This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft File: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft (raw, json) Hash identifier: TTb5MiqLL2RxizCyyBm2UZZpWyQ9T966QYt6dHhCuoo= Subject key identifier: 83:00:15:DB:BB:B9:18:C9:73:A3:C2:D4:C3:E3:53:00:47:CC:36:DD Authority key identifier: DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 Certificate issuer: /CN=A91A5201/serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft Manifest number: 7D Signing time: Fri 19 Dec 2025 05:44:40 +0000 Manifest this update: Fri 19 Dec 2025 05:44:40 +0000 Manifest next update: Fri 26 Dec 2025 05:44:40 +0000 Files and hashes: 1: 3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl (hash: 1i/8QAy6JMm+ZFI/o/oJmy0gDWIjU0FCphxW5F64hxQ=) 2: D0CA23541BC611F09FDAC047C4F9AE02.roa (hash: KE/ITB6hhJ+i5ZAAKHW4Wk+MiRqF5kXhTWgdF88Y+V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5201, serialNumber=DEE5B8BC850A5B6BCB46D7E3B4C97E8B8328A7A0 Validity Not Before: Dec 19 05:44:40 2025 GMT Not After : Dec 26 05:44:40 2025 GMT Subject: CN=6944e648-a652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f4:9b:e5:93:5d:6a:1d:11:2f:24:f3:7e:83: 14:5b:7c:4c:f1:c4:a3:c5:f1:a1:96:69:b2:a1:4a: 5f:d4:0b:ae:ea:eb:25:ee:36:eb:03:be:61:f3:16: d7:da:ce:e1:fa:15:0f:a1:ce:d8:08:d1:9a:9a:1d: 7f:1f:ca:54:5c:22:b1:f0:a2:66:3d:b1:21:65:ef: ca:b7:e3:a0:16:13:40:42:57:5e:22:64:1f:a2:c1: 0f:d7:d0:47:11:07:b9:66:6b:5b:a1:84:d3:11:ba: f8:1a:bd:fa:10:a8:44:43:27:8c:3a:2e:f7:32:8e: 3d:f0:43:c7:73:47:c4:17:c8:21:d1:1b:e2:c4:07: 0e:d9:9d:52:19:66:dd:e0:0c:9b:cc:67:20:62:07: eb:39:48:45:d6:a4:d9:9c:77:15:81:4b:45:94:6c: 59:3f:1b:31:10:63:85:9f:d4:49:bf:27:9d:00:20: 96:6d:c1:47:0e:32:e9:3e:f1:24:9c:a6:52:68:4b: c8:bc:25:76:13:68:96:5d:66:7d:16:99:b6:7d:15: 4b:df:13:64:24:ba:9d:99:14:2f:fa:87:16:96:62: c2:6e:4f:3a:2b:25:47:0f:cc:00:0c:c9:ad:39:fa: 41:15:5b:33:1b:0e:33:2e:c2:ed:89:fa:b7:f3:99: 04:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:00:15:DB:BB:B9:18:C9:73:A3:C2:D4:C3:E3:53:00:47:CC:36:DD X509v3 Authority Key Identifier: keyid:DE:E5:B8:BC:85:0A:5B:6B:CB:46:D7:E3:B4:C9:7E:8B:83:28:A7:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3uW4vIUKW2vLRtfjtMl-i4Mop6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5201/45AAA1E81B5511F0A395B813C4F9AE02/3uW4vIUKW2vLRtfjtMl-i4Mop6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f8:02:0a:2f:da:ab:40:af:ca:35:fa:8f:ae:7a:4e:29:8d: