This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft File: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft (raw, json) Hash identifier: VaP0jlkJz5JCukBV3pn7L0Bs5WvlIqBvRWATjSF/8Ko= Subject key identifier: A2:2F:C3:C7:E5:D2:11:BD:32:36:54:10:3F:33:33:F5:83:2B:27:A8 Authority key identifier: 37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 Certificate issuer: /CN=A91EA409/serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft Manifest number: D2 Signing time: Tue 23 Dec 2025 04:38:21 +0000 Manifest this update: Tue 23 Dec 2025 04:38:21 +0000 Manifest next update: Tue 30 Dec 2025 04:38:21 +0000 Files and hashes: 1: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl (hash: KZCcp3mHrCBTz4Msab7Gqz956O5HZwrfKB1eaiC7QHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Validity Not Before: Dec 23 04:38:21 2025 GMT Not After : Dec 30 04:38:21 2025 GMT Subject: CN=694a1cbd-277a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:88:04:3b:d0:d4:11:05:c6:0e:41:b3:57:f5: 3e:87:01:00:39:1f:0f:48:f8:29:e4:9e:73:58:c4: 28:dc:f3:3b:44:a5:6d:d6:91:b0:d6:fb:29:d0:7a: 8d:67:19:3b:a7:c3:71:2b:17:16:94:82:4b:bb:1d: f3:81:6c:39:1f:26:b3:b7:f0:1f:3d:34:d8:2e:e9: 2a:04:78:09:9b:96:26:a8:b0:97:b7:bb:85:ac:a7: bb:51:9d:8f:8e:95:dd:c6:00:ba:c9:ba:fb:88:3f: 98:07:38:2d:93:c6:5d:ee:a5:c0:1c:76:fc:e9:b7: 19:67:f1:94:90:21:19:16:3a:3e:07:6f:80:50:2b: 1b:7d:d1:9c:12:ce:68:46:d3:b0:67:ad:d1:d2:e5: 8c:03:db:1b:5d:29:01:ad:2d:7e:c8:0e:8c:c1:e9: 3e:20:bb:0e:45:f2:94:79:78:96:68:dd:48:79:fb: cc:4c:07:89:8d:b1:cf:ca:44:02:cf:61:63:6e:e8: 76:ae:56:8d:96:30:48:5b:8d:13:7f:71:12:45:5f: f0:d3:dd:c8:fb:06:bf:c6:7b:63:e9:f1:67:b9:45: 72:89:47:b1:89:e4:27:ae:d6:84:6b:5c:76:3b:5c: ee:75:d2:28:08:e6:87:64:90:e1:4b:72:6d:89:fb: 3f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2F:C3:C7:E5:D2:11:BD:32:36:54:10:3F:33:33:F5:83:2B:27:A8 X509v3 Authority Key Identifier: keyid:37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:af:65:11:d1:03:b1:38:dd:5a:51:ad:44:df:ee:78:9f:03: d3:8a:5e:2b:65:d4:b9:28:5d:fe:e0:16:93:77:d7:ce:36:59: e1:43:fd:ad:46:69:2e:b2:bf:1b:52:fa:c6:7a:55:40:96:5d: 76:38:5a:6d:3b:d1:2f:0f:8f:f5:7d:e8:b7:47:83:5c:5a:20: 3a:86:2a:3b:11:a8:83:df:be:f2:d2:22:f6:39:67:9e:1d:29: bb:b1:ce:c9:e9:20:03:67:82:b0:bd:21:f9:b7:b3:1f:44:fa: cd:f1:3f:49:b4:1e:78:75:5e:8f:0f:bd:05:4f:81:d2:6d:0a: 0a:4b:6b:1e:93:6d:f1:ab:0c:46:ec:e1:5b:05:10:b7:c0:ed: ee:b3:19:0e:77:e3:10:fd:7b:0e:fd:a5:b9:df:20:66:84:e7: 84:76:61:85:d7:95:e7:c0:24:17:c0:be:69:29:2e:dd:30:86: 13:5e:38:6c:6a:a8:db:49:8d:54:27:fd:3b:42:d6:59:c7:f4: e7:d3:fa:90:67:bd:d3:28:3b:55:1c:04:7e:2b:7e:ef:8b:54: 62:0b:6b:55:85:aa:d3:d8:34:cb:12:37:30:98:e5:31:ae:a5: 89:17:61:de:41:4f:ae:60:81:82:a2:e3:dd:df:1a:72:ef:a2: 7e:f6:4a:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDM3NzgzNUNEQTJCRDYzNjdFRjBGRUI1RUE1ODE5OEY4 MTgzQTg3QzEwHhcNMjUxMjIzMDQzODIxWhcNMjUxMjMwMDQzODIxWjAYMRYwFAYD VQQDDA02OTRhMWNiZC0yNzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IgEO9DUEQXGDkGzV/U+hwEAOR8PSPgp5J5zWMQo3PM7RKVt1pGw1vsp0HqN Zxk7p8NxKxcWlIJLux3zgWw5Hyazt/AfPTTYLukqBHgJm5YmqLCXt7uFrKe7UZ2P jpXdxgC6ybr7iD+YBzgtk8Zd7qXAHHb86bcZZ/GUkCEZFjo+B2+AUCsbfdGcEs5o RtOwZ63R0uWMA9sbXSkBrS1+yA6Mwek+ILsORfKUeXiWaN1IefvMTAeJjbHPykQC z2Fjbuh2rlaNljBIW40Tf3ESRV/w093I+wa/xntj6fFnuUVyiUexieQnrtaEa1x2 O1zuddIoCOaHZJDhS3Jtifs/owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIvw8fl 0hG9MjZUED8zM/WDKyeoMB8GA1UdIwQYMBaAFDd4Nc2ivWNn7w/rXqWBmPgYOofB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS8wMjg5RjZGQzlD QUMxMUVGQUI1OTU1MTZDNEY5QUUwMi9OM2cxemFLOVkyZnZELXRlcFlHWS1CZzZo OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zZzF6YUs5WTJmdkQtdGVwWUdZLUJnNmg4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS8wMjg5RjZGQzlDQUMxMUVGQUI1OTU1MTZDNEY5QUUwMi9OM2cxemFLOVky ZnZELXRlcFlHWS1CZzZoOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqr2UR0QOxON1aUa1E3+54nwPTil4rZdS5KF3+4BaTd9fONlnhQ/2t Rmkusr8bUvrGelVAll12OFptO9EvD4/1fei3R4NcWiA6hio7EaiD377y0iL2OWee HSm7sc7J6SADZ4KwvSH5t7MfRPrN8T9JtB54dV6PD70FT4HSbQoKS2sek23xqwxG 7OFbBRC3wO3usxkOd+MQ/XsO/aW53yBmhOeEdmGF15XnwCQXwL5pKS7dMIYTXjhs aqjbSY1UJ/07QtZZx/Tn0/qQZ73TKDtVHAR+K37vi1RiC2tVharT2DTLEjcwmOUx rqWJF2HeQU+uYIGCouPd3xpy76J+9krf -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:11 2025 by rpki-client