This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: X1hLK1jSJOvrntwgIxOq5tOo763T6DlKti591CpuZNY= Subject key identifier: 74:F1:0D:DB:D6:04:77:CC:99:95:64:24:91:5D:6E:FF:CD:D5:2A:D6 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 7F Signing time: Tue 23 Dec 2025 05:41:02 +0000 Manifest this update: Tue 23 Dec 2025 05:41:02 +0000 Manifest next update: Tue 30 Dec 2025 05:41:02 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: x08gXm7o4c/a/xc7vGZBX9Lql8q1CrUVbTYVnIuN82A=) 2: A209D9E4BC2311F09A8FB280C4F9AE02.roa (hash: ROMimlav+Kwv4KL5aZPE3FnW4mOvCmbzzXBU2NVsmwo=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Dec 23 05:41:02 2025 GMT Not After : Dec 30 05:41:02 2025 GMT Subject: CN=694a2b6e-94ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0c:be:b4:63:c0:87:99:bf:eb:6b:8c:50:48: 6f:d3:4f:9b:d1:9f:43:c2:b8:35:34:ba:f6:d2:c5: 44:e1:97:ea:91:4b:e2:3c:52:5a:f3:65:55:23:ef: 8c:56:4d:6a:41:91:7b:80:49:76:b5:36:ec:50:15: 04:a4:41:cd:0a:62:3c:02:be:a6:6c:2d:b5:2e:4f: 70:e5:4a:c0:9c:ac:47:ab:e7:97:ef:2a:b7:a5:ff: a1:9e:65:ec:23:fb:2f:52:77:17:bb:8f:ad:a0:e4: 54:6f:cb:de:85:be:0c:d1:04:aa:d7:0b:62:32:73: 3c:56:6f:98:d5:ba:d9:df:c0:08:52:0b:52:df:30: 52:74:8a:d3:4f:6b:a2:5b:18:0c:33:12:f2:6a:db: 2a:42:df:bf:79:40:1c:4d:6d:83:df:26:16:2a:cb: 3c:af:4c:84:50:1d:fb:35:37:a0:11:cc:28:80:1b: 3f:ad:c3:73:0b:46:e3:cb:25:e7:6a:35:de:39:6c: bf:4c:96:e9:7f:65:58:78:2c:6e:95:9a:df:e3:ea: 66:c9:50:d4:a9:88:c0:56:29:71:6d:c5:7c:d2:bb: 05:53:39:01:81:06:1c:e1:69:a3:e7:58:e0:0b:17: 20:4c:d9:89:ff:06:32:e4:6c:ff:78:cf:f5:af:a2: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F1:0D:DB:D6:04:77:CC:99:95:64:24:91:5D:6E:FF:CD:D5:2A:D6 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:51:3a:38:00:3f:a5:3a:fb:c4:58:25:fe:3f:76:5a:8d:f9: 95:16:e6:eb:f0:c4:a4:7a:3e:b7:89:dc:18:65:1f:04:d0:05: bf:a3:b7:66:cd:43:37:be:34:e8:9c:3a:9c:07:1f:fb:b7:a2: 4b:1b:e3:bd:9d:36:f6:5c:e5:5a:08:c9:ef:fe:3f:d4:94:d5: 7c:ba:f8:de:8d:e3:13:ba:b0:34:39:73:05:14:7c:31:ea:45: a5:e6:c9:17:ee:81:4b:51:03:03:f3:ce:bc:e8:c7:a0:1b:cb: f4:02:6c:d5:ae:63:13:2b:7f:15:c6:b0:30:1b:4f:dd:16:ff: 99:21:ab:eb:a4:d6:10:e5:19:dd:dd:e0:de:41:9d:66:3a:1a: 94:0d:dd:82:68:7d:6a:5f:6b:d6:d5:2a:e8:66:7e:6d:eb:d1: ca:d0:b9:ec:e0:b7:cf:62:ee:37:b0:22:5f:c8:97:44:af:ee: 71:45:f2:29:62:27:47:f7:e1:c8:df:32:72:ad:14:86:de:d9: 58:3d:a5:3d:1a:ea:5b:a6:e1:0d:08:30:86:8f:3a:71:a2:99: 79:02:38:f7:ee:47:f2:b6:d6:ed:af:0a:3f:99:e7:35:a0:b9: 6f:4d:52:01:29:f5:55:a5:ca:8a:f8:f0:8e:49:c3:9a:12:eb: 63:3b:3e:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjUxMjIzMDU0MTAyWhcNMjUxMjMwMDU0MTAyWjAYMRYwFAYD VQQDDA02OTRhMmI2ZS05NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Qy+tGPAh5m/62uMUEhv00+b0Z9Dwrg1NLr20sVE4ZfqkUviPFJa82VVI++M Vk1qQZF7gEl2tTbsUBUEpEHNCmI8Ar6mbC21Lk9w5UrAnKxHq+eX7yq3pf+hnmXs I/svUncXu4+toORUb8vehb4M0QSq1wtiMnM8Vm+Y1brZ38AIUgtS3zBSdIrTT2ui WxgMMxLyatsqQt+/eUAcTW2D3yYWKss8r0yEUB37NTegEcwogBs/rcNzC0bjyyXn ajXeOWy/TJbpf2VYeCxulZrf4+pmyVDUqYjAVilxbcV80rsFUzkBgQYc4Wmj51jg CxcgTNmJ/wYy5Gz/eM/1r6IcAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTxDdvW BHfMmZVkJJFdbv/N1SrWMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3UTo4AD+lOvvEWCX+P3ZajfmVFubr8MSkej63idwYZR8E0AW/o7dm zUM3vjTonDqcBx/7t6JLG+O9nTb2XOVaCMnv/j/UlNV8uvjejeMTurA0OXMFFHwx 6kWl5skX7oFLUQMD88686MegG8v0AmzVrmMTK38VxrAwG0/dFv+ZIavrpNYQ5Rnd 3eDeQZ1mOhqUDd2CaH1qX2vW1SroZn5t69HK0Lns4LfPYu43sCJfyJdEr+5xRfIp YidH9+HI3zJyrRSG3tlYPaU9GupbpuENCDCGjzpxopl5Ajj37kfyttbtrwo/mec1 oLlvTVIBKfVVpcqK+PCOScOaEutjOz6c -----END CERTIFICATE-----Generated at Wed Dec 24 15:48:46 2025 by rpki-client