This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft File: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft (raw, json) Hash identifier: lZ7Di1b0l4jZE//q0diaV85U7McYP37t7h4E4UNZrxM= Subject key identifier: BB:C8:80:1B:9A:C2:CF:34:12:63:C5:FE:5E:C5:8A:26:8B:73:CE:25 Authority key identifier: DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 Certificate issuer: /CN=A91B5AAA/serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Certificate serial: 0BA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft Manifest number: 4092 Signing time: Mon 22 Dec 2025 14:45:25 +0000 Manifest this update: Mon 22 Dec 2025 14:45:25 +0000 Manifest next update: Mon 29 Dec 2025 14:45:25 +0000 Files and hashes: 1: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl (hash: 4OirimTS+DPcZDYkr+l8l0/T9YI09MiRiKNSyxKy/ag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Validity Not Before: Dec 22 14:45:25 2025 GMT Not After : Dec 29 14:45:25 2025 GMT Subject: CN=69495985-ce0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:15:35:50:82:fd:6c:55:5e:60:26:27:17: 4d:57:f7:7e:6a:7b:62:92:19:95:cf:8e:f7:6f:42: af:4c:0d:a1:e2:58:4d:db:f6:e9:68:fe:6c:b4:7d: d4:39:a1:f1:55:90:2d:24:81:8f:25:d3:72:66:b3: 33:d6:55:e9:4d:fd:c2:64:fc:ad:61:4f:63:66:b3: 25:ab:d3:be:8a:1d:1e:8b:c1:62:a8:e0:b2:97:c8: 26:58:db:b9:3a:b4:cf:1b:0e:4d:1c:19:88:29:f4: e6:aa:f8:1e:c1:38:e6:1e:15:01:1b:4a:b4:29:b4: 10:45:66:b0:ee:fa:cb:5d:1f:d3:94:e4:a2:e1:5e: 5c:d4:53:73:ff:b6:9b:3b:ff:4c:bb:1d:e2:f7:75: 4f:08:25:12:2f:8e:c7:10:9c:4e:fc:e2:9c:36:40: 98:4f:34:01:ea:05:fb:3f:fa:d6:a7:33:b0:b0:4e: 23:ed:55:57:79:84:69:f7:b4:e0:09:d2:b5:7c:ca: f8:f1:b0:08:f3:62:73:a5:11:b2:1b:d0:06:3a:05: dc:52:c6:9b:da:2a:be:40:af:e3:7d:88:f7:79:f1: 3d:ad:07:08:9f:07:46:66:dc:75:17:df:71:04:d9: bc:e4:c0:3a:7c:0c:f7:e5:f6:55:b4:a3:ac:6f:9d: 84:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C8:80:1B:9A:C2:CF:34:12:63:C5:FE:5E:C5:8A:26:8B:73:CE:25 X509v3 Authority Key Identifier: keyid:DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c5:b1:2f:9e:9b:bf:48:4e:e3:8f:22:d8:0b:4e:2a:97:9b: cd:65:36:ea:1c:26:a7:61:af:77:89:9d:2c:83:26:8f:22:76: 9a:88:68:9f:83:7a:7b:23:57:1f:68:e2:f8:73:f6:34:03:9e: 77:2a:b0:c9:52:e2:3b:60:d3:d6:63:28:95:6b:6c:94:fc:2c: d6:06:3e:5d:da:de:3c:05:ca:49:21:fe:7c:94:00:05:ea:34: d2:bc:0c:52:5c:44:6b:19:6d:04:db:d5:f4:dc:58:79:51:17: 13:35:5d:2d:7e:9e:2f:7b:f6:eb:aa:65:32:4c:75:f4:06:70: f7:45:a8:ef:4e:f7:7a:86:82:7f:97:89:c6:15:a5:ca:42:64: 31:f0:96:b1:5e:c2:6e:9a:09:c8:24:30:a3:e2:22:97:9d:09: 29:e9:c1:0d:d0:f0:d4:74:49:c3:04:e5:c3:d9:46:00:9b:79: 9f:91:e6:30:82:73:bd:d6:91:35:4e:99:06:76:c0:13:e7:4c: 60:ee:82:05:d4:ed:dc:53:df:86:c6:6e:06:41:7b:c6:11:c4: 2f:ab:ef:cd:41:af:65:06:e4:98:d1:2a:8a:9b:b7:05:e6:e7: bc:da:01:b1:d8:b9:b1:20:6a:6c:2f:1a:49:4d:18:8c:5e:32: 2f:af:df:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKERDRjU0NzBDNUM4NzgyODhENjFEOUVBNUE1MTVENTg1 MEU3QjU4NzMwHhcNMjUxMjIyMTQ0NTI1WhcNMjUxMjI5MTQ0NTI1WjAYMRYwFAYD VQQDDA02OTQ5NTk4NS1jZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqkVNVCC/WxVXmAmJxdNV/d+antikhmVz473b0KvTA2h4lhN2/bpaP5stH3U OaHxVZAtJIGPJdNyZrMz1lXpTf3CZPytYU9jZrMlq9O+ih0ei8FiqOCyl8gmWNu5 OrTPGw5NHBmIKfTmqvgewTjmHhUBG0q0KbQQRWaw7vrLXR/TlOSi4V5c1FNz/7ab O/9Mux3i93VPCCUSL47HEJxO/OKcNkCYTzQB6gX7P/rWpzOwsE4j7VVXeYRp97Tg CdK1fMr48bAI82JzpRGyG9AGOgXcUsab2iq+QK/jfYj3efE9rQcInwdGZtx1F99x BNm85MA6fAz35fZVtKOsb52EZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvIgBua ws80EmPF/l7FiiaLc84lMB8GA1UdIwQYMBaAFNz1Rwxch4KI1h2epaUV1YUOe1hz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdvaldIWjZscFJYVmhRNTdX SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNQVkhERnlIZ29qV0haNmxwUlhWaFE1N1dITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdv aldIWjZscFJYVmhRNTdXSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArxbEvnpu/SE7jjyLYC04ql5vNZTbqHCanYa93iZ0sgyaPInaaiGif g3p7I1cfaOL4c/Y0A553KrDJUuI7YNPWYyiVa2yU/CzWBj5d2t48BcpJIf58lAAF 6jTSvAxSXERrGW0E29X03Fh5URcTNV0tfp4ve/brqmUyTHX0BnD3RajvTvd6hoJ/ l4nGFaXKQmQx8JaxXsJumgnIJDCj4iKXnQkp6cEN0PDUdEnDBOXD2UYAm3mfkeYw gnO91pE1TpkGdsAT50xg7oIF1O3cU9+Gxm4GQXvGEcQvq+/NQa9lBuSY0SqKm7cF 5ue82gGx2LmxIGpsLxpJTRiMXjIvr9/B -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:04 2025 by rpki-client