This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: FExPjpRvLCZxia7dYWjsPxnb3DiQyD9Kl/NnbwGKS94= Subject key identifier: 45:49:A9:AD:83:E5:07:0D:D9:EF:57:79:0D:19:BD:96:09:C3:9B:A7 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: DB Signing time: Sun 21 Dec 2025 04:43:42 +0000 Manifest this update: Sun 21 Dec 2025 04:43:41 +0000 Manifest next update: Sun 28 Dec 2025 04:43:41 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: jCufrPBa7iMarq62VxMqb1MZtjj8Fr20MFauFkDxjY8=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Dec 21 04:43:41 2025 GMT Not After : Dec 28 04:43:41 2025 GMT Subject: CN=69477afe-e68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3e:f0:32:2d:64:58:87:05:2b:8c:73:9a:87: 6a:75:16:f3:ca:54:51:8e:dd:3f:05:f8:89:12:ef: 41:c2:6c:4b:5f:33:2b:8b:72:93:fd:33:26:92:88: db:15:be:60:71:d2:e6:a3:9e:a5:d8:c4:01:ad:ad: 79:3c:d2:ee:4a:6f:8d:b9:27:f4:fe:1c:3d:58:54: fa:49:62:cb:88:ea:0b:4e:b7:fe:87:28:67:8b:1b: 85:6f:e5:9b:59:d5:d9:fc:25:48:64:c8:e3:af:b6: 5a:c5:16:ca:ca:ed:54:ac:83:47:86:2c:2a:93:76: 17:15:c8:3d:8c:39:1b:3e:0d:f9:30:e3:ea:bb:0d: 1c:e7:4b:b0:02:55:bb:69:04:b7:30:2b:68:69:20: 44:0c:fd:9c:12:3a:d1:6c:bc:44:68:49:a0:24:89: 41:d6:a6:66:b9:75:30:53:22:c4:d2:4b:53:d5:ff: b4:28:be:0e:b3:c2:9f:30:ec:44:4c:ba:82:63:f0: 92:e6:8e:c7:9b:c4:22:47:fe:d1:52:75:1d:ba:c4: be:b8:26:14:12:31:d4:41:0e:5d:d4:7b:34:0e:01: ea:2d:af:08:c9:ea:ed:2e:92:39:f6:63:87:30:fb: 7e:1f:4f:2f:29:af:b3:fe:a4:8f:44:29:02:24:4c: ce:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:49:A9:AD:83:E5:07:0D:D9:EF:57:79:0D:19:BD:96:09:C3:9B:A7 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:b5:2a:ba:74:0b:9a:d4:18:8d:3c:a3:4f:70:78:e0:07:ab: 5b:88:ec:81:1f:fb:ec:e5:ea:4f:55:47:73:3b:5a:68:59:94: a3:1b:c0:b5:8d:0a:12:9a:b2:d7:f5:8f:9d:a8:57:4e:12:36: 7c:02:4b:ad:fa:46:03:30:4f:1d:13:09:ac:c1:7e:f0:e1:05: 4b:69:41:7c:b5:2a:9b:35:00:3b:82:d5:cd:43:eb:af:32:9d: ce:af:bc:43:45:18:c9:4a:63:5f:b3:0f:25:1c:f2:4d:99:81: 47:fe:53:9a:17:4d:f7:b1:17:d7:7c:b9:ef:20:4f:5c:09:78: 5a:47:39:ee:6f:d5:01:7d:a9:a2:59:8d:57:3d:ab:40:7a:95: 96:11:4e:a8:6e:c4:fa:55:09:b0:12:ac:ed:12:95:a0:88:ef: 89:5d:e2:da:74:8a:45:a6:36:9a:7c:9b:de:e4:57:e0:c6:57: 83:fe:16:d3:b8:70:f6:de:34:c4:3c:d1:a6:20:7b:fc:fe:84: 39:07:b5:79:f9:71:2a:5b:f7:f9:b7:d6:27:45:73:a5:8c:54: f1:04:f8:21:ff:65:2f:a0:d2:0f:5b:f0:d2:e9:e9:99:28:ca: 37:35:e1:74:d1:8c:e8:e9:a9:79:94:81:db:1b:05:d5:9f:bc: c3:85:82:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUxMjIxMDQ0MzQxWhcNMjUxMjI4MDQ0MzQxWjAYMRYwFAYD VQQDDA02OTQ3N2FmZS1lNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2j7wMi1kWIcFK4xzmodqdRbzylRRjt0/BfiJEu9BwmxLXzMri3KT/TMmkojb Fb5gcdLmo56l2MQBra15PNLuSm+NuSf0/hw9WFT6SWLLiOoLTrf+hyhnixuFb+Wb WdXZ/CVIZMjjr7ZaxRbKyu1UrINHhiwqk3YXFcg9jDkbPg35MOPquw0c50uwAlW7 aQS3MCtoaSBEDP2cEjrRbLxEaEmgJIlB1qZmuXUwUyLE0ktT1f+0KL4Os8KfMOxE TLqCY/CS5o7Hm8QiR/7RUnUdusS+uCYUEjHUQQ5d1Hs0DgHqLa8IyertLpI59mOH MPt+H08vKa+z/qSPRCkCJEzOyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVJqa2D 5QcN2e9XeQ0ZvZYJw5unMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBotSq6dAua1BiNPKNPcHjgB6tbiOyBH/vs5epPVUdzO1poWZSjG8C1 jQoSmrLX9Y+dqFdOEjZ8Akut+kYDME8dEwmswX7w4QVLaUF8tSqbNQA7gtXNQ+uv Mp3Or7xDRRjJSmNfsw8lHPJNmYFH/lOaF033sRfXfLnvIE9cCXhaRznub9UBfami WY1XPatAepWWEU6obsT6VQmwEqztEpWgiO+JXeLadIpFpjaafJve5FfgxleD/hbT uHD23jTEPNGmIHv8/oQ5B7V5+XEqW/f5t9YnRXOljFTxBPgh/2UvoNIPW/DS6emZ KMo3NeF00Yzo6al5lIHbGwXVn7zDhYJa -----END CERTIFICATE-----Generated at Mon Dec 22 20:46:53 2025 by rpki-client