This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: gVAqZne4FeS1MsEF+BsZjseOsHZGeS+5xXcRqM4wfk0= Subject key identifier: 66:12:76:39:95:23:57:2C:CD:ED:AB:EE:87:85:C3:74:7A:33:A2:37 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0698 Signing time: Sun 14 Dec 2025 21:44:50 +0000 Manifest this update: Sun 14 Dec 2025 21:44:49 +0000 Manifest next update: Sun 21 Dec 2025 21:44:49 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: YVKHWDpF4qXf1IbmlIdeZz/vA9QbdbMPDXsu1tKJrlw=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 21:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Dec 14 21:44:49 2025 GMT Not After : Dec 21 21:44:49 2025 GMT Subject: CN=693f2fd1-dd25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:d5:2c:d5:4e:23:be:68:ef:32:8f:40:ca: ae:67:35:e2:10:f0:8f:0f:0f:8b:2e:94:4b:7e:ef: ef:29:15:e2:0c:44:d4:09:c5:6f:d1:07:8c:6e:e5: 84:20:62:5b:06:73:63:c5:c4:5a:24:ef:d6:63:1a: 13:53:4f:46:0f:ee:d0:3f:c6:22:29:04:2d:7a:1b: 67:54:e8:13:ac:2d:5b:95:00:96:d0:b3:ef:27:f3: 03:27:98:2a:c6:d9:87:3c:6a:7a:be:cd:7a:d3:c0: 83:e7:14:15:48:54:96:a9:2a:ce:0f:1c:34:f5:5a: f8:85:3d:ec:3a:c6:eb:3d:70:89:fb:b1:e8:cc:e0: dc:9b:59:a9:c2:9e:a3:b9:1f:89:ba:fe:7b:ad:1a: 8f:b6:19:4d:4e:4d:28:e8:e6:a3:39:50:9a:bc:9d: 4f:21:f5:a3:8c:b6:37:ab:c0:f4:7c:20:2c:75:da: 1a:e2:5e:b1:80:cb:19:49:f8:8d:1d:c2:9f:6f:cc: 74:cc:e0:f1:2c:f7:9f:7f:19:9c:bd:0c:81:8b:04: 49:8f:8c:d4:87:eb:8f:46:45:06:a0:c1:77:21:21: 6c:a8:7f:8d:18:c3:d5:22:48:6e:4c:42:a0:37:cf: 72:e9:15:e6:cd:1c:c5:d7:d0:b7:a2:bd:8d:3d:c0: a2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:12:76:39:95:23:57:2C:CD:ED:AB:EE:87:85:C3:74:7A:33:A2:37 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c1:c7:b3:f4:a5:d1:35:c3:d0:00:5d:9d:6d:38:1d:04:14: 15:12:36:5a:19:23:15:1c:2e:f7:67:51:4c:52:18:45:dc:20: 16:af:34:f3:88:75:7a:d4:fb:95:6c:f0:2d:c5:e5:65:f8:3a: 0d:6c:a8:d3:5e:95:10:0f:37:b9:b6:f8:cc:e6:e4:2c:34:ee: 60:44:4f:c5:93:fc:a2:bf:45:6c:93:56:42:ab:4a:c8:f8:d0: 0b:9e:34:2c:4c:53:74:5b:0a:0f:49:99:21:85:56:c5:0f:5f: 1c:d3:f9:29:90:52:8f:44:73:72:31:6c:25:d8:ae:7d:b9:d8: be:6d:2c:61:42:6d:0e:15:83:61:a4:8f:e9:b5:5e:0c:e2:1b: 93:55:76:5a:77:b1:4a:b4:fd:8f:f0:5b:e8:4d:60:e0:8c:ac: 62:6f:46:5f:61:ff:b1:b9:c0:1d:61:07:e0:31:c6:94:eb:50: d6:1d:2c:5f:71:cc:cf:3c:f7:49:df:5f:04:c4:f4:11:d2:cf: e0:19:78:18:8d:1e:57:9a:5f:1a:87:bc:ad:fa:79:f4:ef:33: ae:cd:90:a5:9c:ac:bb:2d:2d:5d:7b:78:e2:4d:7d:a5:3e:61: 51:51:0f:65:ed:8a:73:60:13:7f:9f:5e:7d:12:f8:8c:97:51: 69:4f:1f:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUxMjE0MjE0NDQ5WhcNMjUxMjIxMjE0NDQ5WjAYMRYwFAYD VQQDDA02OTNmMmZkMS1kZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL/VLNVOI75o7zKPQMquZzXiEPCPDw+LLpRLfu/vKRXiDETUCcVv0QeMbuWE IGJbBnNjxcRaJO/WYxoTU09GD+7QP8YiKQQtehtnVOgTrC1blQCW0LPvJ/MDJ5gq xtmHPGp6vs1608CD5xQVSFSWqSrODxw09Vr4hT3sOsbrPXCJ+7HozODcm1mpwp6j uR+Juv57rRqPthlNTk0o6OajOVCavJ1PIfWjjLY3q8D0fCAsddoa4l6xgMsZSfiN HcKfb8x0zODxLPeffxmcvQyBiwRJj4zUh+uPRkUGoMF3ISFsqH+NGMPVIkhuTEKg N89y6RXmzRzF19C3or2NPcCiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYSdjmV I1csze2r7oeFw3R6M6I3MB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAywcez9KXRNcPQAF2dbTgdBBQVEjZaGSMVHC73Z1FMUhhF3CAWrzTz iHV61PuVbPAtxeVl+DoNbKjTXpUQDze5tvjM5uQsNO5gRE/Fk/yiv0Vsk1ZCq0rI +NALnjQsTFN0WwoPSZkhhVbFD18c0/kpkFKPRHNyMWwl2K59udi+bSxhQm0OFYNh pI/ptV4M4huTVXZad7FKtP2P8FvoTWDgjKxib0ZfYf+xucAdYQfgMcaU61DWHSxf cczPPPdJ318ExPQR0s/gGXgYjR5Xml8ah7yt+nn07zOuzZClnKy7LS1de3jiTX2l PmFRUQ9l7YpzYBN/n159EviMl1FpTx9h -----END CERTIFICATE-----Generated at Tue Dec 16 13:54:42 2025 by rpki-client