This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: 065wQVIXwiMm3rsDmO6mFiaCcTz8uWOcvEIBH7DA5IQ= Subject key identifier: FA:AF:41:1A:99:77:76:30:AA:E7:39:C4:99:9B:A2:3B:B3:88:58:9E Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 01A0 Signing time: Tue 23 Dec 2025 02:20:19 +0000 Manifest this update: Tue 23 Dec 2025 02:20:19 +0000 Manifest next update: Tue 30 Dec 2025 02:20:19 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: 4W7fHgJKlK2uyZTQt6kAGoylRJYxxx+pnA0To21MGx4=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: aEwpt3FN/b3agcSqsy028NBcRbgaV2C2DNdzwhDgaUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Dec 23 02:20:19 2025 GMT Not After : Dec 30 02:20:19 2025 GMT Subject: CN=6949fc63-f742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:4c:52:52:a9:bd:d2:b5:be:1b:2a:7f:04: 8a:af:14:37:21:2c:bb:dd:48:7c:aa:55:ab:a1:58: c6:c7:ee:3b:b9:2d:f4:32:25:6b:8c:0a:ca:53:3f: 75:f4:bd:bf:f1:cf:5f:e9:ad:ed:42:a2:b4:c6:36: f0:06:91:b1:28:6c:2b:c8:a0:2d:61:35:5f:40:1b: f2:91:3c:bd:dd:62:20:61:f1:6d:a1:16:d1:fc:15: 11:c9:81:10:1a:d2:9c:e7:95:97:90:eb:a5:0e:ce: d3:b2:a4:47:06:ae:1b:f7:2a:7e:a5:1a:90:b3:14: 69:1e:42:62:c0:fa:b2:29:b8:04:47:0a:bb:9b:7d: 2d:56:5c:95:c2:c6:86:1c:8f:d1:58:fa:8c:b4:c8: 67:ee:03:d5:67:fe:53:92:5f:4a:e6:91:3a:31:fa: 09:72:c3:39:d8:50:61:ab:0a:81:a2:5f:4c:59:f2: 57:9b:10:6b:a1:5f:c2:8b:3b:7e:5c:de:5b:7c:1b: 2e:86:88:22:b6:8e:3e:09:1e:b5:ed:37:af:2e:5f: 9a:48:62:0f:e9:92:a7:03:a4:f2:51:27:03:ef:88: 7a:3a:17:1f:bf:16:37:ab:af:02:a4:fa:79:ae:e3: 66:65:de:4a:b8:04:98:6a:67:a2:a2:70:f8:6f:27: 30:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AF:41:1A:99:77:76:30:AA:E7:39:C4:99:9B:A2:3B:B3:88:58:9E X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:39:48:63:b7:43:da:44:90:fa:57:f6:0a:18:1a:69:89:b6: 1d:e9:ee:04:39:a7:ad:2c:1f:46:30:20:0d:cb:b8:83:92:68: 49:12:89:ef:bb:a8:cf:80:b5:46:c7:31:84:20:5d:a3:8b:c6: c8:7b:7c:47:a7:99:5e:07:63:be:2f:6d:ed:05:b4:f9:fc:29: bb:78:aa:88:c4:08:a5:b4:96:32:5b:07:ef:ba:b3:3f:c1:7c: 0b:1a:9e:da:46:cf:34:3f:83:2e:40:94:3c:b0:11:3c:3b:02: 41:1c:b8:63:5b:40:ef:5c:08:8e:f3:21:0e:6c:8b:88:ad:6c: 6b:a2:26:9f:44:46:20:7c:81:02:e6:3f:32:77:b7:e0:62:bf: 06:5c:ab:19:39:93:d9:df:37:2f:ee:b6:c9:77:37:03:68:fd: 47:53:6d:6c:b3:db:99:20:c0:13:93:b5:56:0f:f7:2b:c8:43: 11:2a:28:5c:d6:aa:f0:df:ca:54:83:4d:cb:df:65:6b:05:58: 6d:b7:7c:bd:08:60:72:dd:13:50:b3:2f:32:39:28:23:1d:d6: 5c:f9:0f:40:87:10:b4:93:95:0e:3e:9e:e5:a9:d2:af:7f:d1: 61:d9:84:1e:36:40:84:06:53:c4:93:88:ae:f2:50:54:c0:7a: 12:01:18:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUxMjIzMDIyMDE5WhcNMjUxMjMwMDIyMDE5WjAYMRYwFAYD VQQDDA02OTQ5ZmM2My1mNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub1MUlKpvdK1vhsqfwSKrxQ3ISy73Uh8qlWroVjGx+47uS30MiVrjArKUz91 9L2/8c9f6a3tQqK0xjbwBpGxKGwryKAtYTVfQBvykTy93WIgYfFtoRbR/BURyYEQ GtKc55WXkOulDs7TsqRHBq4b9yp+pRqQsxRpHkJiwPqyKbgERwq7m30tVlyVwsaG HI/RWPqMtMhn7gPVZ/5Tkl9K5pE6MfoJcsM52FBhqwqBol9MWfJXmxBroV/Cizt+ XN5bfBsuhogito4+CR617TevLl+aSGIP6ZKnA6TyUScD74h6OhcfvxY3q68CpPp5 ruNmZd5KuASYameionD4bycwGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqvQRqZ d3Ywquc5xJmbojuziFieMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiOUhjt0PaRJD6V/YKGBppibYd6e4EOaetLB9GMCANy7iDkmhJEonv u6jPgLVGxzGEIF2ji8bIe3xHp5leB2O+L23tBbT5/Cm7eKqIxAiltJYyWwfvurM/ wXwLGp7aRs80P4MuQJQ8sBE8OwJBHLhjW0DvXAiO8yEObIuIrWxroiafREYgfIEC 5j8yd7fgYr8GXKsZOZPZ3zcv7rbJdzcDaP1HU21ss9uZIMATk7VWD/cryEMRKihc 1qrw38pUg03L32VrBVhtt3y9CGBy3RNQsy8yOSgjHdZc+Q9AhxC0k5UOPp7lqdKv f9Fh2YQeNkCEBlPEk4iu8lBUwHoSARjr -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:20 2025 by rpki-client