This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: rX0JCEpnMhyYoocxpzvEAU2fi/y07r+22L3uKmWst8I= Subject key identifier: 87:C6:9F:22:84:2E:B6:50:F0:10:C7:63:4D:C1:F2:75:8D:2F:EF:60 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0C52 Signing time: Sat 20 Dec 2025 18:14:13 +0000 Manifest this update: Sat 20 Dec 2025 18:14:13 +0000 Manifest next update: Sat 27 Dec 2025 18:14:13 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: 11Go9pjwiH6AX7RxVpd3cqxgXF8TDy51pIN6etvN60c=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Dec 20 18:14:13 2025 GMT Not After : Dec 27 18:14:13 2025 GMT Subject: CN=6946e775-c6bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:ef:20:51:bb:25:03:00:5f:d4:47:bf:10: b3:79:98:ff:bc:f1:25:e6:80:ae:e4:6e:e4:38:cc: ba:de:b7:cb:83:e5:f5:13:61:4b:03:12:69:ae:ed: 6e:dc:09:31:a3:b1:c9:bd:c9:48:36:d8:87:4b:32: ec:f8:b1:b5:c4:1d:02:c3:b3:9d:e4:4c:85:75:92: e1:4c:ed:54:11:47:cc:c5:08:68:42:b1:16:35:65: 13:0a:c4:17:8c:64:2f:6a:35:c3:b9:51:b3:1b:00: c0:33:69:4f:06:68:72:fc:e4:55:53:a2:99:b3:8b: 97:90:cb:aa:c7:db:09:d5:8f:17:33:05:d6:b2:f4: c1:e8:c0:35:59:3b:38:2c:ca:d1:47:1e:54:95:cf: 1c:3c:aa:e7:32:70:d2:a4:99:7d:8f:12:7e:f2:bc: 37:62:72:bd:28:f4:b5:96:e2:da:1f:fc:d5:3d:9f: c1:37:7b:bf:a5:c4:af:18:7c:bc:1b:fb:2c:c8:41: 9d:44:0e:fc:13:b3:db:5e:42:f9:bc:79:d0:30:20: 98:89:2d:4a:ad:29:b9:41:cc:03:16:bc:3a:5a:34: 2e:32:c4:7f:6b:6b:52:50:75:49:d4:5f:e6:17:80: a9:1b:24:23:51:58:5c:d6:cc:be:3a:03:e8:d7:94: 8c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C6:9F:22:84:2E:B6:50:F0:10:C7:63:4D:C1:F2:75:8D:2F:EF:60 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:da:57:8a:ab:90:08:df:50:62:56:ab:33:bd:1f:df:a8:0b: 44:46:57:02:fa:d3:aa:71:53:a7:13:ce:1f:59:5a:d0:31:47: 66:7e:9d:e2:a1:82:21:62:56:0d:b2:8d:93:de:c5:ee:13:e3: 2e:ae:f7:7d:b6:e4:39:d2:9f:31:4e:0d:cc:c3:f8:cb:74:09: 5d:1a:35:61:c3:52:2c:0e:55:b6:b6:5e:df:a5:40:28:91:a8: e2:8e:87:c3:e2:69:fc:68:60:db:dd:a5:d5:f1:bf:03:71:96: 51:1e:1f:39:df:f6:5f:b7:0f:ef:f8:c5:35:c3:76:70:91:44: e6:a6:10:95:f9:4d:eb:52:18:29:50:fe:76:2c:11:36:76:e0: 88:4d:db:30:aa:68:36:4b:2e:9f:c9:13:2f:bf:fa:84:fd:4a: 9d:35:3b:0f:7c:ec:4b:c0:d8:a6:48:2c:22:3a:de:39:5f:74: 21:6c:24:be:2c:10:4d:b4:64:2f:08:92:d2:a1:34:2c:16:90: 2b:b9:0f:c9:d8:7b:c9:47:79:6d:5a:d0:23:fd:a3:59:8b:42: 03:17:a5:73:79:2a:c3:dc:8f:63:87:f0:b4:ff:e6:b7:44:40: e0:ca:44:37:d3:4d:04:83:5a:d6:1c:1e:10:35:98:f0:f5:0f: 84:bd:1e:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUxMjIwMTgxNDEzWhcNMjUxMjI3MTgxNDEzWjAYMRYwFAYD VQQDDA02OTQ2ZTc3NS1jNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQLvIFG7JQMAX9RHvxCzeZj/vPEl5oCu5G7kOMy63rfLg+X1E2FLAxJpru1u 3Akxo7HJvclINtiHSzLs+LG1xB0Cw7Od5EyFdZLhTO1UEUfMxQhoQrEWNWUTCsQX jGQvajXDuVGzGwDAM2lPBmhy/ORVU6KZs4uXkMuqx9sJ1Y8XMwXWsvTB6MA1WTs4 LMrRRx5Ulc8cPKrnMnDSpJl9jxJ+8rw3YnK9KPS1luLaH/zVPZ/BN3u/pcSvGHy8 G/ssyEGdRA78E7PbXkL5vHnQMCCYiS1KrSm5QcwDFrw6WjQuMsR/a2tSUHVJ1F/m F4CpGyQjUVhc1sy+OgPo15SM+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfGnyKE LrZQ8BDHY03B8nWNL+9gMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA2leKq5AI31BiVqszvR/fqAtERlcC+tOqcVOnE84fWVrQMUdmfp3i oYIhYlYNso2T3sXuE+Murvd9tuQ50p8xTg3Mw/jLdAldGjVhw1IsDlW2tl7fpUAo kajijofD4mn8aGDb3aXV8b8DcZZRHh853/Zftw/v+MU1w3ZwkUTmphCV+U3rUhgp UP52LBE2duCITdswqmg2Sy6fyRMvv/qE/UqdNTsPfOxLwNimSCwiOt45X3QhbCS+ LBBNtGQvCJLSoTQsFpAruQ/J2HvJR3ltWtAj/aNZi0IDF6VzeSrD3I9jh/C0/+a3 REDgykQ3000Eg1rWHB4QNZjw9Q+EvR52 -----END CERTIFICATE-----Generated at Mon Dec 22 07:59:06 2025 by rpki-client