This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: 3JVanNVGv4UAPPU4QcxcyQNFuxMrnkTJ0VYZXx0cO4Q= Subject key identifier: AF:5A:96:35:80:C6:28:CD:ED:B7:EE:BA:BC:25:C9:5D:73:AE:10:52 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 01AA Signing time: Sun 21 Dec 2025 02:33:20 +0000 Manifest this update: Sun 21 Dec 2025 02:33:20 +0000 Manifest next update: Sun 28 Dec 2025 02:33:20 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: 8bVKrUESa2pxfGMfzEVXWPKpweRs24xCHKodfaAndhk=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Dec 21 02:33:20 2025 GMT Not After : Dec 28 02:33:20 2025 GMT Subject: CN=69475c70-03c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5b:18:63:af:bd:0c:1d:90:04:f8:37:84:45: 89:18:eb:1d:bf:92:b7:bd:bc:e8:3c:71:6c:3a:01: 5e:44:c3:ee:da:d4:02:90:80:cb:13:e2:36:e7:66: a5:f7:e3:d4:20:2b:29:4f:f8:95:cf:ae:c4:f9:5c: 32:13:27:0f:46:3b:4c:ef:da:96:bf:ce:88:49:a6: 67:9e:0f:d1:c0:83:0e:41:31:7f:f2:83:36:1f:9a: 8d:58:42:c2:3c:3f:e4:4f:f4:61:eb:48:c2:50:8d: df:6c:16:ee:6a:1f:c3:f5:a3:d7:19:24:ab:25:90: 6d:ee:96:03:7b:d8:cf:f8:70:6a:a6:63:56:37:e4: 8a:e9:54:ca:44:c8:34:60:88:67:76:c6:fb:2e:f6: 33:5c:c4:a5:f7:27:13:cc:03:d5:d4:4d:2e:25:d9: d5:a6:b5:43:a9:9e:03:38:62:ae:c0:a1:c1:ba:bd: e3:9e:83:ea:86:07:91:cd:20:d0:c2:77:0b:1b:1e: 30:03:66:b6:14:63:b5:f1:59:32:ae:4d:f1:92:f7: 2b:02:54:e6:ed:5b:c0:c6:ce:6f:01:9c:2b:15:5c: 8f:4c:ca:96:95:e7:5e:6e:b5:b9:47:b6:21:3f:00: b2:f7:5e:50:38:1a:45:df:1a:63:16:39:06:a9:89: 63:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5A:96:35:80:C6:28:CD:ED:B7:EE:BA:BC:25:C9:5D:73:AE:10:52 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f0:5c:5e:46:2f:90:89:ce:a9:d4:86:8d:5b:5c:17:93:17: d2:70:7d:bf:f2:fa:02:98:a8:5e:13:61:2c:a3:65:02:cb:34: 69:68:33:04:8a:bd:a4:27:ff:5c:6a:ae:59:36:22:ee:a7:82: 50:06:19:a8:ee:65:ac:ce:cd:8b:d7:57:33:2c:aa:d9:b2:02: eb:bd:ef:87:8c:e4:b6:c6:96:7b:66:06:4d:ae:18:9d:5a:1e: 9a:fc:11:ea:b7:55:3d:20:38:18:1f:07:75:69:a4:cb:77:97: cc:86:01:b2:38:75:b7:d2:32:b4:6a:4e:3c:cd:0a:73:52:42: 93:1d:bb:ce:6c:b5:6a:25:ae:4b:b6:8a:66:42:04:2b:53:0c: b4:ae:f9:cc:65:29:39:41:a4:dc:39:33:5d:ef:fe:dc:17:0e: 76:66:a4:b4:1e:d8:f9:c0:ad:73:0c:76:9d:98:4e:1c:33:32: b4:f6:a5:97:76:47:2f:38:9a:3d:af:4b:7d:ab:b3:bc:63:01: 47:0d:42:90:86:f4:d5:d8:dc:57:45:b6:73:d9:28:98:0e:27: 32:51:6a:1a:78:44:84:b0:35:14:b7:86:02:67:08:25:c5:58: 20:07:6a:58:59:e3:cc:ff:29:f2:30:1a:76:63:4d:6e:e9:9c: 87:79:30:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMjIxMDIzMzIwWhcNMjUxMjI4MDIzMzIwWjAYMRYwFAYD VQQDDA02OTQ3NWM3MC0wM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVsYY6+9DB2QBPg3hEWJGOsdv5K3vbzoPHFsOgFeRMPu2tQCkIDLE+I252al 9+PUICspT/iVz67E+VwyEycPRjtM79qWv86ISaZnng/RwIMOQTF/8oM2H5qNWELC PD/kT/Rh60jCUI3fbBbuah/D9aPXGSSrJZBt7pYDe9jP+HBqpmNWN+SK6VTKRMg0 YIhndsb7LvYzXMSl9ycTzAPV1E0uJdnVprVDqZ4DOGKuwKHBur3jnoPqhgeRzSDQ wncLGx4wA2a2FGO18Vkyrk3xkvcrAlTm7VvAxs5vAZwrFVyPTMqWledebrW5R7Yh PwCy915QOBpF3xpjFjkGqYljQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9aljWA xijN7bfuurwlyV1zrhBSMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK8FxeRi+Qic6p1IaNW1wXkxfScH2/8voCmKheE2Eso2UCyzRpaDME ir2kJ/9caq5ZNiLup4JQBhmo7mWszs2L11czLKrZsgLrve+HjOS2xpZ7ZgZNrhid Wh6a/BHqt1U9IDgYHwd1aaTLd5fMhgGyOHW30jK0ak48zQpzUkKTHbvObLVqJa5L topmQgQrUwy0rvnMZSk5QaTcOTNd7/7cFw52ZqS0Htj5wK1zDHadmE4cMzK09qWX dkcvOJo9r0t9q7O8YwFHDUKQhvTV2NxXRbZz2SiYDicyUWoaeESEsDUUt4YCZwgl xVggB2pYWePM/ynyMBp2Y01u6ZyHeTBd -----END CERTIFICATE-----Generated at Mon Dec 22 06:16:28 2025 by rpki-client