This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: 75SUaI1PkynTCJVK7J/S+tTzRwzY36n+R7+cBgdlLTk= Subject key identifier: 3D:02:9C:D1:5A:D2:82:41:09:C5:A0:D8:E4:38:AA:B0:05:90:C0:03 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 017E Signing time: Fri 19 Dec 2025 02:52:39 +0000 Manifest this update: Fri 19 Dec 2025 02:52:39 +0000 Manifest next update: Fri 26 Dec 2025 02:52:39 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: FQIeYKO5tbSuCfbIEQyBtB/85vFlwx8dv7bnMfCt5Ks=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: g1vuB/s+fKkz9lQDwgz7uwUHIIgwyYOpfROfbA+7Aro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Dec 19 02:52:39 2025 GMT Not After : Dec 26 02:52:39 2025 GMT Subject: CN=6944bdf7-2430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:02:28:6d:c5:73:f1:0d:11:36:9e:cb:27: 31:56:bf:bb:17:88:1c:2a:9d:23:b2:82:2f:8c:a1: 5c:ae:be:2d:bf:67:03:bc:5b:cd:50:6d:54:7a:c9: 48:48:15:87:30:a8:0b:bd:b4:77:94:e5:4e:ec:cf: b6:67:2d:f4:44:6f:61:d0:70:44:57:fe:f4:38:5e: f8:b1:51:80:f8:a7:2a:f4:5b:81:f2:e6:3e:f6:92: e0:5d:b8:53:66:2a:e1:5b:ab:49:05:7d:c3:2e:de: af:d0:b0:eb:d4:17:28:80:60:d9:87:af:39:ae:a0: 03:4c:10:a7:e4:85:c2:41:d9:7b:3d:86:19:b2:e5: bd:af:ba:2e:c8:46:d9:ff:bd:04:fe:82:b9:50:d6: 44:07:fb:cc:0b:eb:0c:60:e8:55:9e:92:59:51:32: fb:1f:d3:99:51:c7:ad:c1:ef:bd:20:0a:4f:a5:a1: e0:dd:2a:0e:b4:d9:d3:c4:7e:bd:2d:74:e1:dd:03: 8e:74:df:ab:a9:af:53:4b:a2:69:4e:a3:fa:42:b5: 03:7b:8a:1e:ed:ce:a0:95:c1:11:20:43:bf:2e:be: db:1b:ee:5a:d2:4f:32:7f:9c:1d:8f:6c:6b:16:94: 4c:6f:17:f5:9b:08:ea:25:c5:00:41:74:14:6c:49: 43:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:02:9C:D1:5A:D2:82:41:09:C5:A0:D8:E4:38:AA:B0:05:90:C0:03 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:53:de:27:c3:ce:ea:67:a3:75:2b:57:15:12:b6:7b:8f:47: 5c:2e:c4:9f:a4:ea:fa:4d:e4:26:01:b7:99:b2:5b:82:f5:1d: 7b:31:fb:c2:26:de:13:c2:24:ce:69:2a:70:db:ac:5e:6f:3a: d8:2a:3a:16:98:17:2e:92:f9:2f:42:a2:05:d9:c8:ee:cd:71: e5:d2:1b:64:08:03:1d:54:d4:0a:d3:f4:3e:b3:cb:37:a1:66: ea:ba:c8:5b:a1:16:84:86:ba:5d:7f:9a:c6:16:7f:73:a8:a4: c7:3a:cf:a3:68:98:9a:42:9e:39:71:ca:7d:a7:e8:e7:18:7d: fb:bc:52:29:f0:9d:1b:63:59:a6:39:d8:83:28:3d:57:5f:b4: 1e:90:56:b1:3b:23:0c:ad:b7:e7:67:bb:d7:fc:b3:97:57:05: a4:ce:43:a5:45:c8:4d:a4:6e:02:b7:a2:36:e2:a3:da:fd:06: eb:df:ed:f2:b3:0b:c5:4f:89:d6:22:50:54:cf:6f:d6:56:58: 6e:bf:94:18:cf:50:cc:94:9d:27:9b:6c:af:e4:9c:e5:ca:2e: 06:c4:8a:a7:3c:b9:69:e9:21:b3:d8:ba:a0:d0:e5:25:0f:04: cf:dc:05:71:09:4d:df:c5:63:e2:91:5e:3a:b8:04:c3:6a:dc: 20:02:3a:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjUxMjE5MDI1MjM5WhcNMjUxMjI2MDI1MjM5WjAYMRYwFAYD VQQDDA02OTQ0YmRmNy0yNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws8CKG3Fc/ENETaeyycxVr+7F4gcKp0jsoIvjKFcrr4tv2cDvFvNUG1UeslI SBWHMKgLvbR3lOVO7M+2Zy30RG9h0HBEV/70OF74sVGA+Kcq9FuB8uY+9pLgXbhT ZirhW6tJBX3DLt6v0LDr1BcogGDZh685rqADTBCn5IXCQdl7PYYZsuW9r7ouyEbZ /70E/oK5UNZEB/vMC+sMYOhVnpJZUTL7H9OZUcetwe+9IApPpaHg3SoOtNnTxH69 LXTh3QOOdN+rqa9TS6JpTqP6QrUDe4oe7c6glcERIEO/Lr7bG+5a0k8yf5wdj2xr FpRMbxf1mwjqJcUAQXQUbElD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0CnNFa 0oJBCcWg2OQ4qrAFkMADMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHU94nw87qZ6N1K1cVErZ7j0dcLsSfpOr6TeQmAbeZsluC9R17MfvC Jt4TwiTOaSpw26xebzrYKjoWmBcukvkvQqIF2cjuzXHl0htkCAMdVNQK0/Q+s8s3 oWbqushboRaEhrpdf5rGFn9zqKTHOs+jaJiaQp45ccp9p+jnGH37vFIp8J0bY1mm OdiDKD1XX7QekFaxOyMMrbfnZ7vX/LOXVwWkzkOlRchNpG4Ct6I24qPa/Qbr3+3y swvFT4nWIlBUz2/WVlhuv5QYz1DMlJ0nm2yv5Jzlyi4GxIqnPLlp6SGz2Lqg0OUl DwTP3AVxCU3fxWPikV46uATDatwgAjoy -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:54 2025 by rpki-client