This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: Yfo0sFuUQ7x5yCHI2/zDLEhBoC4GQl3EPRGYhZbPppU= Subject key identifier: EE:E7:CD:48:E1:96:13:80:81:A2:AE:DB:B1:AC:13:D5:48:2A:12:37 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C39 Signing time: Mon 22 Dec 2025 18:14:22 +0000 Manifest this update: Mon 22 Dec 2025 18:14:22 +0000 Manifest next update: Mon 29 Dec 2025 18:14:22 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: mKa/wxELrOAvAmQF39MzguMIlqd3SbvsAvmelx2CCJs=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Dec 22 18:14:22 2025 GMT Not After : Dec 29 18:14:22 2025 GMT Subject: CN=69498a7e-c6ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:47:be:f6:0b:77:fd:c7:47:aa:36:5f:5c: 0e:37:bd:11:e8:a4:14:aa:b6:ca:84:01:a8:75:1a: 16:2b:1f:ff:f1:bc:08:09:f8:ea:82:5d:69:bc:e0: c5:b6:3e:02:c3:af:44:4b:39:8f:39:38:49:6d:3e: 67:1a:f1:45:a8:c7:68:40:e1:a7:5b:de:83:cb:3c: 90:12:e0:7f:e4:b7:c9:ba:ae:75:69:59:a7:70:da: 49:96:ce:b9:9d:63:eb:28:1f:7c:ff:66:c0:3e:7c: 94:fc:2a:c2:e0:01:fc:f5:73:d6:fd:3d:25:41:1c: 2c:4f:f3:5a:76:6f:ad:b2:0d:be:df:98:a6:4d:32: e5:22:66:9e:5f:2e:92:ca:5e:40:0b:65:5f:86:95: 95:11:8d:11:ec:e1:89:b7:ea:ad:58:8e:b1:a9:f2: 17:a0:6a:b8:c2:47:a0:34:a2:6a:96:4e:43:f8:a3: 0f:d9:6a:85:7a:0f:bf:26:f7:c7:57:09:87:0d:d0: a7:df:73:66:3e:14:0d:5f:21:e8:b2:c5:1a:9b:d8: bc:57:ec:50:00:da:61:eb:52:47:27:e7:90:74:d4: fc:1e:53:50:dc:cb:2e:27:88:b6:c9:b0:95:41:f0: cb:36:bd:e8:34:33:e9:0b:c3:5c:91:00:67:53:92: 5c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E7:CD:48:E1:96:13:80:81:A2:AE:DB:B1:AC:13:D5:48:2A:12:37 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:bf:c6:54:8d:a7:29:21:be:ef:fd:f5:08:26:4c:87:ee:8e: c8:60:dd:3e:fa:1a:7f:81:4a:62:6d:9d:f9:c6:cd:2b:a6:04: 70:4c:d0:94:98:51:62:e6:27:94:4a:7c:9a:8f:a1:b0:1b:2b: e0:08:b4:f7:50:ac:3e:34:f7:90:ce:6b:53:2c:1f:6c:be:ef: e9:e9:c2:7e:a6:cc:cc:e1:10:a5:e3:35:0d:e0:5f:7b:88:ac: 21:d5:b6:d3:d3:4d:7a:74:55:a5:8d:6f:84:97:86:6d:a3:56: f4:7f:3e:ab:79:98:92:d6:b2:6a:93:d3:53:e6:30:94:d2:21: 57:8a:04:ac:13:c9:d7:6d:a0:a4:ce:c0:05:49:d6:f5:64:cf: 70:a5:13:33:c2:ac:5e:d1:f8:34:c5:60:5f:1a:f5:f3:fb:a9: 78:7e:d5:69:5f:45:2d:81:56:6f:c7:f6:d3:54:86:24:62:47: 9b:50:2d:8c:1f:ec:1e:a1:5e:bd:4a:eb:88:4b:01:f7:ea:29: 98:d0:e9:85:82:0c:3c:f8:2e:cb:3a:26:45:6e:37:cd:fd:50: 53:ea:18:f9:d7:5d:a4:e7:56:d8:30:77:5d:0d:dc:d8:d4:d2: 03:31:1f:a3:00:79:f1:77:9f:dd:dc:19:49:49:6f:67:04:89: 31:51:ac:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUxMjIyMTgxNDIyWhcNMjUxMjI5MTgxNDIyWjAYMRYwFAYD VQQDDA02OTQ5OGE3ZS1jNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqlHvvYLd/3HR6o2X1wON70R6KQUqrbKhAGodRoWKx//8bwICfjqgl1pvODF tj4Cw69ESzmPOThJbT5nGvFFqMdoQOGnW96DyzyQEuB/5LfJuq51aVmncNpJls65 nWPrKB98/2bAPnyU/CrC4AH89XPW/T0lQRwsT/Nadm+tsg2+35imTTLlImaeXy6S yl5AC2VfhpWVEY0R7OGJt+qtWI6xqfIXoGq4wkegNKJqlk5D+KMP2WqFeg+/JvfH VwmHDdCn33NmPhQNXyHossUam9i8V+xQANph61JHJ+eQdNT8HlNQ3MsuJ4i2ybCV QfDLNr3oNDPpC8NckQBnU5JchQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7nzUjh lhOAgaKu27GsE9VIKhI3MB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuv8ZUjacpIb7v/fUIJkyH7o7IYN0++hp/gUpibZ35xs0rpgRwTNCU mFFi5ieUSnyaj6GwGyvgCLT3UKw+NPeQzmtTLB9svu/p6cJ+pszM4RCl4zUN4F97 iKwh1bbT0016dFWljW+El4Zto1b0fz6reZiS1rJqk9NT5jCU0iFXigSsE8nXbaCk zsAFSdb1ZM9wpRMzwqxe0fg0xWBfGvXz+6l4ftVpX0UtgVZvx/bTVIYkYkebUC2M H+weoV69SuuISwH36imY0OmFggw8+C7LOiZFbjfN/VBT6hj5112k51bYMHddDdzY 1NIDMR+jAHnxd5/d3BlJSW9nBIkxUawI -----END CERTIFICATE-----Generated at Tue Dec 23 15:51:17 2025 by rpki-client