This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: FkVYlUqZgK+62dFGSOObC49QP92vf0hVfTB+U8ghd+c= Subject key identifier: 73:0E:90:5D:06:30:0E:F2:C2:DB:22:8A:4D:77:C5:4B:68:6B:D0:13 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 8A Signing time: Tue 23 Dec 2025 05:33:55 +0000 Manifest this update: Tue 23 Dec 2025 05:33:54 +0000 Manifest next update: Tue 30 Dec 2025 05:33:54 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: T8uLyJPnNKBSeJLnY0fbxblEHwRULYOMcOhv0jNkHmA=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: XP45MNkBJDvMP4szABAjNLFk+96NCHIDa9eitTmeLLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Dec 23 05:33:54 2025 GMT Not After : Dec 30 05:33:54 2025 GMT Subject: CN=694a29c3-3586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:35:bd:8f:cb:e2:e7:52:2a:15:8f:45:9b:e6: 2c:72:06:9b:69:ff:cf:cf:fd:c9:49:f9:06:e0:07: a4:7b:d9:01:5f:10:46:2e:6c:e2:97:b3:70:90:dd: 8e:77:50:47:59:06:c1:b1:ed:5f:1d:77:03:6c:e0: cc:88:8a:ef:45:01:68:de:59:61:21:a0:05:80:63: 4c:4a:21:cf:32:e0:b1:c3:62:f6:2d:3a:31:a7:15: 4f:b7:38:23:29:0d:15:79:0a:de:d2:3e:e0:42:84: ec:bd:c9:cf:bf:2d:cb:9f:7d:d5:78:93:1b:95:17: 8d:fe:c0:1d:51:fc:7a:82:d0:8f:cc:d0:4e:df:8b: 3c:65:34:96:d0:e2:03:75:02:68:a3:a2:a0:2d:aa: 70:1a:44:e6:5d:0e:6d:38:be:f6:fc:77:cf:4c:a7: 34:72:71:67:62:c9:bf:a9:a2:13:cb:e2:54:5c:dd: 67:04:0b:1b:7d:0b:95:2c:e1:67:b7:b1:0e:aa:fc: 84:44:6e:86:b9:fc:b9:0a:cb:79:ed:ab:50:1d:88: cd:38:68:16:82:85:4a:d8:dd:3c:de:03:42:62:a2: 97:d6:93:0a:9a:f3:ae:af:37:72:99:af:f0:9e:7b: dd:f8:d5:93:72:a2:16:38:1c:da:a9:b6:46:27:ca: 54:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0E:90:5D:06:30:0E:F2:C2:DB:22:8A:4D:77:C5:4B:68:6B:D0:13 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:05:00:b5:a8:c6:d8:b8:b7:4c:44:76:de:6d:6d:13:ca:a4: 0c:91:83:9e:e4:f0:4e:7e:57:50:a6:9a:01:97:e7:46:7a:b5: 4b:4b:39:f4:a8:0d:0a:37:d5:cd:d4:69:7e:34:19:02:23:d0: 30:b9:04:a0:6a:4c:b3:9b:3d:77:a7:25:85:54:d5:4a:73:02: 11:45:6b:1a:7c:02:63:f7:a8:13:7a:6c:75:0c:0c:4a:50:7d: a7:89:f5:7c:b1:96:56:12:07:a4:be:eb:15:72:5d:d2:e4:c8: ac:77:a3:40:fa:56:fa:66:35:c3:cc:37:5a:81:0d:7e:d1:31: 77:dd:82:ca:0a:75:19:54:2b:60:6b:5b:05:4b:b8:72:23:d5: 5c:42:43:72:61:ec:ad:35:55:c5:dd:8d:a5:87:85:a9:2f:54: ec:d1:32:9c:8c:c5:d2:26:66:38:96:e1:f7:9b:cd:ba:64:85: 34:f6:1c:d0:a6:e3:38:69:f9:56:c3:ee:69:b1:8d:93:40:c6: 51:56:2f:4f:58:22:8b:db:ea:cb:3f:c6:f4:84:f2:66:5e:7d: 6f:d8:b3:25:af:63:77:44:12:5e:bb:a4:cd:cc:1f:0e:d4:8b: c8:31:3a:00:a0:1a:11:34:3c:74:60:56:be:1f:46:f5:a5:0b: 3a:77:70:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjUxMjIzMDUzMzU0WhcNMjUxMjMwMDUzMzU0WjAYMRYwFAYD VQQDDA02OTRhMjljMy0zNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTW9j8vi51IqFY9Fm+Yscgabaf/Pz/3JSfkG4Aeke9kBXxBGLmzil7NwkN2O d1BHWQbBse1fHXcDbODMiIrvRQFo3llhIaAFgGNMSiHPMuCxw2L2LToxpxVPtzgj KQ0VeQre0j7gQoTsvcnPvy3Ln33VeJMblReN/sAdUfx6gtCPzNBO34s8ZTSW0OID dQJoo6KgLapwGkTmXQ5tOL72/HfPTKc0cnFnYsm/qaITy+JUXN1nBAsbfQuVLOFn t7EOqvyERG6Gufy5Cst57atQHYjNOGgWgoVK2N083gNCYqKX1pMKmvOurzdyma/w nnvd+NWTcqIWOBzaqbZGJ8pUuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMOkF0G MA7ywtsiik13xUtoa9ATMB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfBQC1qMbYuLdMRHbebW0TyqQMkYOe5PBOfldQppoBl+dGerVLSzn0 qA0KN9XN1Gl+NBkCI9AwuQSgakyzmz13pyWFVNVKcwIRRWsafAJj96gTemx1DAxK UH2nifV8sZZWEgekvusVcl3S5Misd6NA+lb6ZjXDzDdagQ1+0TF33YLKCnUZVCtg a1sFS7hyI9VcQkNyYeytNVXF3Y2lh4WpL1Ts0TKcjMXSJmY4luH3m826ZIU09hzQ puM4aflWw+5psY2TQMZRVi9PWCKL2+rLP8b0hPJmXn1v2LMlr2N3RBJeu6TNzB8O 1IvIMToAoBoRNDx0YFa+H0b1pQs6d3Dj -----END CERTIFICATE-----Generated at Wed Dec 24 21:33:30 2025 by rpki-client