This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: h66TOoxXOAUiWgITCbUe2YbMa8NPHIEdeFzzv6PGGYw= Subject key identifier: 3B:83:4A:BD:06:CF:CC:E8:7C:CA:5D:AC:70:73:36:F3:FB:96:C7:7A Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 0213 Signing time: Tue 23 Dec 2025 01:44:22 +0000 Manifest this update: Tue 23 Dec 2025 01:44:21 +0000 Manifest next update: Tue 30 Dec 2025 01:44:21 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: Aw3UL1p0fYUs/6tPCRtA5HZCkxuMsv0OvMZxjm6VouQ=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: 4yj8sZR6Z/FxcvXrPscntmMUZkXTFX7XG+1HhFVkn+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: Dec 23 01:44:21 2025 GMT Not After : Dec 30 01:44:21 2025 GMT Subject: CN=6949f3f5-a589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:96:10:26:7d:a5:dc:21:52:53:39:78:3e: 6f:3c:6d:df:16:46:86:f7:e2:2e:70:78:a0:5a:66: 76:47:5f:18:2c:99:ae:81:43:04:ed:f1:3a:05:e1: 9e:36:96:0e:e8:f4:e2:a1:58:39:90:fa:4b:a9:29: 91:c0:89:8a:96:84:0a:94:d0:b6:7d:1d:6d:ba:48: 46:cf:24:d7:30:4c:4c:2d:2e:ea:6f:0d:21:0f:75: ee:f1:ca:28:55:1e:70:d6:7f:4d:b9:6d:be:91:51: d5:dd:7e:66:c9:e3:74:43:75:f8:b5:9e:3c:13:01: 3e:48:84:6f:a2:48:76:ff:85:26:b6:c2:cd:04:7c: c8:8e:83:ff:83:7d:08:56:8f:5b:d9:16:97:95:35: 5b:f5:30:64:4a:a7:7c:06:e2:68:d4:24:1a:a4:ef: dd:d4:03:15:f1:75:99:d1:c3:f2:22:8b:85:d4:29: fd:36:2e:c8:f4:96:6d:3c:bf:d8:9e:48:0f:f3:a3: d7:77:72:c8:90:d0:a9:99:02:01:1a:c3:c0:2e:91: 7e:ce:94:66:8c:f1:fc:a9:a2:31:31:18:9d:a8:36: 82:19:a5:ce:64:2d:d7:ee:56:18:34:4e:ee:51:38: 8a:58:38:ff:9b:e4:2b:85:29:2e:57:0a:ac:8d:6e: d7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:83:4A:BD:06:CF:CC:E8:7C:CA:5D:AC:70:73:36:F3:FB:96:C7:7A X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:53:8f:53:30:b6:ba:b8:3b:b1:47:95:fe:12:93:98:20:4c: 78:c3:d5:b7:f7:16:e8:ed:bb:68:8a:61:94:00:15:33:ec:96: 66:3f:6f:9d:86:56:f3:4d:d0:66:fa:a7:a1:bd:27:54:4f:83: bf:a9:8e:88:06:56:08:d4:32:a0:e2:05:c9:30:76:0f:95:5b: 4b:d9:fa:08:b6:a2:2e:24:ac:87:e2:b0:a2:21:5f:b2:c9:f9: 81:ec:6c:a2:aa:1d:c3:a2:dd:00:fc:bc:e9:93:9e:74:ae:70: 48:92:6f:77:66:f2:da:4a:46:08:c1:b5:aa:ce:92:a7:84:9f: d3:a1:34:b3:93:84:b7:87:fb:df:64:4d:89:85:7c:ec:92:16: dd:85:86:c3:25:f9:0b:d6:c7:56:66:f5:33:28:e3:8d:99:d1: 0e:60:13:71:27:dc:fd:8f:fe:c8:25:4a:d4:e8:a4:95:c2:3f: bc:a9:14:4e:b1:8d:5c:ad:90:e9:06:8b:a7:8e:0f:44:2a:21: 07:f1:9b:03:01:89:62:18:5f:62:27:f2:21:1e:72:d9:99:2e: b7:53:d8:0c:3b:9a:36:a5:a4:d0:7e:ff:38:89:8d:c8:5f:16: 6f:99:6e:0e:df:f5:c5:ca:d8:ec:dd:a6:fa:05:a2:ba:ac:82: c5:e7:76:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjUxMjIzMDE0NDIxWhcNMjUxMjMwMDE0NDIxWjAYMRYwFAYD VQQDDA02OTQ5ZjNmNS1hNTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKqWECZ9pdwhUlM5eD5vPG3fFkaG9+IucHigWmZ2R18YLJmugUME7fE6BeGe NpYO6PTioVg5kPpLqSmRwImKloQKlNC2fR1tukhGzyTXMExMLS7qbw0hD3Xu8coo VR5w1n9NuW2+kVHV3X5myeN0Q3X4tZ48EwE+SIRvokh2/4UmtsLNBHzIjoP/g30I Vo9b2RaXlTVb9TBkSqd8BuJo1CQapO/d1AMV8XWZ0cPyIouF1Cn9Ni7I9JZtPL/Y nkgP86PXd3LIkNCpmQIBGsPALpF+zpRmjPH8qaIxMRidqDaCGaXOZC3X7lYYNE7u UTiKWDj/m+QrhSkuVwqsjW7XrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuDSr0G z8zofMpdrHBzNvP7lsd6MB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjU49TMLa6uDuxR5X+EpOYIEx4w9W39xbo7btoimGUABUz7JZmP2+d hlbzTdBm+qehvSdUT4O/qY6IBlYI1DKg4gXJMHYPlVtL2foItqIuJKyH4rCiIV+y yfmB7Gyiqh3Dot0A/Lzpk550rnBIkm93ZvLaSkYIwbWqzpKnhJ/ToTSzk4S3h/vf ZE2JhXzskhbdhYbDJfkL1sdWZvUzKOONmdEOYBNxJ9z9j/7IJUrU6KSVwj+8qRRO sY1crZDpBounjg9EKiEH8ZsDAYliGF9iJ/IhHnLZmS63U9gMO5o2paTQfv84iY3I XxZvmW4O3/XFytjs3ab6BaK6rILF53b/ -----END CERTIFICATE-----Generated at Wed Dec 24 22:59:43 2025 by rpki-client