This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft (raw, json) Hash identifier: oTOdvkOxamgMcuflU5vI8akoJPkeuW3IFeDYqkHr/OU= Subject key identifier: D1:0B:DC:A3:8A:F7:68:B4:66:08:A3:D2:30:FC:5B:BF:C0:91:44:A1 Authority key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF Certificate issuer: /CN=A91401C4/serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Certificate serial: 355A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft Manifest number: 3526 Signing time: Sat 20 Dec 2025 14:15:58 +0000 Manifest this update: Sat 20 Dec 2025 14:15:58 +0000 Manifest next update: Sat 27 Dec 2025 14:15:58 +0000 Files and hashes: 1: v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl (hash: Dw1tZR289TF38bl0DbJfDleyqEKhe6fYWMdcdC59XUk=) 2: 13773D180C8111EB9BD25070C4F9AE02.roa (hash: BjBw06wqcfGvhB/HNG/x6XCnBoMAhTux2IYRf4xqDUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91401C4, serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Validity Not Before: Dec 20 14:15:58 2025 GMT Not After : Dec 27 14:15:58 2025 GMT Subject: CN=6946af9e-147b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:e5:13:3d:9f:d4:b3:ae:14:49:c3:77:68: 0e:2f:b6:c7:69:82:68:1b:e8:63:bd:59:07:b4:67: 71:9e:ae:c4:32:86:03:58:b8:2b:ed:6f:cd:42:77: b6:fc:4d:95:7c:04:c5:09:29:9a:a3:3c:4f:48:34: fa:1c:67:5c:93:80:4a:4e:35:51:c3:c0:e0:c8:9c: f4:93:91:06:7e:73:88:f4:18:6f:37:14:e9:c7:86: 4a:28:a3:9f:86:0c:5f:fc:ec:33:7d:62:fb:3d:b5: f2:ab:31:0d:0a:37:07:94:cd:ab:29:67:e3:1c:5d: f7:13:25:f6:d4:63:f6:a4:32:ee:2f:d6:f8:06:1c: 3e:25:81:0c:79:90:52:bb:e0:20:68:25:a7:f9:96: d4:df:4e:6b:94:28:26:60:d4:a5:43:f1:ab:8c:52: 32:0c:8c:a9:ae:f3:08:6c:07:fa:4e:8e:1d:25:76: ff:7a:38:2e:d3:5a:8c:f5:8f:81:36:69:83:0f:39: d8:26:34:f2:20:8b:4f:be:63:5d:4e:55:56:39:9d: 1a:a1:59:2c:e7:ef:f4:ec:ec:bd:8c:4f:b5:d8:a7: 54:42:b8:74:87:9d:15:d3:f2:18:3f:db:53:e9:ae: 73:0f:2e:bd:59:df:61:b5:ca:e0:35:f7:4a:89:5e: 60:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0B:DC:A3:8A:F7:68:B4:66:08:A3:D2:30:FC:5B:BF:C0:91:44:A1 X509v3 Authority Key Identifier: keyid:BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8c:ab:7b:31:79:a6:00:ce:b9:bd:aa:81:cb:47:ee:02:a0: 73:df:22:5f:03:5d:28:0b:04:2d:4e:ba:64:4b:8d:76:37:7d: 4d:45:52:77:f8:73:ec:e0:e0:6c:82:1b:3f:41:bc:c7:72:1a: 04:d0:c2:b7:14:88:63:3c:66:ee:34:77:b8:1a:43:6f:bf:bf: d8:35:8c:ff:8b:d6:6d:4a:7d:31:ee:c2:6e:f4:21:29:73:95: d0:9e:6a:cc:0d:b6:af:45:b3:70:88:89:df:65:fc:5a:f5:61: 18:f1:0f:5d:4b:37:9f:27:b7:1c:26:a7:8b:4c:70:7f:c4:c8: db:ae:4d:c0:79:5e:a2:25:de:a8:02:85:ce:19:26:a8:de:04: e3:46:87:c6:b9:9b:86:ed:b1:d9:2f:5c:a7:b4:7c:2b:b2:e4: a1:ad:3c:46:58:9d:d0:f7:f6:54:28:a1:41:5a:9f:60:8d:87: cf:3e:27:1e:82:30:a0:45:ab:1d:b2:8c:29:7d:a9:6f:a6:5b: c5:11:f2:d3:32:fa:0f:48:ed:35:17:88:60:42:af:31:5a:b5: c1:7e:dc:1e:d4:c5:49:ea:24:10:8b:1b:10:da:ad:c7:59:57: 43:ca:dc:fc:85:4b:0b:93:35:42:02:45:d8:10:87:07:2b:09: d8:4e:e8:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAxQzQxMTAvBgNVBAUTKEJGN0JDQUYxOTA5QzEwQkNGRUEwRDhFN0Q0NUQ4MjU0 RjI2OUM2QkYwHhcNMjUxMjIwMTQxNTU4WhcNMjUxMjI3MTQxNTU4WjAYMRYwFAYD VQQDDA02OTQ2YWY5ZS0xNDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pDlEz2f1LOuFEnDd2gOL7bHaYJoG+hjvVkHtGdxnq7EMoYDWLgr7W/NQne2 /E2VfATFCSmaozxPSDT6HGdck4BKTjVRw8DgyJz0k5EGfnOI9BhvNxTpx4ZKKKOf hgxf/OwzfWL7PbXyqzENCjcHlM2rKWfjHF33EyX21GP2pDLuL9b4Bhw+JYEMeZBS u+AgaCWn+ZbU305rlCgmYNSlQ/GrjFIyDIyprvMIbAf6To4dJXb/ejgu01qM9Y+B NmmDDznYJjTyIItPvmNdTlVWOZ0aoVks5+/07Oy9jE+12KdUQrh0h50V0/IYP9tT 6a5zDy69Wd9htcrgNfdKiV5ghwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEL3KOK 92i0Zgij0jD8W7/AkUShMB8GA1UdIwQYMBaAFL97yvGQnBC8/qDY59RdglTyaca/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDFDNC8yQjJCM0M5RTFE NjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VMei1vTmpuMUYyQ1ZQSnB4 cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Yzdks4WkNjRUx6LW9Oam4xRjJDVlBKcHhyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDFDNC8yQjJCM0M5RTFENjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VM ei1vTmpuMUYyQ1ZQSnB4cjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxjKt7MXmmAM65vaqBy0fuAqBz3yJfA10oCwQtTrpkS412N31NRVJ3 +HPs4OBsghs/QbzHchoE0MK3FIhjPGbuNHe4GkNvv7/YNYz/i9ZtSn0x7sJu9CEp c5XQnmrMDbavRbNwiInfZfxa9WEY8Q9dSzefJ7ccJqeLTHB/xMjbrk3AeV6iJd6o AoXOGSao3gTjRofGuZuG7bHZL1yntHwrsuShrTxGWJ3Q9/ZUKKFBWp9gjYfPPice gjCgRasdsowpfalvplvFEfLTMvoPSO01F4hgQq8xWrXBftwe1MVJ6iQQixsQ2q3H WVdDytz8hUsLkzVCAkXYEIcHKwnYTuh+ -----END CERTIFICATE-----Generated at Sun Dec 21 07:23:53 2025 by rpki-client