This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: vbJgR9KIXwHcUV1c1TpIRDA4E9tfFBllqchyUYJ+AQ4= Subject key identifier: 9B:07:4F:0E:39:62:F7:9E:5F:A6:57:58:E2:09:F0:4B:29:81:38:A2 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 7D Signing time: Fri 19 Dec 2025 05:48:57 +0000 Manifest this update: Fri 19 Dec 2025 05:48:56 +0000 Manifest next update: Fri 26 Dec 2025 05:48:56 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: Wwsw6j67Xz0n4Q6szPYfMSuQxzbSfM9swkx876CBh5c=) 2: A209D9E4BC2311F09A8FB280C4F9AE02.roa (hash: ROMimlav+Kwv4KL5aZPE3FnW4mOvCmbzzXBU2NVsmwo=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Dec 19 05:48:56 2025 GMT Not After : Dec 26 05:48:56 2025 GMT Subject: CN=6944e749-8d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:90:a4:bd:26:f7:e9:3e:4a:3f:81:cd:4b:8f: aa:af:09:24:d3:14:66:76:4c:6e:7c:b1:3a:9f:92: 64:59:83:17:e5:c6:3d:cd:43:79:1f:92:74:8a:7f: 5f:17:25:c9:a3:b0:87:33:ef:48:c0:f1:db:ed:44: 46:d1:2c:1e:75:d8:00:8b:88:93:7f:bf:bc:fb:4d: 79:47:36:9c:78:35:9c:49:b9:62:6e:52:5b:0d:53: 15:a5:8f:14:0f:fa:92:16:e0:e2:50:c3:fd:02:b9: 7d:ca:11:c4:54:89:d4:4d:40:b4:80:2c:1c:e8:28: 67:f3:0f:cd:c1:5f:70:c8:82:db:4d:ba:e0:fc:24: b0:fb:c2:24:38:c8:d1:cf:a0:57:8f:c4:b6:80:46: 26:fe:14:db:45:34:06:dd:ce:7b:f1:65:3a:9b:47: 95:bf:41:a1:b9:d9:f3:c1:d1:31:a3:23:1c:f5:8a: 83:0b:49:da:44:18:3c:aa:18:0c:ca:00:90:0a:19: f4:c0:95:0d:7b:f0:6e:42:a3:be:b5:85:fe:79:9b: 8b:a9:c7:70:a7:7d:84:55:ba:39:b4:d9:f0:ef:49: 8d:9e:8f:dd:f2:cd:be:04:3f:15:82:81:75:2a:7f: c7:fb:3e:75:70:f1:85:64:54:1f:12:af:ec:22:45: e2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:07:4F:0E:39:62:F7:9E:5F:A6:57:58:E2:09:F0:4B:29:81:38:A2 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ae:3f:1e:38:26:b5:26:83:48:10:10:1a:23:1c:a1:b0:e0: 56:8a:8f:dd:64:1e:37:b9:12:8d:c8:e6:6b:ec:ef:d4:0c:b9: 1c:9c:24:b3:3e:6b:41:f8:37:28:6c:b0:75:81:b2:eb:cb:e6: 19:85:47:7c:ef:3f:37:59:1b:6f:9a:e1:99:c8:55:21:09:8b: d4:3e:25:0f:6a:a2:d6:aa:08:d6:de:94:82:b4:3d:ec:45:23: 67:51:0b:65:71:d6:6e:94:f7:81:c4:b5:d4:ab:7f:53:a4:52: 2f:5a:5e:ea:2b:18:85:de:28:88:54:a6:c5:c0:a0:8a:79:bf: 61:c5:a1:54:9f:c7:88:92:cc:d7:f7:14:2d:70:6d:ac:1d:9d: 8b:aa:3f:b5:38:93:dc:96:bb:da:5e:e5:30:fd:78:70:af:c1: ef:df:85:0c:17:8d:1f:cb:62:f9:2d:40:ed:cb:1a:ef:db:44: d7:70:66:21:14:e6:b5:0a:3b:ba:75:b1:80:b1:97:da:41:5c: 66:7a:39:c0:99:37:7d:e8:92:4f:51:42:6e:7a:22:fd:b7:f2: 45:cd:84:c2:13:7f:52:d2:31:4c:04:72:b9:94:87:d4:ef:9a: 3d:a9:1e:e7:24:02:de:4e:16:a2:f3:ab:01:84:d4:83:64:12: 22:75:cc:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjUxMjE5MDU0ODU2WhcNMjUxMjI2MDU0ODU2WjAYMRYwFAYD VQQDDA02OTQ0ZTc0OS04ZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZCkvSb36T5KP4HNS4+qrwkk0xRmdkxufLE6n5JkWYMX5cY9zUN5H5J0in9f FyXJo7CHM+9IwPHb7URG0SweddgAi4iTf7+8+015RzaceDWcSbliblJbDVMVpY8U D/qSFuDiUMP9Arl9yhHEVInUTUC0gCwc6Chn8w/NwV9wyILbTbrg/CSw+8IkOMjR z6BXj8S2gEYm/hTbRTQG3c578WU6m0eVv0GhudnzwdExoyMc9YqDC0naRBg8qhgM ygCQChn0wJUNe/BuQqO+tYX+eZuLqcdwp32EVbo5tNnw70mNno/d8s2+BD8VgoF1 Kn/H+z51cPGFZFQfEq/sIkXi6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsHTw45 YveeX6ZXWOIJ8EspgTiiMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRrj8eOCa1JoNIEBAaIxyhsOBWio/dZB43uRKNyOZr7O/UDLkcnCSz PmtB+DcobLB1gbLry+YZhUd87z83WRtvmuGZyFUhCYvUPiUPaqLWqgjW3pSCtD3s RSNnUQtlcdZulPeBxLXUq39TpFIvWl7qKxiF3iiIVKbFwKCKeb9hxaFUn8eIkszX 9xQtcG2sHZ2Lqj+1OJPclrvaXuUw/Xhwr8Hv34UMF40fy2L5LUDtyxrv20TXcGYh FOa1Cju6dbGAsZfaQVxmejnAmTd96JJPUUJueiL9t/JFzYTCE39S0jFMBHK5lIfU 75o9qR7nJALeThai86sBhNSDZBIidcxF -----END CERTIFICATE-----Generated at Fri Dec 19 19:22:40 2025 by rpki-client