This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: H6zPyHtqQd9ZpWwk6onJu79YCIYPkO51zv+94W39kT4= Subject key identifier: 8F:98:08:06:7E:09:97:61:8A:78:47:6E:80:0A:CF:96:D6:85:DA:AA Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C53 Signing time: Sat 20 Dec 2025 18:15:17 +0000 Manifest this update: Sat 20 Dec 2025 18:15:16 +0000 Manifest next update: Sat 27 Dec 2025 18:15:16 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: mPsgQ3nYbq6u5f366evXlxkurAIz6Ly30JdXlLJePhM=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Dec 20 18:15:16 2025 GMT Not After : Dec 27 18:15:16 2025 GMT Subject: CN=6946e7b5-65a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:7a:35:3a:a9:9c:5e:fc:9c:3a:19:a5:29: 36:b9:b7:e4:be:c1:f4:e1:3c:e9:89:50:4e:d6:dd: e0:5d:03:7b:3f:d0:1a:f4:fd:7d:29:c8:70:99:bd: b3:f6:8e:de:d4:aa:0f:36:a8:e7:9d:b8:51:45:ee: 45:51:56:ed:1f:be:de:20:c0:4a:32:48:4d:41:f9: 99:25:5f:a0:f8:9d:13:92:49:ae:47:21:d3:88:ef: e4:13:98:18:be:8e:51:fe:ab:50:81:76:ba:79:f7: af:df:fa:9b:fd:d8:04:3c:5a:8a:53:3c:57:61:07: d5:24:5b:df:ab:49:ba:e2:95:99:08:ce:24:26:93: f3:42:0d:5f:93:9c:22:f4:08:eb:5b:13:8f:fc:a3: ec:f8:c1:31:77:72:89:1a:ce:5b:12:4d:9c:ac:40: d8:1c:8d:53:87:eb:6c:61:9d:01:9a:7a:85:19:06: 46:15:fe:13:1e:7f:ee:8d:4f:02:8f:59:b3:d8:5d: 77:d6:fd:3d:74:1f:a8:90:91:a4:34:97:54:81:fa: ae:a9:05:84:bd:18:28:82:36:fc:b0:db:aa:9d:3c: eb:f6:98:ac:91:1e:c4:52:90:8b:e7:df:99:de:b5: 57:e1:c4:28:30:f3:d2:eb:b4:10:55:8f:b2:42:1a: cc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:98:08:06:7E:09:97:61:8A:78:47:6E:80:0A:CF:96:D6:85:DA:AA X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a2:6d:8a:16:d5:d3:bf:0f:aa:3c:bd:a8:24:40:27:f6:28: 8b:01:7d:e2:12:85:3c:9e:5b:ec:bd:85:da:5f:91:1c:31:9d: d7:e0:89:49:3a:d8:78:62:c0:2b:6b:08:f7:45:69:ca:6f:93: aa:d3:dd:e1:d2:1b:78:ce:e1:2d:82:0c:69:1a:6a:c7:cf:43: 74:c3:ed:4a:7a:39:52:19:c6:a2:06:ab:34:cd:a3:5d:e5:b0: ea:52:e3:fb:07:d4:aa:cb:96:61:86:a6:b5:c0:7c:ff:36:04: 80:62:03:4b:8e:ca:ce:1d:27:81:84:1c:f8:d8:bf:07:d1:ed: 6d:05:30:82:aa:33:54:54:12:30:1e:ab:08:61:b8:b0:1b:43: 82:76:ea:c1:03:06:88:d6:ed:54:a7:b2:3f:b1:6f:fa:61:d7: a2:b4:41:f8:04:39:03:52:00:bf:f0:ad:b8:9d:ff:2d:b2:0e: 97:a5:5c:24:7d:31:d1:60:8e:ef:a8:6b:7b:e0:53:21:26:95: 43:ba:4b:d2:37:bb:49:68:b5:cf:1a:e2:3e:21:e1:79:37:fa: 70:8c:ea:fd:38:8d:21:5e:10:6f:ba:f9:e6:b2:36:d6:6a:41: 4d:c3:ac:16:08:45:12:5f:21:6c:2a:34:4a:48:66:f7:73:1e: e3:61:98:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUxMjIwMTgxNTE2WhcNMjUxMjI3MTgxNTE2WjAYMRYwFAYD VQQDDA02OTQ2ZTdiNS02NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zN6NTqpnF78nDoZpSk2ubfkvsH04TzpiVBO1t3gXQN7P9Aa9P19Kchwmb2z 9o7e1KoPNqjnnbhRRe5FUVbtH77eIMBKMkhNQfmZJV+g+J0TkkmuRyHTiO/kE5gY vo5R/qtQgXa6efev3/qb/dgEPFqKUzxXYQfVJFvfq0m64pWZCM4kJpPzQg1fk5wi 9AjrWxOP/KPs+MExd3KJGs5bEk2crEDYHI1Th+tsYZ0BmnqFGQZGFf4THn/ujU8C j1mz2F131v09dB+okJGkNJdUgfquqQWEvRgogjb8sNuqnTzr9piskR7EUpCL59+Z 3rVX4cQoMPPS67QQVY+yQhrMBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+YCAZ+ CZdhinhHboAKz5bWhdqqMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASom2KFtXTvw+qPL2oJEAn9iiLAX3iEoU8nlvsvYXaX5EcMZ3X4IlJ Oth4YsArawj3RWnKb5Oq093h0ht4zuEtggxpGmrHz0N0w+1KejlSGcaiBqs0zaNd 5bDqUuP7B9Sqy5Zhhqa1wHz/NgSAYgNLjsrOHSeBhBz42L8H0e1tBTCCqjNUVBIw HqsIYbiwG0OCdurBAwaI1u1Up7I/sW/6YdeitEH4BDkDUgC/8K24nf8tsg6XpVwk fTHRYI7vqGt74FMhJpVDukvSN7tJaLXPGuI+IeF5N/pwjOr9OI0hXhBvuvnmsjbW akFNw6wWCEUSXyFsKjRKSGb3cx7jYZhy -----END CERTIFICATE-----Generated at Sun Dec 21 14:42:27 2025 by rpki-client