This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: YxOSH17oshi2NdwB8SmykmYQLjRw5E8etZSCbAsi1Aw= Subject key identifier: B5:E0:C8:A1:A2:96:B5:69:ED:2E:89:56:BC:FE:DC:CA:DC:FA:A2:D6 Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 07EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 07E4 Signing time: Mon 22 Dec 2025 20:29:14 +0000 Manifest this update: Mon 22 Dec 2025 20:29:13 +0000 Manifest next update: Mon 29 Dec 2025 20:29:13 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: ZtE3UkYDKFL5jV6kitWNY00ijqb+a6ut4JqnKjCbtrM=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: mNk4vqkbEqAUKSAuFUYzNqrwGgW9V3NMTHITdtEzfC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2026 (0x7ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C, serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: Dec 22 20:29:13 2025 GMT Not After : Dec 29 20:29:13 2025 GMT Subject: CN=6949aa1a-4a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:88:97:51:b5:7f:92:af:cc:f0:a5:70:b4:42: b7:bb:45:f9:9e:d6:15:31:bd:28:c8:32:63:99:10: c1:60:ea:a6:33:88:fd:ee:1f:a9:e6:ae:6c:97:54: 3a:6b:78:15:3c:a8:80:59:d5:2b:3b:9f:6a:51:1f: 70:15:18:5b:2d:cd:84:20:48:18:f0:45:5c:dc:4e: 54:0d:c2:73:d8:0a:65:86:c8:bc:95:15:48:e8:9c: 2d:05:0e:ad:86:4d:e3:a3:2f:33:cf:7b:b4:d8:58: d2:d3:37:39:41:92:a8:ae:20:78:00:01:2c:96:33: 5f:41:92:74:e5:3a:47:a4:5f:47:9f:cc:73:96:f8: 01:1d:37:ae:62:45:c0:fe:86:6b:a7:f0:d4:34:ad: 76:2c:b8:eb:40:55:38:7b:dd:10:b4:9c:7b:c0:02: a8:9c:de:f0:45:08:27:9d:0f:14:81:2c:2f:5a:d9: f3:17:45:02:6f:e4:29:53:d0:62:fe:e7:3b:ad:f4: 6a:be:47:f8:35:b6:03:54:8f:13:c2:f2:60:36:ed: 04:56:64:f1:2c:48:3d:c6:08:bf:3b:cd:06:cd:d8: ff:2c:a6:96:7d:bf:5b:28:ea:c0:8d:3c:3f:51:df: f4:db:c7:b5:c5:2e:d0:38:77:a9:78:3c:54:c7:0f: 4c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E0:C8:A1:A2:96:B5:69:ED:2E:89:56:BC:FE:DC:CA:DC:FA:A2:D6 X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b0:09:a2:bb:fd:cd:4f:86:f5:16:84:23:41:4b:7f:57:49: 06:7c:ad:fb:d2:cb:5b:5d:99:d6:90:22:a9:fb:0a:76:ea:f6: 41:ee:17:ee:77:4a:15:22:0c:36:18:15:31:6d:87:eb:97:08: b6:1e:93:78:bc:a9:fa:a0:31:30:24:a4:2f:a9:5f:3f:6c:5f: c7:98:be:63:00:c0:56:e9:50:24:9a:8e:6e:73:25:96:19:b6: dc:e6:23:e2:c9:7e:e5:39:81:80:28:e2:5d:82:64:39:ab:ab: ff:34:a4:52:77:e2:38:da:35:ba:69:1c:8f:7e:9b:2a:23:db: cc:fc:1c:fd:92:8b:7d:26:7e:75:79:fe:c4:f8:59:a6:79:62: dd:3b:ed:91:d1:03:0a:6f:e4:8e:09:ee:7c:12:56:a7:1f:39: 3f:df:51:6b:c2:c6:e5:da:ae:a3:f2:aa:87:0e:18:03:31:68: 03:f1:b1:c5:cd:f9:b3:c4:93:2a:ea:2d:d8:73:ce:18:b9:ea: 41:38:01:77:9a:a5:ae:89:9b:67:54:82:b6:12:77:03:4d:5b: 3e:42:5a:7a:9b:d7:38:24:31:e3:7b:65:b8:64:92:90:86:79: b0:03:1c:7e:7e:1e:b5:2d:0d:77:72:23:82:38:b1:8e:ac:c6: e5:f9:c4:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjUxMjIyMjAyOTEzWhcNMjUxMjI5MjAyOTEzWjAYMRYwFAYD VQQDDA02OTQ5YWExYS00YTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74iXUbV/kq/M8KVwtEK3u0X5ntYVMb0oyDJjmRDBYOqmM4j97h+p5q5sl1Q6 a3gVPKiAWdUrO59qUR9wFRhbLc2EIEgY8EVc3E5UDcJz2Aplhsi8lRVI6JwtBQ6t hk3joy8zz3u02FjS0zc5QZKoriB4AAEsljNfQZJ05TpHpF9Hn8xzlvgBHTeuYkXA /oZrp/DUNK12LLjrQFU4e90QtJx7wAKonN7wRQgnnQ8UgSwvWtnzF0UCb+QpU9Bi /uc7rfRqvkf4NbYDVI8TwvJgNu0EVmTxLEg9xgi/O80Gzdj/LKaWfb9bKOrAjTw/ Ud/028e1xS7QOHepeDxUxw9MSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXgyKGi lrVp7S6JVrz+3Mrc+qLWMB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtsAmiu/3NT4b1FoQjQUt/V0kGfK370stbXZnWkCKp+wp26vZB7hfu d0oVIgw2GBUxbYfrlwi2HpN4vKn6oDEwJKQvqV8/bF/HmL5jAMBW6VAkmo5ucyWW Gbbc5iPiyX7lOYGAKOJdgmQ5q6v/NKRSd+I42jW6aRyPfpsqI9vM/Bz9kot9Jn51 ef7E+FmmeWLdO+2R0QMKb+SOCe58ElanHzk/31Frwsbl2q6j8qqHDhgDMWgD8bHF zfmzxJMq6i3Yc84YuepBOAF3mqWuiZtnVIK2EncDTVs+Qlp6m9c4JDHje2W4ZJKQ hnmwAxx+fh61LQ13ciOCOLGOrMbl+cRz -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:03 2025 by rpki-client