This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: F1LG0TigbzNrmeJIFB3KlPH+rnl39/OE2hLejP9K8Fk= Subject key identifier: FF:E6:BA:F0:4C:83:91:93:1A:8A:5B:6D:B3:76:10:08:52:57:07:99 Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 78 Signing time: Fri 19 Dec 2025 05:47:45 +0000 Manifest this update: Fri 19 Dec 2025 05:47:45 +0000 Manifest next update: Fri 26 Dec 2025 05:47:45 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: N0sIUFNeur1+Gh6kqZKz6pW+hxPnzIjicddQEgZxbQU=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Dec 19 05:47:45 2025 GMT Not After : Dec 26 05:47:45 2025 GMT Subject: CN=6944e701-b9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a8:73:b9:58:57:d8:16:1a:65:30:48:38:1f: 9f:fe:bf:af:73:69:71:58:7c:5b:29:94:e3:af:2c: 8d:96:c7:97:92:6a:9f:5c:2f:84:d1:52:76:94:cf: 3e:0a:37:62:9c:cb:98:95:02:8c:e0:03:34:3d:11: 0b:ef:b9:05:47:de:b4:d8:28:b1:2b:b1:57:13:6c: 43:c2:a2:70:c7:99:45:b5:54:af:8d:70:fe:48:e7: 1e:49:75:26:eb:9f:fa:c3:59:dc:17:bc:62:c1:fa: 44:89:1a:bd:ef:97:62:c3:38:ef:f1:9c:1c:de:57: fc:1a:ca:5c:a9:68:c0:83:a4:8f:2e:1f:c0:91:af: 00:cc:c0:9e:a5:2e:fc:38:dd:55:80:0c:5d:ac:e3: c9:69:65:8f:10:9a:2e:78:d9:e3:8e:ab:69:6a:67: 04:43:f7:68:6c:a4:46:52:e1:58:55:6b:54:77:2d: 79:10:71:be:71:14:ce:23:72:29:6b:98:fe:92:a0: af:1f:16:db:29:38:2e:d8:87:0a:9c:69:54:a1:44: 93:51:25:77:4d:66:16:12:aa:1e:a9:1e:26:71:eb: 33:90:f7:f5:bc:3a:6c:31:61:08:1b:88:5f:3b:d6: 17:a3:d4:02:98:a9:5c:e8:de:68:92:ed:f3:0f:3e: 21:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E6:BA:F0:4C:83:91:93:1A:8A:5B:6D:B3:76:10:08:52:57:07:99 X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:cd:19:cc:75:82:17:2a:2c:69:21:6a:b5:e5:09:13:56:09: 7f:8f:a6:a2:f3:d3:4a:7a:3c:99:94:85:a8:70:81:36:b3:2b: ce:7a:e1:ed:b6:04:03:eb:b9:74:82:8b:43:19:29:a4:92:27: b6:9e:77:02:20:f1:b7:a5:9e:f4:c1:37:bf:ee:67:a0:9c:c9: 0f:f5:c5:5a:a9:c7:ca:c5:bb:c1:73:b4:d7:6a:7f:60:45:ec: 1d:91:4c:04:3e:ab:b1:be:f0:86:bf:e1:87:a8:5e:e5:d7:93: 55:5d:4c:af:93:b5:a7:33:f8:f7:5f:50:40:66:ed:5b:58:2e: a1:0c:5e:77:2e:b4:26:67:bc:fe:03:98:27:75:34:de:33:d8: 74:24:01:32:f2:e0:e2:cc:f3:e4:5a:34:4d:14:55:d6:77:6c: 62:98:cd:fe:84:0f:97:3b:9f:25:c8:d8:39:0c:d2:bc:9f:97: 55:7d:0f:46:66:29:9d:90:d1:fe:d8:47:a2:0b:79:33:d7:02: 31:36:ab:86:42:38:44:df:97:6e:bb:76:c8:c7:e1:ac:03:aa: ca:9c:d8:53:ef:82:d2:fe:c9:f1:ae:f9:47:4d:e3:09:48:2e: c7:98:c5:97:aa:36:86:6a:6d:26:81:51:45:59:3b:8a:a6:ec: 2c:74:99:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTEyMTkwNTQ3NDVaFw0yNTEyMjYwNTQ3NDVaMBgxFjAUBgNV BAMMDTY5NDRlNzAxLWI5ZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRqHO5WFfYFhplMEg4H5/+v69zaXFYfFsplOOvLI2Wx5eSap9cL4TRUnaUzz4K N2Kcy5iVAozgAzQ9EQvvuQVH3rTYKLErsVcTbEPConDHmUW1VK+NcP5I5x5JdSbr n/rDWdwXvGLB+kSJGr3vl2LDOO/xnBzeV/waylypaMCDpI8uH8CRrwDMwJ6lLvw4 3VWADF2s48lpZY8Qmi542eOOq2lqZwRD92hspEZS4VhVa1R3LXkQcb5xFM4jcilr mP6SoK8fFtspOC7YhwqcaVShRJNRJXdNZhYSqh6pHiZx6zOQ9/W8OmwxYQgbiF87 1hej1AKYqVzo3miS7fMPPiGhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/+a68EyD kZMailtts3YQCFJXB5kwHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIrNGcx1ghcqLGkharXlCRNWCX+PpqLz00p6PJmUhahwgTazK8564e22 BAPruXSCi0MZKaSSJ7aedwIg8belnvTBN7/uZ6CcyQ/1xVqpx8rFu8FztNdqf2BF 7B2RTAQ+q7G+8Ia/4YeoXuXXk1VdTK+Ttacz+PdfUEBm7VtYLqEMXncutCZnvP4D mCd1NN4z2HQkATLy4OLM8+RaNE0UVdZ3bGKYzf6ED5c7nyXI2DkM0ryfl1V9D0Zm KZ2Q0f7YR6ILeTPXAjE2q4ZCOETfl267dsjH4awDqsqc2FPvgtL+yfGu+UdN4wlI LseYxZeqNoZqbSaBUUVZO4qm7Cx0mV0= -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:30 2025 by rpki-client