This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: 8iDDYnwAOXB557N+Yi+uSTGQvaFNyFyjoFm/IB+d45U= Subject key identifier: ED:B8:F5:78:22:90:22:2C:06:55:40:56:9B:33:EA:A3:4C:E7:4B:BD Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 01A9 Signing time: Fri 19 Dec 2025 02:30:16 +0000 Manifest this update: Fri 19 Dec 2025 02:30:15 +0000 Manifest next update: Fri 26 Dec 2025 02:30:15 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: GocwxFgyBiMZxpStWV5SljtQhjsz6ScKR0VrI14JsVg=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Dec 19 02:30:15 2025 GMT Not After : Dec 26 02:30:15 2025 GMT Subject: CN=6944b8b8-36f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:16:1c:88:de:8b:f5:f0:49:49:d2:0f:53: c5:5c:e2:c7:1d:63:40:bb:c8:f4:68:7c:38:cb:85: 09:a5:43:ed:0e:36:47:10:49:54:93:f9:0a:d7:18: 33:e3:71:9e:0c:e6:98:a5:db:56:cb:67:d3:d3:03: 77:ee:4a:8b:42:b2:76:81:2c:e2:17:3f:68:3f:fd: e8:bd:80:78:89:88:fb:41:80:9d:2e:13:ae:8e:4f: 18:81:c8:0c:a7:5f:af:bb:d3:db:9d:8e:55:38:d8: 61:b0:a1:f9:16:ce:27:37:9c:55:81:cd:44:c4:77: 7f:b4:e0:5d:68:f6:45:11:ce:22:dd:77:66:ac:08: 67:6f:7a:20:9c:1c:6b:d9:b2:40:77:14:5e:7f:98: 1a:ab:e8:d0:9c:76:57:10:69:c7:d7:1f:21:78:ea: e1:cb:99:83:14:cb:c5:dc:4d:0b:af:38:9d:d2:2c: 6e:ba:23:ef:f3:5e:81:76:43:1b:cf:a9:c0:87:5b: 56:bd:6b:86:df:26:1c:1f:89:4b:c6:1c:c9:c9:d9: 05:79:05:15:bb:c2:a5:7d:ca:ce:97:b4:87:b1:fa: e7:95:ef:61:b2:57:1d:e2:2b:1a:35:a0:d3:e4:f4: 13:a0:50:d9:a6:2f:de:48:0c:43:40:e4:23:0f:b4: d5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B8:F5:78:22:90:22:2C:06:55:40:56:9B:33:EA:A3:4C:E7:4B:BD X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d9:a4:b9:80:f3:7e:6f:f6:1c:b6:65:ce:2e:7a:df:70:44: 6c:f1:8b:8a:7c:67:80:c2:de:44:5d:db:e9:0e:4a:6a:2f:91: 6f:42:10:47:bc:45:ca:ec:ce:97:0d:6f:2f:f7:e0:96:54:d7: 14:77:68:59:7f:0d:16:5c:bf:bf:6c:32:e1:b2:3a:02:b1:f5: e6:f3:e1:3c:2e:2b:28:88:94:91:a8:7f:30:4c:2b:a1:44:ff: 8f:7d:e7:5b:ef:5b:ee:a4:78:b6:c4:39:26:75:7e:72:34:14: 82:c9:8c:84:fb:f1:19:bc:ee:09:d6:2b:18:86:a5:1e:40:14: 94:89:ce:ac:1e:0b:ac:80:13:3a:3b:d8:05:f8:16:60:cc:db: 6f:b8:95:21:f4:41:1f:d9:ed:6b:7c:bd:f5:49:eb:ab:2b:5f: 66:70:ac:ae:6c:0b:b2:23:30:27:06:f3:7e:74:3d:67:4d:fc: c1:05:87:f5:82:71:08:70:53:16:d4:c5:4f:d5:be:e0:a1:c6: 54:b7:f8:b3:4b:95:32:d4:05:6e:4d:44:60:f5:67:5b:83:89: d7:27:d8:b7:0e:d4:c5:25:10:f3:d2:1c:dc:24:da:2f:89:fe: 96:71:e8:54:08:cf:5f:b8:45:95:de:2d:7c:46:b3:b3:6f:b2: 39:c0:52:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMjE5MDIzMDE1WhcNMjUxMjI2MDIzMDE1WjAYMRYwFAYD VQQDDA02OTQ0YjhiOC0zNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjcWHIjei/XwSUnSD1PFXOLHHWNAu8j0aHw4y4UJpUPtDjZHEElUk/kK1xgz 43GeDOaYpdtWy2fT0wN37kqLQrJ2gSziFz9oP/3ovYB4iYj7QYCdLhOujk8YgcgM p1+vu9PbnY5VONhhsKH5Fs4nN5xVgc1ExHd/tOBdaPZFEc4i3XdmrAhnb3ognBxr 2bJAdxRef5gaq+jQnHZXEGnH1x8heOrhy5mDFMvF3E0Lrzid0ixuuiPv816BdkMb z6nAh1tWvWuG3yYcH4lLxhzJydkFeQUVu8KlfcrOl7SHsfrnle9hslcd4isaNaDT 5PQToFDZpi/eSAxDQOQjD7TVEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO249Xgi kCIsBlVAVpsz6qNM50u9MB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg2aS5gPN+b/YctmXOLnrfcERs8YuKfGeAwt5EXdvpDkpqL5FvQhBH vEXK7M6XDW8v9+CWVNcUd2hZfw0WXL+/bDLhsjoCsfXm8+E8LisoiJSRqH8wTCuh RP+Pfedb71vupHi2xDkmdX5yNBSCyYyE+/EZvO4J1isYhqUeQBSUic6sHgusgBM6 O9gF+BZgzNtvuJUh9EEf2e1rfL31SeurK19mcKyubAuyIzAnBvN+dD1nTfzBBYf1 gnEIcFMW1MVP1b7gocZUt/izS5Uy1AVuTURg9Wdbg4nXJ9i3DtTFJRDz0hzcJNov if6WcehUCM9fuEWV3i18RrOzb7I5wFIr -----END CERTIFICATE-----Generated at Fri Dec 19 16:30:28 2025 by rpki-client