This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft File: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft (raw, json) Hash identifier: ZeNviff/O6ki0jl3IUwiE5X6tGC7z4HLX4vLf2BcwUg= Subject key identifier: 70:D9:BB:A0:F8:19:72:AC:E6:2D:0D:BA:96:F2:84:6E:51:B8:DD:34 Authority key identifier: 03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 Certificate issuer: /CN=A91822BF/serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft Manifest number: 0C3A Signing time: Wed 24 Dec 2025 18:17:45 +0000 Manifest this update: Wed 24 Dec 2025 18:17:45 +0000 Manifest next update: Wed 31 Dec 2025 18:17:45 +0000 Files and hashes: 1: A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl (hash: o3VaLr57aiqroBnK4CVsNuSkut7d1X1+C/iIJeSeygU=) 2: 37EA3E261ADC11EA8EB46F37C4F9AE02.roa (hash: ELFkrkGvrGXpvAeGB34G/wdhCkAvgz4ejLB+gQtN8Ps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91822BF, serialNumber=0377B93C91FDAF469A591B4C52D24CB1555D2BD4 Validity Not Before: Dec 24 18:17:45 2025 GMT Not After : Dec 31 18:17:45 2025 GMT Subject: CN=694c2e49-fcbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9b:ae:79:bc:ca:c5:1b:c1:e0:c3:51:40:3e: 47:10:0d:6d:90:bf:21:bf:72:42:42:d2:3d:d1:60: c6:17:b4:de:66:dd:54:8d:60:65:49:59:b8:79:1f: d4:f3:fa:0d:f3:3a:bf:fb:67:7b:95:40:c4:ae:20: 92:57:8c:18:22:c9:9e:5e:80:11:86:6e:31:f4:a9: aa:12:03:a9:b7:df:cb:84:74:ec:ba:1d:60:26:f1: 4e:f5:10:db:25:40:66:46:cc:1f:04:d0:5e:79:8e: 46:bd:b5:d7:f8:93:34:58:dd:96:ab:8a:c8:08:92: 45:31:e8:e1:29:94:cc:57:62:71:91:d4:2a:d0:90: 3e:06:9d:84:c3:55:b9:64:99:bb:aa:f0:46:f0:29: d2:39:58:70:02:32:2e:81:18:a9:94:fa:b1:9b:99: 72:d6:b2:04:01:dd:74:d8:b9:33:8c:30:bf:86:6c: d7:90:e4:b2:61:fa:15:75:d8:78:17:3f:99:75:4e: 89:25:41:86:df:21:1f:c7:68:16:89:16:73:b8:bc: 13:0e:e4:d1:4e:b8:51:65:be:97:66:6a:9c:6e:b3: 63:09:2f:6d:c3:6f:97:0a:a7:1d:16:f4:c6:65:12: f7:37:a8:6f:bd:2d:76:93:d2:d2:8a:6d:88:d4:af: 71:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D9:BB:A0:F8:19:72:AC:E6:2D:0D:BA:96:F2:84:6E:51:B8:DD:34 X509v3 Authority Key Identifier: keyid:03:77:B9:3C:91:FD:AF:46:9A:59:1B:4C:52:D2:4C:B1:55:5D:2B:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91822BF/1039BC401ADB11EAAA3A8235C4F9AE02/A3e5PJH9r0aaWRtMUtJMsVVdK9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ce:82:f7:5d:57:e0:84:29:07:8a:ca:e6:60:12:f8:dc:c7: 03:6f:69:1d:cb:20:49:8b:78:72:47:5e:66:42:46:ea:10:8d: 0a:54:73:12:06:9e:34:9d:dd:67:5e:18:de:14:17:dd:22:3f: 19:98:80:9a:04:c9:4f:b2:ca:74:67:15:c2:cf:cc:d5:23:05: dc:91:d3:50:47:0b:d9:92:f5:10:52:37:fd:4a:c0:78:44:9e: d2:6c:4a:61:fd:25:4d:6c:05:57:04:2d:4f:5d:88:92:1a:4e: 8a:03:60:e1:21:24:e8:7d:5e:68:27:a9:01:d7:28:b6:73:0e: 87:de:c5:d1:c0:d3:7d:84:66:69:18:c0:d0:7c:2f:86:db:b5: 7d:03:08:96:1a:1f:24:39:01:7a:16:63:a7:95:99:a4:b3:92: 50:2d:68:27:99:57:de:8b:01:05:2b:d6:58:3a:b5:a3:f1:4c: f2:15:ad:36:68:c8:4f:0b:d3:0c:cd:24:53:a3:65:3a:47:22: af:85:bf:33:c7:f5:68:02:6c:17:6e:f2:38:66:ba:18:59:92: 93:82:07:5c:77:28:45:f4:3b:c6:a4:90:94:db:70:b1:62:09: 87:b4:67:27:eb:3e:e4:23:8a:24:ea:30:c4:1a:2e:39:7b:ce: a2:7f:5e:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIyQkYxMTAvBgNVBAUTKDAzNzdCOTNDOTFGREFGNDY5QTU5MUI0QzUyRDI0Q0Ix NTU1RDJCRDQwHhcNMjUxMjI0MTgxNzQ1WhcNMjUxMjMxMTgxNzQ1WjAYMRYwFAYD VQQDDA02OTRjMmU0OS1mY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpuuebzKxRvB4MNRQD5HEA1tkL8hv3JCQtI90WDGF7TeZt1UjWBlSVm4eR/U 8/oN8zq/+2d7lUDEriCSV4wYIsmeXoARhm4x9KmqEgOpt9/LhHTsuh1gJvFO9RDb JUBmRswfBNBeeY5GvbXX+JM0WN2Wq4rICJJFMejhKZTMV2JxkdQq0JA+Bp2Ew1W5 ZJm7qvBG8CnSOVhwAjIugRiplPqxm5ly1rIEAd102LkzjDC/hmzXkOSyYfoVddh4 Fz+ZdU6JJUGG3yEfx2gWiRZzuLwTDuTRTrhRZb6XZmqcbrNjCS9tw2+XCqcdFvTG ZRL3N6hvvS12k9LSim2I1K9xVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDZu6D4 GXKs5i0NupbyhG5RuN00MB8GA1UdIwQYMBaAFAN3uTyR/a9GmlkbTFLSTLFVXSvU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjJCRi8xMDM5QkM0MDFB REIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIwYWFXUnRNVXRKTXNWVmRL OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzZTVQSkg5cjBhYVdSdE1VdEpNc1ZWZEs5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjJCRi8xMDM5QkM0MDFBREIxMUVBQUEzQTgyMzVDNEY5QUUwMi9BM2U1UEpIOXIw YWFXUnRNVXRKTXNWVmRLOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDzoL3XVfghCkHisrmYBL43McDb2kdyyBJi3hyR15mQkbqEI0KVHMS Bp40nd1nXhjeFBfdIj8ZmICaBMlPssp0ZxXCz8zVIwXckdNQRwvZkvUQUjf9SsB4 RJ7SbEph/SVNbAVXBC1PXYiSGk6KA2DhISTofV5oJ6kB1yi2cw6H3sXRwNN9hGZp GMDQfC+G27V9AwiWGh8kOQF6FmOnlZmks5JQLWgnmVfeiwEFK9ZYOrWj8UzyFa02 aMhPC9MMzSRTo2U6RyKvhb8zx/VoAmwXbvI4ZroYWZKTggdcdyhF9DvGpJCU23Cx YgmHtGcn6z7kI4ok6jDEGi45e86if14i -----END CERTIFICATE-----Generated at Wed Dec 24 20:31:58 2025 by rpki-client