This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: wSVKmYu27txs436s0ciTyZ9Za8VxdG1mwpyhpVcI2fo= Subject key identifier: BA:65:F0:B0:BA:DC:82:71:BD:07:9A:5D:83:0C:87:D7:99:25:BB:94 Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0B7F Signing time: Mon 22 Dec 2025 18:35:58 +0000 Manifest this update: Mon 22 Dec 2025 18:35:57 +0000 Manifest next update: Mon 29 Dec 2025 18:35:57 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: ep1bMJQVIS81wpvb8xXn9EDR0KvqLa8JMiN6EiJQsEI=) 2: 26010A0605EF11F09181F913C4F9AE02.roa (hash: e8DrNgU6wclV+/cuRuh0FDYWi/CeredwOHLzSK+l0vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016, serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Dec 22 18:35:57 2025 GMT Not After : Dec 29 18:35:57 2025 GMT Subject: CN=69498f8e-d8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:18:e3:cf:43:05:ef:6b:9a:b5:d5:75:66:79: 91:41:f1:e0:78:f1:14:43:81:a5:1c:15:21:11:73: e0:65:4b:7b:bd:f7:31:e4:40:52:cd:0a:ee:d2:b1: ec:5d:ba:b9:ce:30:f0:16:aa:b0:a1:d5:22:fe:e9: bb:04:6d:de:8b:91:23:2e:b4:6e:21:37:b1:cd:f3: 59:be:89:9e:30:79:2c:1b:44:24:60:52:20:00:40: f9:fe:ca:17:64:5b:0d:1e:eb:53:e8:d1:32:e3:47: 12:be:78:05:8c:81:6c:3e:69:db:c5:57:8e:59:03: ae:64:3b:2e:61:2b:ec:94:85:f4:c3:8b:e7:a9:b9: 13:5f:a9:83:44:dd:d4:d8:db:1d:ca:f7:02:8a:ce: 9a:be:4f:ca:6f:f9:38:5c:b9:4a:7b:88:47:2c:65: 4c:96:10:d0:8a:74:82:b2:c6:72:e7:da:6e:b5:94: d4:48:03:6c:02:7c:fa:18:da:34:c4:89:f9:40:ab: d7:e2:8b:98:ad:a5:a8:21:c7:16:86:c2:28:01:eb: 10:b4:9a:c2:b0:2a:aa:18:35:07:d2:30:78:97:d0: 79:ec:31:43:9f:13:2d:b5:99:cd:db:ad:40:76:1f: ff:c6:5f:d8:a8:9c:f7:04:ca:fb:d8:96:33:79:6f: ed:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:65:F0:B0:BA:DC:82:71:BD:07:9A:5D:83:0C:87:D7:99:25:BB:94 X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e1:f4:53:3c:55:03:f7:86:41:d4:2f:cb:03:8b:c1:d4:88: 1e:c6:e9:b8:bd:d1:c5:31:23:5d:e9:dd:2f:31:61:a5:60:15: a8:d4:8e:5c:b6:25:9f:6b:89:e1:7c:fd:eb:8b:c3:9e:74:b2: 69:0a:67:e4:61:8b:e6:f2:93:d9:cd:5b:29:58:46:06:b6:4b: 87:0e:ba:86:2c:04:ae:cb:99:57:a1:f0:52:2d:1d:a6:97:da: cd:77:b3:d5:4b:55:57:47:05:50:14:6d:4d:6a:bd:b3:d2:68: 51:81:26:53:14:57:ed:b7:70:08:2d:d2:6a:12:b6:73:13:3c: 73:d0:18:ec:26:40:a2:3a:52:b6:66:87:4d:64:cf:92:cc:46: 52:54:97:0f:fb:60:ee:79:e3:45:05:54:37:69:10:2f:0a:df: 73:0e:39:b7:65:4f:95:70:29:b6:36:29:60:be:4c:fb:d8:be: 86:fa:f6:66:bf:7f:e3:fc:80:32:a7:10:ee:ff:16:6d:5d:d2: 06:18:f9:7b:6f:36:03:41:fb:3e:9e:b7:b4:4e:2b:1d:9f:d2: d5:0a:e0:5b:c4:75:93:50:84:34:03:37:24:33:4a:fc:65:f9: 41:a4:86:75:ac:c0:0d:f2:e9:b1:6b:90:8c:41:ab:56:ac:44: 3c:a7:bd:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjUxMjIyMTgzNTU3WhcNMjUxMjI5MTgzNTU3WjAYMRYwFAYD VQQDDA02OTQ5OGY4ZS1kOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthjjz0MF72uatdV1ZnmRQfHgePEUQ4GlHBUhEXPgZUt7vfcx5EBSzQru0rHs Xbq5zjDwFqqwodUi/um7BG3ei5EjLrRuITexzfNZvomeMHksG0QkYFIgAED5/soX ZFsNHutT6NEy40cSvngFjIFsPmnbxVeOWQOuZDsuYSvslIX0w4vnqbkTX6mDRN3U 2NsdyvcCis6avk/Kb/k4XLlKe4hHLGVMlhDQinSCssZy59putZTUSANsAnz6GNo0 xIn5QKvX4ouYraWoIccWhsIoAesQtJrCsCqqGDUH0jB4l9B57DFDnxMttZnN261A dh//xl/YqJz3BMr72JYzeW/tRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpl8LC6 3IJxvQeaXYMMh9eZJbuUMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS4fRTPFUD94ZB1C/LA4vB1Igexum4vdHFMSNd6d0vMWGlYBWo1I5c tiWfa4nhfP3ri8OedLJpCmfkYYvm8pPZzVspWEYGtkuHDrqGLASuy5lXofBSLR2m l9rNd7PVS1VXRwVQFG1Nar2z0mhRgSZTFFftt3AILdJqErZzEzxz0BjsJkCiOlK2 ZodNZM+SzEZSVJcP+2DueeNFBVQ3aRAvCt9zDjm3ZU+VcCm2Nilgvkz72L6G+vZm v3/j/IAypxDu/xZtXdIGGPl7bzYDQfs+nre0Tisdn9LVCuBbxHWTUIQ0AzckM0r8 ZflBpIZ1rMAN8umxa5CMQatWrEQ8p72d -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:37 2025 by rpki-client