This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft File: -3sFh4NlHpP6MN2W1iZebi81JVQ.mft (raw, json) Hash identifier: WAUgcQWA10FxlKRSGJVkVbUzKNOmQA9IAvHF0w0Ec7Y= Subject key identifier: 3F:3F:C3:EC:D0:94:0A:C9:B5:8B:C0:A3:9D:83:81:98:B7:82:C6:35 Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 Certificate issuer: /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft Manifest number: 55 Signing time: Tue 23 Dec 2025 06:04:03 +0000 Manifest this update: Tue 23 Dec 2025 06:04:02 +0000 Manifest next update: Tue 30 Dec 2025 06:04:02 +0000 Files and hashes: 1: -3sFh4NlHpP6MN2W1iZebi81JVQ.crl (hash: IzkfXuglqbBY8w6E6a9K3bjeTn+oFZ9Bbn2G8wrLFU8=) 2: 2BB9711E5DE111F09B775D76C4F9AE02.roa (hash: p5eDJJHEh4Ku0YkaqmxVa+vpX9QHKpmMPC5rYwtTVzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Validity Not Before: Dec 23 06:04:02 2025 GMT Not After : Dec 30 06:04:02 2025 GMT Subject: CN=694a30d2-199f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:85:89:49:57:4a:89:d9:8f:0d:6d:2d:75: 50:8f:af:ae:54:f6:97:73:8e:7f:53:a8:91:92:17: c2:db:f6:18:02:1b:97:29:7e:88:40:7f:36:25:19: 73:2d:e0:57:46:22:2a:e9:ae:9e:37:0d:8f:60:b2: c3:57:f1:91:bf:e9:63:38:31:3a:00:5b:a7:2a:15: 44:c9:12:32:ae:f0:72:5c:af:76:2b:ba:ae:dd:bd: 77:6c:ee:17:17:8b:40:c6:25:99:d3:29:0e:d4:b3: 94:ce:b9:f9:fa:10:67:f4:bf:67:e3:ee:24:0b:25: 7a:41:0c:37:8a:e7:b7:8f:16:32:66:d7:14:f2:0f: 63:c5:aa:82:5e:99:0a:40:82:ce:a8:cb:de:40:e5: 66:82:b2:36:72:99:f3:bd:d2:92:d9:29:b2:79:36: d8:e2:6b:ff:d2:cc:da:d7:bd:b9:23:fb:c3:4b:fa: 22:e2:26:7a:01:a1:ca:ee:6a:bb:b0:0b:c1:de:ef: f9:40:0a:27:d4:d1:87:5d:51:73:78:8a:14:94:7b: 32:25:22:a6:b2:f9:75:52:3f:28:4b:db:6d:75:b8: a4:35:b2:db:d5:1a:de:83:fa:30:23:e1:54:03:11: 78:00:58:05:68:34:81:8c:d3:65:05:13:a3:64:98: f5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3F:C3:EC:D0:94:0A:C9:B5:8B:C0:A3:9D:83:81:98:B7:82:C6:35 X509v3 Authority Key Identifier: keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:fa:06:6c:31:85:a4:cf:4b:f3:49:d5:00:c4:3d:4d:2d:e6: c8:cd:a5:7d:75:20:4d:e0:9a:f4:cb:b8:35:73:39:4e:e2:3a: ee:e3:fa:58:f7:59:28:ad:8b:56:f2:19:69:9e:a0:32:0f:d9: 62:67:7a:00:c0:e7:a8:10:94:24:0b:80:b7:a3:fb:16:d1:e6: 1d:47:10:67:7f:89:b0:f0:de:19:60:72:9f:a1:86:91:ce:c1: f9:66:a4:a0:ac:ba:f2:52:b4:e8:17:ca:58:7c:8e:1a:7d:7b: 98:8f:33:b0:87:6c:17:e7:6a:82:b4:08:84:31:45:3b:26:b8: 97:d2:19:6e:bf:89:54:35:65:4a:b7:2c:0e:82:00:55:29:82: f4:8c:35:aa:ae:fe:8d:a7:dc:5b:3a:66:5a:be:4d:7c:1d:6b: b3:2f:46:e8:89:80:52:29:5d:a6:01:b4:dd:92:0b:0b:92:f3: 0a:1c:2f:d1:12:b5:b7:c8:91:77:53:4f:74:a0:27:9e:09:cb: f8:30:95:e4:4e:fc:35:a8:03:42:b4:2a:90:e0:0c:37:35:cd: d7:00:ac:b2:83:06:dd:0d:00:3a:fc:2e:19:8b:57:3f:57:19: 3e:75:cc:97:b5:83:30:04:80:34:b7:cf:4a:fb:aa:23:0e:69: bf:0f:35:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzQ3MzExMC8GA1UEBRMoRkI3QjA1ODc4MzY1MUU5M0ZBMzBERDk2RDYyNjVFNkUy RjM1MjU1NDAeFw0yNTEyMjMwNjA0MDJaFw0yNTEyMzAwNjA0MDJaMBgxFjAUBgNV BAMMDTY5NGEzMGQyLTE5OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv/4WJSVdKidmPDW0tdVCPr65U9pdzjn9TqJGSF8Lb9hgCG5cpfohAfzYlGXMt 4FdGIirprp43DY9gssNX8ZG/6WM4MToAW6cqFUTJEjKu8HJcr3Yruq7dvXds7hcX i0DGJZnTKQ7Us5TOufn6EGf0v2fj7iQLJXpBDDeK57ePFjJm1xTyD2PFqoJemQpA gs6oy95A5WaCsjZymfO90pLZKbJ5Ntjia//SzNrXvbkj+8NL+iLiJnoBocruaruw C8He7/lACifU0YddUXN4ihSUezIlIqay+XVSPyhL2211uKQ1stvVGt6D+jAj4VQD EXgAWAVoNIGM02UFE6NkmPXdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPz/D7NCU Csm1i8CjnYOBmLeCxjUwHwYDVR0jBBgwFoAU+3sFh4NlHpP6MN2W1iZebi81JVQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDNDczL0ZFQUUxMkEyNURE RjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQNk1OMlcxaVplYmk4MUpW US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTNzRmg0TmxIcFA2TU4yVzFpWmViaTgxSlZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD NDczL0ZFQUUxMkEyNURERjExRjBBNUJGRDY2RkM0RjlBRTAyLy0zc0ZoNE5sSHBQ Nk1OMlcxaVplYmk4MUpWUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABj6BmwxhaTPS/NJ1QDEPU0t5sjNpX11IE3gmvTLuDVzOU7iOu7j+lj3 WSiti1byGWmeoDIP2WJnegDA56gQlCQLgLej+xbR5h1HEGd/ibDw3hlgcp+hhpHO wflmpKCsuvJStOgXylh8jhp9e5iPM7CHbBfnaoK0CIQxRTsmuJfSGW6/iVQ1ZUq3 LA6CAFUpgvSMNaqu/o2n3Fs6Zlq+TXwda7MvRuiJgFIpXaYBtN2SCwuS8wocL9ES tbfIkXdTT3SgJ54Jy/gwleRO/DWoA0K0KpDgDDc1zdcArLKDBt0NADr8LhmLVz9X GT51zJe1gzAEgDS3z0r7qiMOab8PNU0= -----END CERTIFICATE-----Generated at Tue Dec 23 21:41:43 2025 by rpki-client