This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft File: 3XyND0ePm-ar9znAT1tb5NyfYfg.mft (raw, json) Hash identifier: 0OH+B2x7ttRYKksVwdzCkdzt3t0G5fVZB6deeGNLkXc= Subject key identifier: 08:34:4A:17:9C:DA:F1:B7:C3:BE:E8:F4:E5:47:5B:12:45:35:CC:71 Authority key identifier: DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 Certificate issuer: /CN=A91B1E55/serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft Manifest number: EA Signing time: Tue 23 Dec 2025 04:21:06 +0000 Manifest this update: Tue 23 Dec 2025 04:21:06 +0000 Manifest next update: Tue 30 Dec 2025 04:21:06 +0000 Files and hashes: 1: 3XyND0ePm-ar9znAT1tb5NyfYfg.crl (hash: YrIs1dowy/OoWzusDgRq/FSSIaR9MKTqKn27pqmNnvA=) 2: EA810E6278FA11EF9043060AC4F9AE02.roa (hash: dW58Y+pKYUf1WCLV35cEdJ/OqwM43ahP5CXKmE1/xaY=) 3: EAF1E48478FA11EF9043060AC4F9AE02.roa (hash: 29JJitgeZibCuMLwmFZOe7Iewb0yCQvMIqLz7xwmm+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E55, serialNumber=DD7C8D0F478F9BE6ABF739C04F5B5BE4DC9F61F8 Validity Not Before: Dec 23 04:21:06 2025 GMT Not After : Dec 30 04:21:06 2025 GMT Subject: CN=694a18b2-06b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ef:d6:2d:93:c8:a0:b9:54:b6:d3:fe:20:54: b6:da:af:3e:db:b9:b8:0c:5d:66:1e:c3:0c:46:fe: 59:09:1c:75:6e:49:e2:08:6f:9c:0d:56:4e:df:2c: ea:91:d3:b3:32:bc:03:5f:36:ac:b7:4f:7b:37:08: 5e:d2:5e:1d:4a:ab:e2:26:96:4f:64:ca:72:72:c5: 14:b5:34:b5:47:9e:87:d8:b4:80:be:54:f2:0c:51: 04:9e:b7:e2:5e:7e:5b:83:86:43:e3:79:94:59:9f: ed:ac:48:aa:bc:af:4a:30:d1:ec:e5:a1:4c:b3:fe: 6e:9e:ac:88:a6:4c:2a:89:12:23:fc:e6:8b:65:45: 8e:a6:80:42:ac:e7:ea:69:83:3a:7a:9f:66:6e:57: 75:13:c8:e2:39:7e:ec:2c:b5:93:9f:54:7a:15:df: 16:80:54:26:d6:6d:1b:d4:03:ba:17:7a:b0:23:1e: c4:80:42:9b:13:ea:d6:3b:19:f3:d3:0b:c4:4d:63: 5e:f2:f9:12:89:cd:88:08:bd:d9:17:8a:8a:c2:45: 85:0e:80:11:04:e2:5c:7b:ac:7a:bc:7b:b9:df:8e: e7:73:b5:a9:3c:78:83:03:34:06:2a:0f:b2:bc:ae: 17:e1:f5:69:bb:0c:b4:0b:46:1e:96:91:ed:fb:63: de:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:34:4A:17:9C:DA:F1:B7:C3:BE:E8:F4:E5:47:5B:12:45:35:CC:71 X509v3 Authority Key Identifier: keyid:DD:7C:8D:0F:47:8F:9B:E6:AB:F7:39:C0:4F:5B:5B:E4:DC:9F:61:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3XyND0ePm-ar9znAT1tb5NyfYfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/4C09862E78FA11EFA44FE586C4F9AE02/3XyND0ePm-ar9znAT1tb5NyfYfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:d7:e4:56:b9:e6:eb:58:b7:66:18:cb:44:f5:04:f1:d6:c1: 