This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: MGalrmykFlISeV8OqRh3gOxEy2aCGLVDcOHOj03sQlg= Subject key identifier: 55:85:A0:86:30:C9:79:6B:E2:08:AE:88:D7:0D:7D:8F:61:E5:1C:19 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F43 Signing time: Mon 22 Dec 2025 17:15:01 +0000 Manifest this update: Mon 22 Dec 2025 17:15:00 +0000 Manifest next update: Mon 29 Dec 2025 17:15:00 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: FZVQX7yCgPEr/u57nhzLXFIVd4JxnXVts2PEp/1Kr8w=) 2: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: 6UUZGVX+yz33BPFW9zj9LAK08O51N58DNxWBC06Z/8c=) 3: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: LJ768Cu3JxipfpTsVr1alEqz1iSEePAZhcCKQ/8p8EU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3921 (0xf51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Dec 22 17:15:00 2025 GMT Not After : Dec 29 17:15:00 2025 GMT Subject: CN=69497c95-e2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:72:f1:a1:58:30:cd:00:37:a1:80:08:e2: 4f:30:1e:93:5e:b5:82:04:ff:ca:7d:ae:54:23:2d: 5b:c2:5a:8e:57:8a:d4:c4:49:50:c5:40:e7:d2:07: aa:84:60:9e:70:ae:f4:b0:b4:18:ed:63:3f:27:f2: da:02:73:6c:0b:44:f5:19:4f:a0:7a:93:ee:1f:6d: 48:46:23:9e:9e:45:47:b3:77:1b:e5:bf:40:c5:67: 95:a9:25:6b:c7:8d:8d:9c:17:73:0e:a0:39:2c:66: b4:40:08:38:ed:ed:6a:3a:91:12:10:ce:22:fe:29: 02:7d:a0:27:d0:2d:ce:5b:5d:86:9b:f3:74:bf:6c: 4f:88:20:9a:c4:41:d6:71:24:b8:31:cc:20:74:99: a1:d6:1b:f5:3c:9d:d5:59:65:1f:96:13:d5:81:6c: 01:3d:79:92:b3:49:b1:0a:4a:ef:38:66:bb:78:ad: f3:38:a2:89:00:66:d7:58:66:ab:96:49:7e:bc:5e: 9a:0c:2c:d2:0e:78:6f:0d:21:c3:b5:ff:d4:af:d8: aa:db:24:e9:54:4b:b7:72:b9:30:07:60:a6:90:37: 40:2c:7a:8b:bc:a8:d1:90:f9:f2:88:7a:e6:a9:7a: 9b:7b:4e:5e:4c:45:d1:08:9f:74:7a:1e:ac:bf:c5: 0b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:85:A0:86:30:C9:79:6B:E2:08:AE:88:D7:0D:7D:8F:61:E5:1C:19 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0d:7e:03:27:72:87:47:6a:ce:40:28:02:58:ff:78:70:75: 37:64:d9:62:d3:1c:0d:b5:1b:9b:de:ab:db:42:32:ea:21:1b: 19:ec:45:42:b6:ee:db:51:97:31:34:14:25:8f:0f:26:c6:e0: b3:57:e2:17:92:64:3f:10:1c:30:3b:49:10:1c:f8:a8:31:51: fa:d1:45:47:32:7b:e8:ff:0c:12:51:88:8d:36:d8:a5:e1:63: fe:9f:e1:49:3e:4c:c8:62:b5:43:2b:14:e7:6d:1b:d5:59:32: 8e:f3:48:15:5c:92:d1:c9:e7:2b:1a:83:02:ee:f8:96:2d:27: 10:f6:44:30:7b:4f:6c:6c:e2:54:d3:35:2a:38:a0:d2:81:03: 66:e2:50:e1:53:25:ea:7a:c0:60:e8:be:d1:9d:d4:f9:ee:c1: c7:71:95:39:a5:bf:8b:2a:ab:47:8a:66:30:c1:8f:69:77:a5: 66:7a:0d:f8:1f:cb:89:e3:a9:da:ed:7a:55:62:09:77:d4:2b: 5f:f8:b8:b2:d0:99:a6:cc:e0:e1:0e:73:a3:ee:9e:74:21:89: 2a:97:dd:b1:7e:4f:e9:9a:83:50:c8:17:51:a4:27:de:92:74: ea:38:90:ae:4e:df:7e:d5:57:63:c5:e3:de:89:86:91:ec:9d: d1:12:3e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjUxMjIyMTcxNTAwWhcNMjUxMjI5MTcxNTAwWjAYMRYwFAYD VQQDDA02OTQ5N2M5NS1lMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQFy8aFYMM0AN6GACOJPMB6TXrWCBP/Kfa5UIy1bwlqOV4rUxElQxUDn0geq hGCecK70sLQY7WM/J/LaAnNsC0T1GU+gepPuH21IRiOenkVHs3cb5b9AxWeVqSVr x42NnBdzDqA5LGa0QAg47e1qOpESEM4i/ikCfaAn0C3OW12Gm/N0v2xPiCCaxEHW cSS4McwgdJmh1hv1PJ3VWWUflhPVgWwBPXmSs0mxCkrvOGa7eK3zOKKJAGbXWGar lkl+vF6aDCzSDnhvDSHDtf/Ur9iq2yTpVEu3crkwB2CmkDdALHqLvKjRkPnyiHrm qXqbe05eTEXRCJ90eh6sv8UL3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWFoIYw yXlr4giuiNcNfY9h5RwZMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaDX4DJ3KHR2rOQCgCWP94cHU3ZNli0xwNtRub3qvbQjLqIRsZ7EVC tu7bUZcxNBQljw8mxuCzV+IXkmQ/EBwwO0kQHPioMVH60UVHMnvo/wwSUYiNNtil 4WP+n+FJPkzIYrVDKxTnbRvVWTKO80gVXJLRyecrGoMC7viWLScQ9kQwe09sbOJU 0zUqOKDSgQNm4lDhUyXqesBg6L7RndT57sHHcZU5pb+LKqtHimYwwY9pd6Vmeg34 H8uJ46na7XpVYgl31Ctf+Liy0JmmzODhDnOj7p50IYkql92xfk/pmoNQyBdRpCfe knTqOJCuTt9+1VdjxePeiYaR7J3REj7z -----END CERTIFICATE-----Generated at Tue Dec 23 09:55:56 2025 by rpki-client