This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json) Hash identifier: nQb4z30FYXuDc22rlB6LWIIY/bVY9ljIwGR0mjjSnho= Subject key identifier: 32:01:56:CF:5D:05:59:8A:D1:CE:2F:CB:C6:15:7C:2B:3E:66:D9:06 Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Certificate serial: 09AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft Manifest number: 0997 Signing time: Mon 08 Dec 2025 19:18:15 +0000 Manifest this update: Mon 08 Dec 2025 19:18:14 +0000 Manifest next update: Mon 15 Dec 2025 19:18:14 +0000 Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: jBKnNKS66/3ZwOSKfRXpm1vFMdM7O85OGgwHMJEn99I=) 2: 361E40F8B7B411F09BC03F67C4F9AE02.roa (hash: vSHaQ8x5/dUFJ2VaCOEg3IfJ6i5TW1m1+SlMwO7G4nc=) 3: F568EF1A7F1711F094D2F035C4F9AE02.roa (hash: zT0Sz7g9V+D+Ya+GE9O18/USSfPNOgS69nwUWk/3R4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 19:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E36B, serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Validity Not Before: Dec 8 19:18:14 2025 GMT Not After : Dec 15 19:18:14 2025 GMT Subject: CN=69372476-d389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d1:b2:54:b6:bd:17:7f:9c:81:3e:8c:27:06: c6:f6:96:2e:4b:81:fa:fe:9b:0a:17:4f:df:cf:0c: 6d:e3:47:5a:96:85:23:33:2d:44:18:70:b1:e3:5d: 69:06:39:75:ed:71:6d:d8:20:21:1a:33:88:aa:7c: b7:cf:6a:31:8e:59:e4:a9:9d:39:90:63:4e:ff:7d: ae:87:fa:0f:4d:1f:a3:f3:d6:52:c4:37:06:4f:af: 88:cc:d6:3b:30:e9:ff:89:07:4f:5c:3b:b5:6f:6c: 38:b8:04:3b:63:b9:7e:b1:f2:c7:b7:98:15:cd:47: 9c:3c:99:4f:61:d8:ed:2c:59:5e:06:75:ed:23:7e: 23:37:63:9f:0d:1e:fb:c7:0c:2e:42:f9:0c:7d:3a: db:55:41:d2:54:22:40:8e:d2:32:1a:a4:87:87:91: 8c:94:c1:48:11:bc:d4:9a:35:19:2d:ed:35:9a:d4: 59:d7:d2:01:25:14:6b:54:d6:fe:5d:47:95:31:8b: 13:6d:95:ea:c2:dd:06:49:d7:65:de:db:5b:df:5d: fe:fc:c1:9b:69:9b:85:27:ad:6f:fa:d6:49:08:99: 0d:90:ba:22:55:4e:80:71:b9:20:1f:15:24:90:9c: f2:4f:f7:b1:06:85:b3:99:40:a9:12:5e:7b:ea:e9: 4a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:01:56:CF:5D:05:59:8A:D1:CE:2F:CB:C6:15:7C:2B:3E:66:D9:06 X509v3 Authority Key Identifier: keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:99:32:4d:9c:9f:a9:56:a2:6e:c0:33:da:c0:b4:71:c0:04: f9:b0:06:0f:3e:c2:e8:cf:ab:61:35:56:48:c8:5a:89:11:4f: 25:b1:6d:88:02:37:e1:34:12:6d:e1:a5:b5:e1:be:a7:0b:d7: e5:3a:b3:a9:e6:56:b3:b2:90:8f:ff:0a:a8:71:15:85:ca:8e: 05:1f:53:61:6c:d3:97:16:ce:0f:d1:90:b4:49:fc:d4:d9:af: 59:70:b9:29:69:09:a9:e6:58:09:02:29:1a:3b:4d:08:69:e6: 21:8e:b0:a2:de:2d:5b:06:f3:99:8d:57:86:e1:a5:9b:b7:99: 1e:44:df:d1:96:93:ba:25:ed:dc:d9:f2:12:f2:f8:e8:5a:14: 8a:9e:6c:db:a7:42:67:92:81:74:5c:80:29:ee:30:d4:93:09: 1c:d0:bd:67:37:28:96:48:52:01:0f:79:2f:2c:a5:72:a6:4f: 98:a9:dc:40:75:31:93:7d:ca:72:02:93:1d:1f:2b:64:ac:46: 2d:be:81:48:19:3f:ee:16:30:12:66:bf:f1:f4:7b:e8:0b:53: 83:00:0a:30:57:4e:3c:b4:c2:95:31:60:5a:6f:d1:ee:a6:ab: c8:19:99:02:97:20:2e:5f:d9:99:6d:fc:7f:74:15:99:d8:a3: 2c:bb:de:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzNkIxMTAvBgNVBAUTKERGQUQzODZDQUM5MjM0ODM4MEM1NzQ5MkRCMThGMkJD ODQ5QzUyODYwHhcNMjUxMjA4MTkxODE0WhcNMjUxMjE1MTkxODE0WjAYMRYwFAYD VQQDEw02OTM3MjQ3Ni1kMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydGyVLa9F3+cgT6MJwbG9pYuS4H6/psKF0/fzwxt40daloUjMy1EGHCx411p Bjl17XFt2CAhGjOIqny3z2oxjlnkqZ05kGNO/32uh/oPTR+j89ZSxDcGT6+IzNY7 MOn/iQdPXDu1b2w4uAQ7Y7l+sfLHt5gVzUecPJlPYdjtLFleBnXtI34jN2OfDR77 xwwuQvkMfTrbVUHSVCJAjtIyGqSHh5GMlMFIEbzUmjUZLe01mtRZ19IBJRRrVNb+ XUeVMYsTbZXqwt0GSddl3ttb313+/MGbaZuFJ61v+tZJCJkNkLoiVU6AcbkgHxUk kJzyT/exBoWzmUCpEl576ulK3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIBVs9d BVmK0c4vy8YVfCs+ZtkGMB8GA1UdIwQYMBaAFN+tOGyskjSDgMV0ktsY8ryEnFKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTM2Qi83QzJDNjI0MEEw OTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05JT0F4WFNTMnhqeXZJU2NV b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2MDRiS3lTTklPQXhYU1MyeGp5dklTY1VvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTM2Qi83QzJDNjI0MEEwOTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05J T0F4WFNTMnhqeXZJU2NVb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKmTJNnJ+pVqJuwDPawLRxwAT5sAYPPsLoz6thNVZIyFqJEU8lsW2I AjfhNBJt4aW14b6nC9flOrOp5lazspCP/wqocRWFyo4FH1NhbNOXFs4P0ZC0SfzU 2a9ZcLkpaQmp5lgJAikaO00IaeYhjrCi3i1bBvOZjVeG4aWbt5keRN/RlpO6Je3c 2fIS8vjoWhSKnmzbp0JnkoF0XIAp7jDUkwkc0L1nNyiWSFIBD3kvLKVypk+YqdxA dTGTfcpyApMdHytkrEYtvoFIGT/uFjASZr/x9HvoC1ODAAowV048tMKVMWBab9Hu pqvIGZkClyAuX9mZbfx/dBWZ2KMsu97B -----END CERTIFICATE-----Generated at Wed Dec 10 05:30:41 2025 by rpki-client