This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft File: 3HxGdMlvt2fql8B49oDvV07eu78.mft (raw, json) Hash identifier: FMf4PnZsj7v2yrLCK7HYQKY62zK5wQWZV8D86Gr8EQQ= Subject key identifier: 0A:24:F5:7C:44:9E:8C:BD:FD:51:10:D3:33:03:E4:AB:6B:5D:4C:E0 Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 06D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft Manifest number: 06D0 Signing time: Sun 28 Dec 2025 21:24:40 +0000 Manifest this update: Sun 28 Dec 2025 21:24:40 +0000 Manifest next update: Sun 04 Jan 2026 21:24:40 +0000 Files and hashes: 1: 3HxGdMlvt2fql8B49oDvV07eu78.crl (hash: QHA5bgrbz0mUiFcOPrzw+mVGoVtH63KnEWOk+uRFCb4=) 2: A88A17FA823C11EBB35EF50FC4F9AE02.roa (hash: w4Og6ZXZfhcGLwCGrYKzyuX9/ySsrXuevHVn0ggUgdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Dec 28 21:24:40 2025 GMT Not After : Jan 4 21:24:40 2026 GMT Subject: CN=6951a018-ff37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:9e:45:45:f2:77:c6:38:8d:13:c7:0f:5f: ca:1e:4e:ba:ca:cf:98:46:a6:08:39:d9:6c:b8:fe: 42:85:7e:0b:c4:31:a4:55:5e:1b:c0:d5:10:48:5c: 8e:a8:7d:57:94:d8:40:cc:86:1d:be:54:c1:63:d2: 57:b2:f1:70:c8:b4:9d:68:d5:1c:7a:d7:72:16:40: 9d:ff:5c:f1:0c:b4:3e:49:3c:eb:d0:32:ba:bd:7c: 32:d8:83:06:4f:3e:1e:aa:e8:c2:cf:6e:c1:b7:03: 50:5b:5b:1f:e7:4f:5d:d9:28:c5:75:51:df:62:07: 7b:ac:d3:25:dc:a0:68:88:11:94:1d:3d:6c:fb:93: 34:94:9b:ef:dd:58:b9:71:2a:91:d9:e5:44:04:84: 87:69:d2:46:11:6c:6b:a7:8b:4b:0f:92:17:b2:12: 27:3a:b8:f8:c4:c1:f0:93:38:6e:97:91:91:fa:b6: 6b:87:fb:4d:1f:1a:52:97:bf:07:6d:2e:ef:df:b0: 0b:15:74:3b:93:3f:72:5d:46:c1:ac:8b:58:90:cf: 91:e5:8b:eb:d8:41:f7:bb:b5:40:96:b5:1b:dd:5f: c5:dc:47:6c:05:8c:bd:d0:db:8a:8e:c5:bd:cb:71: cb:d9:01:6b:61:37:23:61:e5:ab:e0:3a:4f:52:96: f4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:24:F5:7C:44:9E:8C:BD:FD:51:10:D3:33:03:E4:AB:6B:5D:4C:E0 X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ef:d1:60:ba:4d:12:11:0d:79:89:94:20:16:93:24:9e:31: 47:f3:c6:ba:04:59:a3:e1:85:b1:d6:15:54:e5:cd:c5:c1:09: d4:ad:0d:a2:7e:0d:27:ac:fd:b1:07:2f:27:49:a4:f3:ac:43: c5:17:16:d8:81:94:8d:f9:88:ff:e4:7d:d8:bf:8c:c6:97:26: f4:14:f3:9f:25:e4:c8:6f:1c:ab:2e:83:f8:63:59:bf:c1:d0: f8:85:4c:68:6e:d4:84:bf:07:06:6f:b9:32:3f:64:bb:00:72: 7f:f2:a4:fb:55:cd:01:a8:9c:1e:6b:6e:ba:fd:24:c3:61:9c: 40:6a:f5:9e:9f:de:d4:48:e5:9f:fe:f2:75:c9:d6:df:05:48: d2:46:1c:95:7c:af:5f:33:3f:8a:a6:23:5d:fd:10:65:88:e6: d0:6f:56:3e:a3:26:a3:d7:82:88:94:e9:89:fb:cc:85:78:40: dd:40:d2:dc:88:b7:4a:55:67:dc:9f:6b:69:7f:6d:fe:3e:0c: c3:ca:fa:49:bf:7a:5b:16:50:ec:5a:8d:f0:5b:8c:bf:e0:e9: f7:db:6a:2f:c6:c4:6e:31:4d:67:45:62:69:99:55:d9:52:12: 13:70:3d:fd:38:f4:c7:1d:76:0e:ea:80:0a:54:b8:eb:d7:bd: fe:fe:09:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUxMjI4MjEyNDQwWhcNMjYwMTA0MjEyNDQwWjAYMRYwFAYD VQQDDA02OTUxYTAxOC1mZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvmeRUXyd8Y4jRPHD1/KHk66ys+YRqYIOdlsuP5ChX4LxDGkVV4bwNUQSFyO qH1XlNhAzIYdvlTBY9JXsvFwyLSdaNUcetdyFkCd/1zxDLQ+STzr0DK6vXwy2IMG Tz4equjCz27BtwNQW1sf509d2SjFdVHfYgd7rNMl3KBoiBGUHT1s+5M0lJvv3Vi5 cSqR2eVEBISHadJGEWxrp4tLD5IXshInOrj4xMHwkzhul5GR+rZrh/tNHxpSl78H bS7v37ALFXQ7kz9yXUbBrItYkM+R5Yvr2EH3u7VAlrUb3V/F3EdsBYy90NuKjsW9 y3HL2QFrYTcjYeWr4DpPUpb0tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAok9XxE noy9/VEQ0zMD5KtrXUzgMB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0QzMS83NUY1N0IxMDgyM0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQy ZnFsOEI0OW9EdlYwN2V1NzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/79Fguk0SEQ15iZQgFpMknjFH88a6BFmj4YWx1hVU5c3FwQnUrQ2i fg0nrP2xBy8nSaTzrEPFFxbYgZSN+Yj/5H3Yv4zGlyb0FPOfJeTIbxyrLoP4Y1m/ wdD4hUxobtSEvwcGb7kyP2S7AHJ/8qT7Vc0BqJwea266/STDYZxAavWen97USOWf /vJ1ydbfBUjSRhyVfK9fMz+KpiNd/RBliObQb1Y+oyaj14KIlOmJ+8yFeEDdQNLc iLdKVWfcn2tpf23+PgzDyvpJv3pbFlDsWo3wW4y/4On322ovxsRuMU1nRWJpmVXZ UhITcD39OPTHHXYO6oAKVLjr173+/gnx -----END CERTIFICATE-----Generated at Tue Dec 30 10:33:14 2025 by rpki-client