This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: 4ZFiwS/kg/6kHH5v9uq8amqooDn9/MvTLQonracT6qw= Subject key identifier: D5:C8:E1:FB:74:8D:95:94:2A:40:56:DF:B8:DC:A1:9F:C9:61:23:D4 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 01D4 Signing time: Tue 02 Dec 2025 15:10:32 +0000 Manifest this update: Tue 02 Dec 2025 15:10:31 +0000 Manifest next update: Tue 09 Dec 2025 15:10:31 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: sWhizk7BQvnVynDqMSftRRg64o2zkgDCwy/eBnZ4fyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Dec 2 15:10:31 2025 GMT Not After : Dec 9 15:10:31 2025 GMT Subject: CN=692f0168-1763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:36:bf:cc:a9:a8:42:f3:68:a2:fb:3f:6b:25: b5:e4:50:41:c3:c7:2a:55:61:b7:e3:c7:7b:80:58: 74:7e:30:5e:4a:c2:e5:d5:f9:b1:cc:9c:5f:99:07: 6a:a1:ea:92:91:5e:30:bb:9f:76:09:8c:ac:e8:88: 3f:c5:a9:c5:cb:f0:bf:3b:3f:bc:f9:7e:fd:41:ea: d0:51:35:b5:23:ef:b8:a2:a1:8f:1b:cd:b2:94:23: 02:da:3c:0d:7d:b5:8c:1c:c7:14:e2:71:b1:01:97: 9c:65:15:5e:93:7c:15:e3:dd:44:6e:c7:dd:a5:30: 06:df:53:b4:2b:76:da:66:c0:99:ec:40:da:93:34: a1:c6:29:22:c7:38:e5:9f:1e:f0:d1:d5:34:46:63: 55:6b:7c:1b:b0:3f:1b:a7:19:4b:0b:de:20:31:10: fe:e8:ed:39:df:f6:97:4b:d1:62:9d:12:4b:dd:1a: d9:9b:0d:d9:70:99:e2:40:10:88:11:64:90:c9:02: 0b:32:2e:18:6b:c0:8e:68:48:d8:0c:c2:8a:4a:87: 8a:2e:1c:30:de:d6:62:0b:3a:c5:a6:e1:7c:08:e2: 43:29:78:f3:02:43:12:df:a6:83:6d:34:29:be:13: ca:d7:19:25:61:38:33:0a:2d:28:95:10:db:c5:a8: e4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C8:E1:FB:74:8D:95:94:2A:40:56:DF:B8:DC:A1:9F:C9:61:23:D4 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:33:e5:b6:f8:f3:69:99:ae:76:eb:83:87:bb:cb:33:6d:a4: 03:a1:76:00:9e:13:4b:38:da:3b:8e:22:94:b0:1b:d9:e5:f3: 89:7d:ae:cf:55:38:57:88:c7:9e:00:df:48:dc:c4:13:d5:aa: 05:76:fd:3b:2a:a4:ad:d1:63:fb:97:0e:27:84:62:0a:35:9c: 01:bd:9c:c8:e0:2c:94:4d:c9:4a:bb:ea:d5:4e:31:3e:a7:96: b6:b6:29:b5:66:a7:e2:09:41:cd:44:ec:d0:4c:1b:c2:08:91: f3:3f:c4:83:d7:31:71:eb:c7:e2:04:d1:20:f2:47:20:53:c2: 8d:8f:c5:ed:96:8d:c5:60:2d:25:ef:f2:25:31:0b:88:56:7c: b1:f1:24:53:62:44:59:1b:81:32:d9:93:34:41:b6:c5:52:06: ae:78:65:43:6a:e7:fc:19:29:ad:75:34:74:e6:84:92:21:d8: cf:7d:32:99:a4:91:a7:46:c5:30:9a:65:5c:c2:b2:8e:76:b8: ba:66:2f:b6:8f:cb:b0:6f:01:34:81:3f:65:7b:7c:20:a9:f4: e4:55:5f:77:df:f5:79:42:d1:5a:67:94:82:41:0e:bc:06:5e: f3:57:50:75:f5:4c:ff:e1:61:98:a5:3b:6d:0b:77:19:5a:47: 8f:95:f7:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUxMjAyMTUxMDMxWhcNMjUxMjA5MTUxMDMxWjAYMRYwFAYD VQQDEw02OTJmMDE2OC0xNzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDa/zKmoQvNoovs/ayW15FBBw8cqVWG348d7gFh0fjBeSsLl1fmxzJxfmQdq oeqSkV4wu592CYys6Ig/xanFy/C/Oz+8+X79QerQUTW1I++4oqGPG82ylCMC2jwN fbWMHMcU4nGxAZecZRVek3wV491EbsfdpTAG31O0K3baZsCZ7EDakzShxikixzjl nx7w0dU0RmNVa3wbsD8bpxlLC94gMRD+6O053/aXS9FinRJL3RrZmw3ZcJniQBCI EWSQyQILMi4Ya8COaEjYDMKKSoeKLhww3tZiCzrFpuF8COJDKXjzAkMS36aDbTQp vhPK1xklYTgzCi0olRDbxajkcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXI4ft0 jZWUKkBW37jcoZ/JYSPUMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnM+W2+PNpma5264OHu8szbaQDoXYAnhNLONo7jiKUsBvZ5fOJfa7P VThXiMeeAN9I3MQT1aoFdv07KqSt0WP7lw4nhGIKNZwBvZzI4CyUTclKu+rVTjE+ p5a2tim1ZqfiCUHNROzQTBvCCJHzP8SD1zFx68fiBNEg8kcgU8KNj8Xtlo3FYC0l 7/IlMQuIVnyx8SRTYkRZG4Ey2ZM0QbbFUgaueGVDauf8GSmtdTR05oSSIdjPfTKZ pJGnRsUwmmVcwrKOdri6Zi+2j8uwbwE0gT9le3wgqfTkVV933/V5QtFaZ5SCQQ68 Bl7zV1B19Uz/4WGYpTttC3cZWkePlfft -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:34 2025 by rpki-client