPViVHl/hy8+H3Pr5GfLxG4oYsV3DW/g1e9oXZWvU/USpUVR 7Srv4U2dF1CyehIwv/qT4qf53BaQICr5XBfXgaxuLQMWMpsVlK+61pNS0Io35zef erTBXYHy4UwB/3BUwnCN811HdWm6R11Jt2ruHlwAIDbpqflIvRb1usMVfqj1a4lt zx1TwMhHGwjOghHxhO2UeGHFFvp+HHBoSzLW5itsne71N2Fatv2vBbU2gRKIzI8G CaIDPzdu0+ZoUv1rLQF8a8S7xMsbMbXhOaqfxqx9F21+Xy3X7d7V7v6srI/cwPFa YRL8BKmWZCJU6BRWQJny4TBgFYeCnL4= -----END CERTIFICATE-----Generated at Tue Dec 9 02:27:49 2025 by rpki-client