This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: Edif0w/xtZ3Z1qLZOJ2sCewW5Rq+1IaVFRPU9aaf0L8= Subject key identifier: 1D:D6:E2:59:C1:88:1A:53:FD:13:53:60:DE:2B:3E:43:EA:15:3B:71 Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: A6 Signing time: Tue 23 Dec 2025 05:13:26 +0000 Manifest this update: Tue 23 Dec 2025 05:13:26 +0000 Manifest next update: Tue 30 Dec 2025 05:13:26 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: JysEZneRxp/Z3OnjOxQ97aCUiBVApev84MoG+Axzpi0=) 2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: K1TsrB7lXsH/fW2abyndjpFmYzXZ1LPW0tQouW6VlW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Dec 23 05:13:26 2025 GMT Not After : Dec 30 05:13:26 2025 GMT Subject: CN=694a24f6-58d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:57:f9:f1:c4:e2:fe:b7:4f:2c:ef:b6:0a: 5c:5d:9d:da:a2:40:ee:a2:46:ca:3a:1d:3e:53:62: d4:a9:19:a5:18:4a:d3:a9:67:c1:c9:97:12:ac:b5: fb:88:d3:35:30:59:67:f4:82:ed:2c:96:55:ab:12: 88:64:38:eb:cd:51:bf:3f:51:22:bc:fe:66:90:45: 8c:f9:b9:7e:a3:03:31:58:35:0f:04:ba:fe:f0:ee: 91:b8:f7:8d:35:c2:6f:da:8c:06:fa:bf:8c:84:d5: 7e:d1:9c:25:c9:f6:62:5d:af:1e:e7:bf:24:3a:6d: 70:37:b2:52:3b:67:5b:aa:24:f7:50:11:40:36:ce: c6:4e:0a:71:6c:ae:46:7b:b5:18:1b:20:58:e4:c6: f2:58:f1:aa:12:34:08:9f:a6:19:91:17:7b:8e:0d: f3:65:4f:a6:31:e4:cb:ad:9a:72:6a:9f:43:0e:c4: 71:ec:11:79:58:9f:4b:27:fc:74:9b:ae:39:cc:cf: 4e:1d:8e:c3:79:b2:8e:c7:79:7d:d0:27:d1:01:f8: 51:c0:cb:c3:7e:33:6d:8c:3a:13:4c:29:d1:61:5b: 2e:ea:ee:51:32:d9:8a:9a:f7:ce:4f:44:a8:be:56: 13:31:43:da:42:e6:ec:80:b4:84:40:b7:37:fe:20: 5a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D6:E2:59:C1:88:1A:53:FD:13:53:60:DE:2B:3E:43:EA:15:3B:71 X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:60:6b:78:64:bd:75:85:ce:fa:97:1f:4c:59:38:ca:5f:9d: 22:86:c0:18:4c:2b:92:5b:93:b6:da:b5:ea:94:46:8b:32:1d: f0:7d:12:2c:e6:88:f3:b1:64:87:64:4d:62:a7:db:bd:f9:9f: e1:e8:7c:a8:fa:54:21:f3:ab:8b:b1:c7:16:df:8d:44:5b:a7: 3e:5f:07:c1:1c:e3:0a:19:c0:dc:f7:d9:83:8c:aa:83:e8:44: f0:59:19:a2:03:7d:b5:6a:15:58:9d:06:a6:de:b4:ec:21:3e: bf:dc:bc:64:65:9e:35:eb:04:56:93:04:7d:b9:49:8f:39:7a: 09:24:47:8c:f0:0b:60:6c:70:35:86:8e:c0:85:8b:f5:31:ed: 32:9d:f9:72:10:3d:b9:50:45:8c:c6:4b:40:f9:28:bc:25:df: d9:88:79:bc:bd:3e:87:43:ba:c7:7f:c3:c4:02:49:33:89:a8: 73:7a:36:78:46:f2:4d:84:ed:d8:12:57:ce:ec:6c:99:63:60: 74:a7:76:19:b0:85:8a:a6:19:a2:22:02:c0:7f:d2:04:5a:cf: fe:7e:67:52:ea:a5:50:a2:fa:bf:e4:9a:65:6c:bf:ef:71:55: 89:e9:97:08:3a:8c:de:1b:5c:f2:54:27:10:9d:a4:bd:3a:19: 48:8e:1d:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjUxMjIzMDUxMzI2WhcNMjUxMjMwMDUxMzI2WjAYMRYwFAYD VQQDDA02OTRhMjRmNi01OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteVX+fHE4v63TyzvtgpcXZ3aokDuokbKOh0+U2LUqRmlGErTqWfByZcSrLX7 iNM1MFln9ILtLJZVqxKIZDjrzVG/P1EivP5mkEWM+bl+owMxWDUPBLr+8O6RuPeN NcJv2owG+r+MhNV+0ZwlyfZiXa8e578kOm1wN7JSO2dbqiT3UBFANs7GTgpxbK5G e7UYGyBY5MbyWPGqEjQIn6YZkRd7jg3zZU+mMeTLrZpyap9DDsRx7BF5WJ9LJ/x0 m645zM9OHY7DebKOx3l90CfRAfhRwMvDfjNtjDoTTCnRYVsu6u5RMtmKmvfOT0So vlYTMUPaQubsgLSEQLc3/iBaeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3W4lnB iBpT/RNTYN4rPkPqFTtxMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW LWNwOF9GVzY2bnRoYlpWMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNYGt4ZL11hc76lx9MWTjKX50ihsAYTCuSW5O22rXqlEaLMh3wfRIs 5ojzsWSHZE1ip9u9+Z/h6Hyo+lQh86uLsccW341EW6c+XwfBHOMKGcDc99mDjKqD 6ETwWRmiA321ahVYnQam3rTsIT6/3LxkZZ416wRWkwR9uUmPOXoJJEeM8AtgbHA1 ho7AhYv1Me0ynflyED25UEWMxktA+Si8Jd/ZiHm8vT6HQ7rHf8PEAkkziahzejZ4 RvJNhO3YElfO7GyZY2B0p3YZsIWKphmiIgLAf9IEWs/+fmdS6qVQovq/5JplbL/v cVWJ6ZcIOozeG1zyVCcQnaS9OhlIjh3N -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:43 2025 by rpki-client