This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: 672hIFITmj024WJAB6+NUjKNqvQK/4Wlrw7N/J8+aBs= Subject key identifier: 65:C1:1D:D2:4F:0E:8B:DB:B6:3C:67:63:A4:68:05:A7:B4:04:F6:8A Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C4E Signing time: Wed 10 Dec 2025 17:54:09 +0000 Manifest this update: Wed 10 Dec 2025 17:54:08 +0000 Manifest next update: Wed 17 Dec 2025 17:54:08 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: 7ZY3snyYccodEAtMntJ03L6zjruGaCq7IIDA8Vf4jg8=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Dec 10 17:54:08 2025 GMT Not After : Dec 17 17:54:08 2025 GMT Subject: CN=6939b3c0-ac00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:39:6f:84:62:78:15:a7:2c:ae:ff:61:58: 0d:4e:33:06:fc:da:e7:12:ab:5a:3b:99:dd:fa:0f: 78:f9:3a:d1:1f:f4:bb:f8:b6:69:ae:d8:14:3c:d1: f9:51:3b:45:22:da:99:0f:a8:40:41:2c:60:dd:e4: cc:66:92:f3:6f:95:a4:94:5b:04:d4:76:91:4b:cc: de:58:c5:93:69:73:77:38:49:c2:74:7b:5b:78:41: 51:6f:d1:b2:e2:66:f2:49:a0:05:45:5c:53:51:81: c6:1a:ca:95:a0:30:1e:d3:1f:0b:2f:f1:33:12:b4: be:ad:8e:94:36:2d:12:3d:af:27:79:a0:bf:84:d4: ba:7e:a6:17:e5:7d:88:56:04:39:05:a9:b4:88:8a: 1c:69:1c:34:c8:fc:da:90:0d:94:3e:2d:eb:36:bd: ff:12:b7:85:76:8a:ba:d8:8a:67:81:9e:90:bb:3b: 31:34:af:ea:9f:89:d5:8f:9b:78:5e:4c:70:c4:00: 34:16:33:3d:12:60:65:18:68:55:7b:d0:9a:92:db: 14:f9:7a:94:f0:98:9b:d8:71:0a:c8:c0:ba:8c:aa: 59:cb:e0:a4:58:05:26:2c:dd:a8:c5:ca:19:6d:23: b6:04:4d:f3:11:60:33:cd:ad:b6:e0:cb:5b:e2:09: 88:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C1:1D:D2:4F:0E:8B:DB:B6:3C:67:63:A4:68:05:A7:B4:04:F6:8A X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:45:f7:55:a4:ba:1c:40:1d:2c:ab:ac:2e:8e:a7:1d:ea:04: fa:50:33:d0:da:02:06:5d:98:8d:39:ed:9a:da:00:6e:6c:15: 2c:31:7d:41:9e:a3:43:fd:b0:92:60:11:49:6c:ce:62:6c:a2: bc:0f:5b:6e:71:6b:29:b3:e7:ae:3a:2c:60:60:0c:53:50:27: 21:ef:c2:41:2b:07:9f:a3:8c:df:79:6b:3e:54:85:83:83:f6: d2:79:1a:c0:94:2e:59:b6:3c:16:80:e1:5b:bf:86:55:a3:3d: 97:d5:4b:01:ac:31:72:3c:04:26:ca:ad:54:1b:95:73:a7:a5: f6:5d:62:8c:23:96:d6:4f:e7:f8:8a:ae:4d:a9:98:09:41:91: 8c:99:ca:cb:ae:27:cf:04:44:7d:24:8a:de:59:59:e6:af:d4: 5b:29:c9:4c:28:62:d8:ae:14:bc:71:05:34:af:eb:a1:f3:ea: ae:c4:01:50:7e:ec:35:4a:5a:03:1b:d0:38:88:b8:bc:99:22: cd:f5:43:8d:e0:aa:7e:f2:a6:ef:e4:1f:71:77:65:a0:be:c4: ed:c5:4f:39:8b:53:03:13:a3:6c:f3:f9:8d:f0:68:b0:e7:c8: 5e:8c:3c:fc:d7:79:d5:93:ba:e3:e9:89:43:df:a4:75:67:74: 60:cd:5d:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUxMjEwMTc1NDA4WhcNMjUxMjE3MTc1NDA4WjAYMRYwFAYD VQQDEw02OTM5YjNjMC1hYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26k5b4RieBWnLK7/YVgNTjMG/NrnEqtaO5nd+g94+TrRH/S7+LZprtgUPNH5 UTtFItqZD6hAQSxg3eTMZpLzb5WklFsE1HaRS8zeWMWTaXN3OEnCdHtbeEFRb9Gy 4mbySaAFRVxTUYHGGsqVoDAe0x8LL/EzErS+rY6UNi0SPa8neaC/hNS6fqYX5X2I VgQ5Bam0iIocaRw0yPzakA2UPi3rNr3/EreFdoq62IpngZ6QuzsxNK/qn4nVj5t4 XkxwxAA0FjM9EmBlGGhVe9CaktsU+XqU8Jib2HEKyMC6jKpZy+CkWAUmLN2oxcoZ bSO2BE3zEWAzza224Mtb4gmIMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXBHdJP DovbtjxnY6RoBae0BPaKMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASRfdVpLocQB0sq6wujqcd6gT6UDPQ2gIGXZiNOe2a2gBubBUsMX1B nqND/bCSYBFJbM5ibKK8D1tucWsps+euOixgYAxTUCch78JBKwefo4zfeWs+VIWD g/bSeRrAlC5ZtjwWgOFbv4ZVoz2X1UsBrDFyPAQmyq1UG5Vzp6X2XWKMI5bWT+f4 iq5NqZgJQZGMmcrLrifPBER9JIreWVnmr9RbKclMKGLYrhS8cQU0r+uh8+quxAFQ fuw1SloDG9A4iLi8mSLN9UON4Kp+8qbv5B9xd2WgvsTtxU85i1MDE6Ns8/mN8Giw 58hejDz813nVk7rj6YlD36R1Z3RgzV2K -----END CERTIFICATE-----Generated at Thu Dec 11 22:49:13 2025 by rpki-client