This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft File: 3oPHbNtE9PeURxkgK-OvqIPTSU0.mft (raw, json) Hash identifier: suPMZOWAZFZnFQyPt+aBy+76Ks6Ghyxb1DuPr6fLnbA= Subject key identifier: 70:37:B0:14:56:CA:BE:17:CD:D1:47:F8:4E:80:A5:E6:9F:5F:46:85 Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft Manifest number: 05 Signing time: Tue 23 Dec 2025 06:58:41 +0000 Manifest this update: Tue 23 Dec 2025 06:58:40 +0000 Manifest next update: Tue 30 Dec 2025 06:58:40 +0000 Files and hashes: 1: 3oPHbNtE9PeURxkgK-OvqIPTSU0.crl (hash: 0qvUGcWnzBtzN2c+S0J5P4XimyIU84/jYKTQXQEbhhI=) 2: E9CC4952DBB711F09A595FAD4E641951.roa (hash: N8C+RbGZ4TxSn2UCb5i7gkeLR+IHJ44RuRig3WO+cbY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Dec 23 06:58:40 2025 GMT Not After : Dec 30 06:58:40 2025 GMT Subject: CN=694a3da0-77ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6a:60:04:ff:7c:07:6e:20:a6:5b:f8:dc:03: 37:03:e3:cf:5c:7c:06:f4:26:d0:a8:ea:51:0a:6a: 8c:d0:b1:72:21:98:d9:c0:4f:05:78:a0:b5:fe:fb: 27:1d:72:9a:2f:8a:4a:88:b8:db:ad:96:92:cb:fc: 72:f4:cc:df:0c:ae:4e:d3:b3:aa:9e:3a:02:5b:35: 3e:c3:c9:ea:59:46:d7:c6:f1:2f:7f:70:f5:6a:da: 45:1e:03:db:31:1d:7c:f7:2d:1f:4a:ac:98:88:3a: d7:e4:af:cd:ce:6a:a2:b4:f4:19:76:0c:67:7a:a4: bf:f0:76:fd:18:7f:08:08:8a:ad:8c:66:87:a7:78: 48:82:34:b2:a5:0c:cb:be:c8:9b:b1:90:89:d2:5c: 66:90:22:d1:96:8a:79:20:b5:1a:78:5a:94:da:0d: d7:24:2e:f9:6f:26:35:05:87:8d:ef:d4:22:2c:64: 25:95:49:d3:31:18:52:f8:34:e5:b7:bf:8e:9f:e0: 53:88:f1:0c:ff:46:c8:1d:b3:2b:6a:82:8e:ab:2a: 62:65:ac:12:68:2c:6c:4d:77:f3:de:18:4e:97:46: 7f:23:d8:f7:eb:00:7d:9f:26:ac:0b:9e:da:33:9f: a3:2b:05:a0:7a:e5:f8:15:41:8e:78:b0:9d:b1:82: 98:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:37:B0:14:56:CA:BE:17:CD:D1:47:F8:4E:80:A5:E6:9F:5F:46:85 X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4c:7a:f1:c3:9b:a0:22:b3:2b:ad:fa:92:4c:6e:d7:21:1b: c2:ae:f4:dd:5a:2a:73:73:e3:2c:45:37:7f:fe:01:ae:a8:aa: af:96:e2:90:d3:fd:5a:4e:ff:f3:be:c5:9b:ae:82:79:e9:31: 8c:c7:7b:07:c7:91:92:b8:b1:d1:57:9f:90:46:fa:16:75:9b: ea:6a:81:35:35:3f:f1:98:d2:62:80:39:a8:52:4e:99:8c:bd: 26:7b:60:4e:33:18:75:5d:0b:44:91:59:64:d6:52:47:d3:e7: 8c:c6:7f:f2:e4:fd:5e:3f:a3:e0:cd:95:f5:39:20:95:db:73: b7:7c:e6:23:22:d9:b4:3b:65:39:d9:4a:9c:4d:13:32:54:78: 2c:f8:30:67:62:bd:19:44:de:9e:8e:58:e6:49:f5:19:f0:33: f9:53:f1:7c:45:96:20:06:f4:30:7f:ce:7c:ca:e4:8e:27:63: 2f:08:b7:d9:93:ef:ae:9d:37:d5:0f:20:50:8b:cc:10:38:c8: bd:42:eb:11:31:e2:a8:be:ee:25:66:1d:95:41:f4:46:5c:73: 71:3a:89:e3:d9:02:b2:b9:a5:15:8d:84:9d:58:b3:c1:ce:82: 47:e6:cb:cb:86:e3:4e:95:d8:2a:0e:7c:13:c9:25:bd:5c:0a: e5:32:24:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNTEyMjMwNjU4NDBaFw0yNTEyMzAwNjU4NDBaMBgxFjAUBgNV BAMMDTY5NGEzZGEwLTc3Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClamAE/3wHbiCmW/jcAzcD489cfAb0JtCo6lEKaozQsXIhmNnATwV4oLX++ycd cpovikqIuNutlpLL/HL0zN8Mrk7Ts6qeOgJbNT7DyepZRtfG8S9/cPVq2kUeA9sx HXz3LR9KrJiIOtfkr83OaqK09Bl2DGd6pL/wdv0YfwgIiq2MZoeneEiCNLKlDMu+ yJuxkInSXGaQItGWinkgtRp4WpTaDdckLvlvJjUFh43v1CIsZCWVSdMxGFL4NOW3 v46f4FOI8Qz/Rsgdsytqgo6rKmJlrBJoLGxNd/PeGE6XRn8j2PfrAH2fJqwLntoz n6MrBaB65fgVQY54sJ2xgph9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcDewFFbK vhfN0Uf4ToCl5p9fRoUwHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTI4LzQ3NjA2RUI0REJCNzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBl VVJ4a2dLLU92cUlQVFNVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFdMevHDm6Aisyut+pJMbtchG8Ku9N1aKnNz4yxFN3/+Aa6oqq+W4pDT /VpO//O+xZuugnnpMYzHewfHkZK4sdFXn5BG+hZ1m+pqgTU1P/GY0mKAOahSTpmM vSZ7YE4zGHVdC0SRWWTWUkfT54zGf/Lk/V4/o+DNlfU5IJXbc7d85iMi2bQ7ZTnZ SpxNEzJUeCz4MGdivRlE3p6OWOZJ9RnwM/lT8XxFliAG9DB/znzK5I4nYy8It9mT 766dN9UPIFCLzBA4yL1C6xEx4qi+7iVmHZVB9EZcc3E6iePZArK5pRWNhJ1Ys8HO gkfmy8uG406V2CoOfBPJJb1cCuUyJPI= -----END CERTIFICATE-----Generated at Wed Dec 24 01:56:11 2025 by rpki-client