This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft File: 3K6HG3xct5vH7PZ5s7LTyVan2eM.mft (raw, json) Hash identifier: oF+8vMIPj5piscM6q9fUD1U3FV+hzamUwjFbQj1NYNo= Subject key identifier: 3F:20:E1:E3:63:7B:24:D3:06:B4:FC:66:DD:8F:FB:E4:B6:29:B5:98 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft Manifest number: 06DA Signing time: Sat 20 Dec 2025 21:28:25 +0000 Manifest this update: Sat 20 Dec 2025 21:28:25 +0000 Manifest next update: Sat 27 Dec 2025 21:28:25 +0000 Files and hashes: 1: 3K6HG3xct5vH7PZ5s7LTyVan2eM.crl (hash: iKNalqkh59/jrJEpE4Sewvok+N4r03yKBArqXQZc0To=) 2: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (hash: FOS9hpfhSMJ/5W+e+NFkrecUhC86TAOPH0uxsIPYP4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Dec 20 21:28:25 2025 GMT Not After : Dec 27 21:28:25 2025 GMT Subject: CN=694714f9-816c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:ee:d1:67:05:03:08:81:a2:c2:78:a3:d5: d5:18:a3:c5:f8:e7:b6:d5:f3:51:d4:94:95:ad:01: 44:eb:25:c0:8f:79:5b:f2:1f:d4:73:f3:30:b6:b5: 25:99:48:61:86:ff:42:ac:bc:ba:16:d2:8d:5f:7e: a5:ad:0f:0e:3e:d7:6f:84:56:d8:3a:e4:d1:cc:12: cb:01:7b:64:d0:6c:2e:69:10:87:36:21:32:39:ac: 8e:c9:b2:b6:19:4d:2b:d7:70:f2:7c:b4:bc:6c:04: 54:8c:a4:2d:1a:91:cf:d2:a4:8f:26:9d:08:92:a2: 8d:40:32:bf:48:84:57:cb:53:c1:35:b5:c0:c0:0e: be:15:06:47:2a:e9:1d:fd:a7:d3:5a:60:14:59:f2: 7e:24:b1:f6:fd:9d:f4:a9:21:cd:96:0a:d6:36:d8: ad:56:b8:fb:92:7a:a6:e2:54:7e:de:ce:c6:39:16: 5a:ef:a4:7e:8d:3c:48:ed:69:87:ed:8e:b0:b9:41: c1:d8:37:30:e5:b7:4b:f6:e5:34:21:fa:59:46:b0: 8d:e4:bc:fe:97:32:27:4b:1d:f7:1f:2a:b9:77:bb: 7a:a2:4f:79:df:67:1e:7e:f1:6c:03:f2:44:80:56: d3:e8:3a:0a:63:a4:4d:69:83:aa:7e:b4:8c:41:25: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:20:E1:E3:63:7B:24:D3:06:B4:FC:66:DD:8F:FB:E4:B6:29:B5:98 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d0:99:8c:fd:18:74:47:e8:ec:f7:68:61:07:cc:54:51:ae: ed:b6:33:07:18:be:c5:42:19:e0:94:d1:bb:c1:fa:93:24:7d: cb:ab:a7:3c:e9:19:72:ca:e0:5b:c2:5c:f6:83:3f:a8:2c:eb: df:d7:7b:ce:40:2b:71:76:26:9c:47:5c:3f:81:64:c8:b3:2c: 8e:3c:ae:ba:89:af:b7:14:a2:40:0f:74:ba:57:da:b2:9b:a0: 61:0c:b5:30:b9:0d:e7:1b:d9:1b:ac:0f:4b:10:df:15:7b:31: 6b:40:a0:5b:50:ab:b4:1e:a2:18:8a:d8:3f:ae:8f:44:bc:0f: bd:df:11:d0:72:80:8d:30:52:4c:c7:7a:1f:67:7f:47:30:d7: 22:ba:cb:7c:44:bf:cd:72:8a:b5:08:22:89:8b:b2:55:37:10: 17:cf:67:d9:6f:49:4a:99:49:3f:13:16:a3:17:33:9e:38:05: 37:f8:e0:30:de:ed:31:f1:c4:76:25:3b:08:63:33:62:08:91: e3:4d:fd:e2:e6:c8:4a:eb:f6:91:16:76:57:c0:5b:20:9f:ff: 87:e4:2b:14:ea:6c:f3:a0:4e:dd:75:35:01:e0:67:c5:be:a0: 6d:a0:13:ad:4a:33:b9:40:dc:c2:b4:48:11:ca:fe:b0:b3:f7: 3a:37:92:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUxMjIwMjEyODI1WhcNMjUxMjI3MjEyODI1WjAYMRYwFAYD VQQDDA02OTQ3MTRmOS04MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwHu0WcFAwiBosJ4o9XVGKPF+Oe21fNR1JSVrQFE6yXAj3lb8h/Uc/MwtrUl mUhhhv9CrLy6FtKNX36lrQ8OPtdvhFbYOuTRzBLLAXtk0GwuaRCHNiEyOayOybK2 GU0r13DyfLS8bARUjKQtGpHP0qSPJp0IkqKNQDK/SIRXy1PBNbXAwA6+FQZHKukd /afTWmAUWfJ+JLH2/Z30qSHNlgrWNtitVrj7knqm4lR+3s7GORZa76R+jTxI7WmH 7Y6wuUHB2Dcw5bdL9uU0IfpZRrCN5Lz+lzInSx33Hyq5d7t6ok9532cefvFsA/JE gFbT6DoKY6RNaYOqfrSMQSWk7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8g4eNj eyTTBrT8Zt2P++S2KbWYMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDRBQy80OTcyMDk5NjgxNDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1 dkg3UFo1czdMVHlWYW4yZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd0JmM/Rh0R+js92hhB8xUUa7ttjMHGL7FQhnglNG7wfqTJH3Lq6c8 6RlyyuBbwlz2gz+oLOvf13vOQCtxdiacR1w/gWTIsyyOPK66ia+3FKJAD3S6V9qy m6BhDLUwuQ3nG9kbrA9LEN8VezFrQKBbUKu0HqIYitg/ro9EvA+93xHQcoCNMFJM x3ofZ39HMNciust8RL/Ncoq1CCKJi7JVNxAXz2fZb0lKmUk/ExajFzOeOAU3+OAw 3u0x8cR2JTsIYzNiCJHjTf3i5shK6/aRFnZXwFsgn/+H5CsU6mzzoE7ddTUB4GfF vqBtoBOtSjO5QNzCtEgRyv6ws/c6N5Ls -----END CERTIFICATE-----Generated at Mon Dec 22 13:22:23 2025 by rpki-client