d6:f5:d4:d9:25:5a:d3:09:e4:27:29:82:37:1b:d1:e5:f0:02: 5c:75:9a:a9:f9:09:b3:cb:a6:85:a6:dd:36:fa:64:b5:5e:e8: ba:ce:c1:eb:7f:75:23:4e:4a:2c:9f:a4:a0:3c:10:3d:5b:04: e4:cf:c4:ed:c8:d6:79:59:cf:b3:c7:6c:96:58:d9:96:35:ab: fc:c4:46:66:a1:67:e8:90:a5:e2:c2:5c:b6:e2:ff:f3:e3:85: 0d:15:64:cd:f5:52:11:db:4e:82:37:84:bd:04:aa:08:3e:fc: 6e:25:e1:c1:d5:e1:29:8e:e1:5d:22:a5:aa:42:3d:e4:98:88: 1e:ce:c7:b8:89:f6:eb:69:11:2a:0f:7e:cd:30:63:71:07:82: 84:17:6e:a8:3b:3b:f2:f2:3f:e2:f4:7b:a0:26:b6:d6:8e:de: 5b:d4:d5:6b:ca:0f:b3:53:f9:af:57:08:f1:de:d2:58:86:2d: fd:2e:f3:f4:a6:2e:11:a5:a3:86:ea:75:89:f6:99:9e:40:f4: c1:b3:41:20:f0:6c:17:32:17:1e:83:57:0a:45:94:fe:22:80: 92:a3:bf:4d:6b:69:07:05:68:ef:fa:7b:07:06:08:47:a9:dd: b7:93:0d:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwMTExMC8GA1UEBRMoREVFNUI4QkM4NTBBNUI2QkNCNDZEN0UzQjRDOTdFOEI4 MzI4QTdBMDAeFw0yNTEyMTkwNTQ0NDBaFw0yNTEyMjYwNTQ0NDBaMBgxFjAUBgNV BAMMDTY5NDRlNjQ4LWE2NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDg9Jvlk11qHREvJPN+gxRbfEzxxKPF8aGWabKhSl/UC67q6yXuNusDvmHzFtfa zuH6FQ+hztgI0ZqaHX8fylRcIrHwomY9sSFl78q346AWE0BCV14iZB+iwQ/X0EcR B7lma1uhhNMRuvgavfoQqERDJ4w6Lvcyjj3wQ8dzR8QXyCHRG+LEBw7ZnVIZZt3g DJvMZyBiB+s5SEXWpNmcdxWBS0WUbFk/GzEQY4Wf1Em/J50AIJZtwUcOMuk+8SSc plJoS8i8JXYTaJZdZn0WmbZ9FUvfE2Qkup2ZFC/6hxaWYsJuTzorJUcPzAAMya05 +kEVWzMbDjMuwu2J+rfzmQRvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgwAV27u5 GMlzo8LUw+NTAEfMNt0wHwYDVR0jBBgwFoAU3uW4vIUKW2vLRtfjtMl+i4Mop6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjAxLzQ1QUFBMUU4MUI1 NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2TFJ0Zmp0TWwtaTRNb3A2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3VXNHZJVUtXMnZMUnRmanRNbC1pNE1vcDZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjAxLzQ1QUFBMUU4MUI1NTExRjBBMzk1QjgxM0M0RjlBRTAyLzN1VzR2SVVLVzJ2 TFJ0Zmp0TWwtaTRNb3A2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKL4Agov2qtAr8o1+o+uek4pjdb11NklWtMJ5Ccpgjcb0eXwAlx1mqn5 CbPLpoWm3Tb6ZLVe6LrOwet/dSNOSiyfpKA8ED1bBOTPxO3I1nlZz7PHbJZY2ZY1 q/zERmahZ+iQpeLCXLbi//PjhQ0VZM31UhHbToI3hL0Eqgg+/G4l4cHV4SmO4V0i papCPeSYiB7Ox7iJ9utpESoPfs0wY3EHgoQXbqg7O/LyP+L0e6AmttaO3lvU1WvK D7NT+a9XCPHe0liGLf0u8/SmLhGlo4bqdYn2mZ5A9MGzQSDwbBcyFx6DVwpFlP4i gJKjv01raQcFaO/6ewcGCEep3beTDf0= -----END CERTIFICATE-----Generated at Sat Dec 20 22:24:11 2025 by rpki-client