This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: cUdjwYH8479x567lNjt7d3/ioWR5ZNpCktNiJ/FPlXo= Subject key identifier: 8B:34:4E:6D:32:A1:02:7F:24:48:51:17:51:30:04:1F:9B:4D:B9:01 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A51 Signing time: Thu 18 Dec 2025 19:17:29 +0000 Manifest this update: Thu 18 Dec 2025 19:17:29 +0000 Manifest next update: Thu 25 Dec 2025 19:17:29 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: yHlnqqVJQ9PoljDCBS6yn/9xjjprk1PJurPfLdaYFj8=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Dec 18 19:17:29 2025 GMT Not After : Dec 25 19:17:29 2025 GMT Subject: CN=69445349-3988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:1e:83:c2:8f:ea:e8:4f:e1:7c:1b:db:4c: 81:01:42:31:e0:56:41:37:77:ac:20:12:36:f3:fc: 8f:04:69:bc:26:6c:df:20:40:12:12:d9:cb:a5:bc: e8:59:30:54:3c:09:d4:dc:12:a5:9f:94:24:d8:9d: e7:bf:09:7c:74:45:ed:62:5e:bc:49:46:d6:39:10: 3d:81:63:33:ca:e7:5c:f9:de:3f:b4:7a:06:37:ab: 3d:e0:18:2c:90:5b:79:c9:d5:a9:68:c8:45:0d:7a: d5:2f:46:84:aa:f6:d8:52:ac:67:93:23:3e:1c:94: c2:f0:60:d2:ee:89:eb:b8:8c:6d:6c:7d:d3:ab:26: f7:65:ba:6d:42:4e:ac:96:7d:7d:13:9b:80:1c:ad: 16:39:da:12:54:6c:ca:f6:02:7b:aa:bd:d7:d8:65: 12:1a:b1:1c:b9:ae:12:25:8e:0e:6a:94:fe:3f:6c: ff:2c:4f:79:b3:d6:a3:63:e9:e3:b1:d5:ae:03:34: 84:e2:e9:4c:65:7e:85:0d:69:86:8c:99:e6:17:26: 47:3f:34:89:1f:0b:e4:f0:63:08:81:a2:84:76:1b: a0:8b:1d:04:13:7d:e9:6f:41:38:a6:db:fd:8d:87: 31:a4:84:de:da:99:f5:10:15:c9:ac:00:1c:85:ae: 4c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:34:4E:6D:32:A1:02:7F:24:48:51:17:51:30:04:1F:9B:4D:B9:01 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a6:2d:e7:70:e9:03:6c:2d:28:5b:9d:78:08:51:8c:f9:93: bb:d9:36:31:0d:84:ea:e8:ff:64:9b:bd:aa:25:7d:c0:14:52: 78:18:61:e5:6a:6a:95:94:28:73:bf:bf:a3:ed:f6:e7:48:e5: c8:7a:5e:6a:33:5d:fb:36:79:03:91:03:4a:b9:fd:26:59:68: 1a:86:cc:33:3f:13:58:b6:98:75:3b:70:c7:9d:4a:61:45:7e: 11:2d:c1:73:9e:4e:20:68:30:54:3d:d4:e0:a7:50:48:db:41: 9a:67:8f:54:ba:fc:14:71:78:76:89:37:05:d1:05:17:82:be: 3f:10:af:20:37:d3:5b:30:91:12:e8:a4:bc:17:d4:50:91:83: aa:05:9d:94:a5:e9:4c:82:71:21:b4:b8:77:69:ae:0d:95:c0: 9a:4c:7d:2c:a4:78:6d:a5:ad:a6:ac:cf:9d:5d:4c:88:b0:fd: 36:56:98:87:2b:9f:18:74:37:be:23:5c:3c:8f:79:f8:e7:d6: be:f5:14:1f:81:43:73:fb:0b:14:95:4b:bd:13:d9:17:bc:9d: ac:f4:a9:25:98:c0:41:8b:af:fb:09:3c:66:0b:2a:d6:90:cd: 8d:4c:f0:5a:d1:28:e1:36:2c:20:b3:2d:99:0d:f2:3c:93:1f: d0:6c:be:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMjE4MTkxNzI5WhcNMjUxMjI1MTkxNzI5WjAYMRYwFAYD VQQDDA02OTQ0NTM0OS0zOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIseg8KP6uhP4Xwb20yBAUIx4FZBN3esIBI28/yPBGm8JmzfIEASEtnLpbzo WTBUPAnU3BKln5Qk2J3nvwl8dEXtYl68SUbWORA9gWMzyudc+d4/tHoGN6s94Bgs kFt5ydWpaMhFDXrVL0aEqvbYUqxnkyM+HJTC8GDS7onruIxtbH3Tqyb3ZbptQk6s ln19E5uAHK0WOdoSVGzK9gJ7qr3X2GUSGrEcua4SJY4OapT+P2z/LE95s9ajY+nj sdWuAzSE4ulMZX6FDWmGjJnmFyZHPzSJHwvk8GMIgaKEdhugix0EE33pb0E4ptv9 jYcxpITe2pn1EBXJrAAcha5M3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIs0Tm0y oQJ/JEhRF1EwBB+bTbkBMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVpi3ncOkDbC0oW514CFGM+ZO72TYxDYTq6P9km72qJX3AFFJ4GGHl amqVlChzv7+j7fbnSOXIel5qM137NnkDkQNKuf0mWWgahswzPxNYtph1O3DHnUph RX4RLcFznk4gaDBUPdTgp1BI20GaZ49UuvwUcXh2iTcF0QUXgr4/EK8gN9NbMJES 6KS8F9RQkYOqBZ2UpelMgnEhtLh3aa4NlcCaTH0spHhtpa2mrM+dXUyIsP02VpiH K58YdDe+I1w8j3n459a+9RQfgUNz+wsUlUu9E9kXvJ2s9KklmMBBi6/7CTxmCyrW kM2NTPBa0SjhNiwgsy2ZDfI8kx/QbL4T -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:21 2025 by rpki-client