41:a9:f9:81:d6:3b:2c:f9:ce:54:bd:a5:f2:65:78:46:fc:f5: 92:b2:a4:7e:d2:25:05:91:73:33:e8:12:c9:c5:80:fc:d5:05: a0:3f:d2:c3:78:ab:e2:0c:95:16:83:2b:c6:4c:01:63:24:4f: 44:d0:20:c7:96:62:66:2f:b0:a5:4f:49:ee:29:b9:95:11:85: ae:4f:c1:3c:9c:fa:e8:80:2c:19:3b:53:6d:82:4d:84:2c:aa: e7:5c:59:86:e6:ed:31:17:1a:f3:c4:69:9a:60:60:54:3f:a1: 55:de:4e:48:c0:9b:3e:95:49:b0:3e:96:c4:67:d1:5e:57:e0: d6:0a:66:96:71:a1:1a:79:24:ee:18:5c:82:84:84:f7:25:db: 0a:90:e0:de:ce:46:b1:a6:59:b3:98:8d:c7:c7:09:7e:5e:09: 76:15:04:ef:e9:e7:e3:ab:d3:b0:12:4c:b5:37:cc:94:86:1d: 18:54:b4:4a:99:dc:7a:a8:8a:86:4a:b3:d2:53:2c:1e:38:af: 21:f5:02:75:1d:2a:02:52:28:6f:99:e9:5b:17:8e:df:98:a8: f9:cf:f6:41:b8:69:4c:a6:00:27:61:4d:f0:5f:03:82:10:27: 80:de:46:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFNTUxMTAvBgNVBAUTKEREN0M4RDBGNDc4RjlCRTZBQkY3MzlDMDRGNUI1QkU0 REM5RjYxRjgwHhcNMjUxMjIzMDQyMTA2WhcNMjUxMjMwMDQyMTA2WjAYMRYwFAYD VQQDDA02OTRhMThiMi0wNmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+/WLZPIoLlUttP+IFS22q8+27m4DF1mHsMMRv5ZCRx1bkniCG+cDVZO3yzq kdOzMrwDXzast097Nwhe0l4dSqviJpZPZMpycsUUtTS1R56H2LSAvlTyDFEEnrfi Xn5bg4ZD43mUWZ/trEiqvK9KMNHs5aFMs/5unqyIpkwqiRIj/OaLZUWOpoBCrOfq aYM6ep9mbld1E8jiOX7sLLWTn1R6Fd8WgFQm1m0b1AO6F3qwIx7EgEKbE+rWOxnz 0wvETWNe8vkSic2ICL3ZF4qKwkWFDoARBOJce6x6vHu5347nc7WpPHiDAzQGKg+y vK4X4fVpuwy0C0YelpHt+2PeYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAg0Shec 2vG3w77o9OVHWxJFNcxxMB8GA1UdIwQYMBaAFN18jQ9Hj5vmq/c5wE9bW+Tcn2H4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU1NS80QzA5ODYyRTc4 RkExMUVGQTQ0RkU1ODZDNEY5QUUwMi8zWHlORDBlUG0tYXI5em5BVDF0YjVOeWZZ ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNYeU5EMGVQbS1hcjl6bkFUMXRiNU55ZllmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU1NS80QzA5ODYyRTc4RkExMUVGQTQ0RkU1ODZDNEY5QUUwMi8zWHlORDBlUG0t YXI5em5BVDF0YjVOeWZZZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj1+RWuebrWLdmGMtE9QTx1sFBqfmB1jss+c5UvaXyZXhG/PWSsqR+ 0iUFkXMz6BLJxYD81QWgP9LDeKviDJUWgyvGTAFjJE9E0CDHlmJmL7ClT0nuKbmV EYWuT8E8nProgCwZO1Ntgk2ELKrnXFmG5u0xFxrzxGmaYGBUP6FV3k5IwJs+lUmw PpbEZ9FeV+DWCmaWcaEaeSTuGFyChIT3JdsKkODezkaxplmzmI3Hxwl+Xgl2FQTv 6efjq9OwEky1N8yUhh0YVLRKmdx6qIqGSrPSUyweOK8h9QJ1HSoCUihvmelbF47f mKj5z/ZBuGlMpgAnYU3wXwOCECeA3ka6 -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:52 2025 by rpki-client