This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: yKWUYWoc53Ub6izKHuqiFOC+f2NDBK5BOYBZJC6jSQA= Subject key identifier: 24:A4:65:0D:00:0B:78:97:71:AC:32:33:23:91:44:C1:05:48:59:7F Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 10F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 19EF Signing time: Mon 22 Dec 2025 16:59:22 +0000 Manifest this update: Mon 22 Dec 2025 16:59:22 +0000 Manifest next update: Mon 29 Dec 2025 16:59:22 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: R7V+V6ygYEZ9zqXsN1utoHnPOxlawrcWGI7MIiyQ2fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Dec 22 16:59:22 2025 GMT Not After : Dec 29 16:59:22 2025 GMT Subject: CN=694978ea-e8a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:6e:ca:ce:95:ef:cd:cf:04:6e:fd:10:0c: 9e:34:54:df:68:22:be:ef:6d:0d:7b:59:d0:c8:06: 7a:3c:74:3d:d7:36:71:8c:86:70:99:07:bb:22:3a: 86:27:2c:23:82:86:fb:ee:8a:6b:11:b6:30:fe:5a: 80:f6:da:8c:77:3a:2f:d1:d7:8c:51:48:b9:02:4d: e0:e8:83:c6:5b:95:21:b5:20:fb:29:56:4e:87:52: 64:12:2c:f9:21:fe:84:f9:a3:01:24:7e:65:39:02: 73:8a:11:b0:a2:9e:a1:f2:b2:21:18:83:23:fc:3f: e4:5a:9a:16:a2:42:aa:e3:f0:8c:9f:b8:32:f3:2f: 08:f2:43:86:f5:5e:e5:05:25:66:c7:5f:ee:4c:67: f8:eb:36:94:18:7d:b9:af:56:80:99:e0:b1:ab:fb: ec:9f:bd:fe:4f:2e:6e:4d:2f:ff:1d:ae:96:0d:0f: 98:0f:77:89:79:c3:f9:51:1b:06:53:30:8a:fa:42: e0:ae:8e:4c:66:c3:f8:e3:ae:87:98:1c:26:94:78: 7b:7d:cb:7d:c3:f3:2e:89:e0:9a:70:80:17:a6:61: 94:62:27:47:ba:db:4b:54:20:bd:c3:19:b1:41:c2: 5f:49:49:b4:8f:6b:c7:f8:03:90:70:ee:24:22:45: e6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A4:65:0D:00:0B:78:97:71:AC:32:33:23:91:44:C1:05:48:59:7F X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ee:d7:2b:7d:5c:fb:01:dc:7b:bc:6a:c2:3b:f9:22:cf:d2: ad:bf:fd:6e:54:3f:87:97:c0:43:cf:25:fc:fe:7c:c3:3f:7c: 02:aa:64:fb:19:74:2b:8d:e9:6b:5b:33:e0:8f:64:ab:f9:08: ac:da:08:50:a0:dd:3a:c4:18:58:95:96:6b:85:04:0c:40:a3: 06:5f:b3:d4:75:ee:85:57:b1:89:15:e2:c5:e0:42:02:df:ff: 79:aa:a3:7a:8b:7e:ef:5a:40:ba:61:ea:67:80:f9:52:35:06: d8:9d:4a:4a:96:34:a6:3d:fa:2e:a6:65:19:2b:4a:c7:33:27: 5c:a7:ea:be:dd:eb:4b:cc:34:ca:cc:1b:65:f5:27:c6:13:78: 7f:8e:28:3f:d9:10:cc:a2:d4:d1:36:58:15:03:5f:d5:ad:37: cb:79:60:d6:e3:8d:29:e3:57:da:01:16:f1:ae:37:8c:45:88: 64:30:6f:7f:60:2c:95:94:07:36:4e:22:15:da:ea:31:49:a4: ff:a4:2f:20:0c:23:63:f2:06:73:dc:a2:66:50:2d:fd:b2:84: 98:cb:f9:2d:65:cf:27:dd:8e:fe:58:71:f6:79:e9:28:8f:64: 48:09:80:57:d3:23:fe:bc:59:33:9b:2f:c3:ee:33:fa:1e:c3: 3e:98:5c:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjUxMjIyMTY1OTIyWhcNMjUxMjI5MTY1OTIyWjAYMRYwFAYD VQQDDA02OTQ5NzhlYS1lOGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+9uys6V783PBG79EAyeNFTfaCK+720Ne1nQyAZ6PHQ91zZxjIZwmQe7IjqG Jywjgob77oprEbYw/lqA9tqMdzov0deMUUi5Ak3g6IPGW5UhtSD7KVZOh1JkEiz5 If6E+aMBJH5lOQJzihGwop6h8rIhGIMj/D/kWpoWokKq4/CMn7gy8y8I8kOG9V7l BSVmx1/uTGf46zaUGH25r1aAmeCxq/vsn73+Ty5uTS//Ha6WDQ+YD3eJecP5URsG UzCK+kLgro5MZsP4466HmBwmlHh7fct9w/MuieCacIAXpmGUYidHuttLVCC9wxmx QcJfSUm0j2vH+AOQcO4kIkXm7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSkZQ0A C3iXcawyMyORRMEFSFl/MB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq7tcrfVz7Adx7vGrCO/kiz9Ktv/1uVD+Hl8BDzyX8/nzDP3wCqmT7 GXQrjelrWzPgj2Sr+Qis2ghQoN06xBhYlZZrhQQMQKMGX7PUde6FV7GJFeLF4EIC 3/95qqN6i37vWkC6YepngPlSNQbYnUpKljSmPfoupmUZK0rHMydcp+q+3etLzDTK zBtl9SfGE3h/jig/2RDMotTRNlgVA1/VrTfLeWDW440p41faARbxrjeMRYhkMG9/ YCyVlAc2TiIV2uoxSaT/pC8gDCNj8gZz3KJmUC39soSYy/ktZc8n3Y7+WHH2eeko j2RICYBX0yP+vFkzmy/D7jP6HsM+mFxi -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:51 2025 by rpki-client