This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft File: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft (raw, json) Hash identifier: Lg8uI2SYFeDJlpq4gZ90gmFSE2R4MmiYPJ+lFUc5jHU= Subject key identifier: A9:6C:20:E6:E1:F1:4A:D3:1D:56:9B:A5:87:E9:F3:71:58:A4:78:D5 Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 052E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft Manifest number: 0528 Signing time: Thu 18 Dec 2025 22:52:16 +0000 Manifest this update: Thu 18 Dec 2025 22:52:16 +0000 Manifest next update: Thu 25 Dec 2025 22:52:16 +0000 Files and hashes: 1: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl (hash: v95SgwulePYfIPI2oihZE/3P/sG4iHup1U82fHM3QtY=) 2: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (hash: K+U5H/gEB39S0MtkniCqyAbmgU8k6WO9RKiUyR91DCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:52:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7, serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Dec 18 22:52:16 2025 GMT Not After : Dec 25 22:52:16 2025 GMT Subject: CN=694485a0-22fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0d:b0:a7:41:ed:7f:30:c0:ca:c1:83:aa:24: 58:06:4d:a7:c4:dd:52:9e:c8:c3:3a:55:bf:60:99: a1:35:c1:3d:66:a6:d8:03:09:1c:a8:e0:cb:9b:91: af:f6:33:90:51:93:6f:e2:24:c8:7c:19:24:ad:be: 23:e6:20:f9:2e:8c:1f:0e:ed:31:6b:a5:9f:a2:03: e5:37:df:e0:b8:52:4f:f7:55:d9:8d:2d:e0:32:b2: 06:92:63:64:2a:1e:b1:eb:be:ec:34:b4:b0:50:06: 36:a6:ca:4a:bc:b9:85:4f:f2:63:3a:f6:b3:84:4c: 95:cb:b1:bb:83:de:cc:88:a1:82:24:b7:4b:14:c0: b4:db:68:83:41:64:98:c2:db:5c:f5:1c:cb:73:b8: 25:a1:6a:9b:80:fa:11:3e:d9:be:e9:6d:3b:c7:f9: 5d:f6:4b:b5:1b:5e:87:d8:0d:5e:ff:0c:07:c6:e6: 09:53:fb:40:0e:ba:3f:c0:4c:87:01:d8:61:7e:ea: a9:72:b0:ec:a0:67:c5:02:32:b3:05:54:28:45:ab: 21:72:90:05:37:e9:2a:bf:d6:bb:b0:aa:f1:97:8f: 08:09:3c:f6:2b:ef:71:69:03:82:df:c9:97:08:14: c7:5e:8b:0f:b2:ed:79:9d:2b:e7:19:c5:65:79:3c: e5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:6C:20:E6:E1:F1:4A:D3:1D:56:9B:A5:87:E9:F3:71:58:A4:78:D5 X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f7:a8:c6:7c:e8:ad:33:7b:fa:11:56:58:be:a3:7f:1c:43: 85:4e:40:88:29:6b:e6:07:a0:48:3d:6c:c1:d6:af:cf:02:d8: 8e:0b:12:7e:2c:5d:22:d2:de:97:27:81:97:40:62:d5:5d:e8: 3c:a1:ff:8b:21:ac:73:07:c6:9e:9f:5f:f4:b8:bf:1a:69:1a: 1d:9c:44:0c:1a:86:eb:3d:12:38:fa:fd:a3:70:2f:11:60:f4: 54:75:6b:f0:15:d4:7f:41:6b:78:ad:a7:ad:45:02:51:6d:c0: 57:7a:c1:2a:49:e8:90:40:58:32:66:ed:37:86:38:b9:53:29: 78:b9:ac:fc:d4:cf:ed:a5:5a:40:2a:33:3c:5e:bb:d8:9f:55: 72:67:46:7c:81:7b:df:06:ee:c3:4d:59:19:35:03:c3:19:90: 02:eb:94:30:32:1e:f2:06:da:7e:be:f7:44:c5:f6:10:17:da: 79:35:77:d8:e1:ce:c2:a0:b1:c5:4e:c8:16:ca:f5:37:35:73: bf:bc:bf:c1:87:b7:54:e8:11:c5:40:30:af:45:5d:ff:98:17: 29:b9:22:5e:0c:a4:46:53:83:27:12:cd:0c:22:fe:5f:20:cc: 57:6c:d0:c5:c6:85:f6:93:a4:2e:75:ee:40:a7:35:3f:9f:b8: 72:10:4f:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjUxMjE4MjI1MjE2WhcNMjUxMjI1MjI1MjE2WjAYMRYwFAYD VQQDDA02OTQ0ODVhMC0yMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA2wp0HtfzDAysGDqiRYBk2nxN1SnsjDOlW/YJmhNcE9ZqbYAwkcqODLm5Gv 9jOQUZNv4iTIfBkkrb4j5iD5LowfDu0xa6WfogPlN9/guFJP91XZjS3gMrIGkmNk Kh6x677sNLSwUAY2pspKvLmFT/JjOvazhEyVy7G7g97MiKGCJLdLFMC022iDQWSY wttc9RzLc7gloWqbgPoRPtm+6W07x/ld9ku1G16H2A1e/wwHxuYJU/tADro/wEyH AdhhfuqpcrDsoGfFAjKzBVQoRashcpAFN+kqv9a7sKrxl48ICTz2K+9xaQOC38mX CBTHXosPsu15nSvnGcVleTzlVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlsIObh 8UrTHVabpYfp83FYpHjVMB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUZFNy9GOEI2NTM3NDI5MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40 M2RyenpRNUJxZTl2M1RGSTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA196jGfOitM3v6EVZYvqN/HEOFTkCIKWvmB6BIPWzB1q/PAtiOCxJ+ LF0i0t6XJ4GXQGLVXeg8of+LIaxzB8aen1/0uL8aaRodnEQMGobrPRI4+v2jcC8R YPRUdWvwFdR/QWt4raetRQJRbcBXesEqSeiQQFgyZu03hji5Uyl4uaz81M/tpVpA KjM8XrvYn1VyZ0Z8gXvfBu7DTVkZNQPDGZAC65QwMh7yBtp+vvdExfYQF9p5NXfY 4c7CoLHFTsgWyvU3NXO/vL/Bh7dU6BHFQDCvRV3/mBcpuSJeDKRGU4MnEs0MIv5f IMxXbNDFxoX2k6Qude5ApzU/n7hyEE/A -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:51 2025 by rpki-client