This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: 6kEnyQ1j+DtaBH1dP9kO7CteHccYsbYFLDtUhrtaIMw= Subject key identifier: 6C:99:0E:47:57:D5:8D:77:45:6D:0F:AE:6B:CA:87:6A:49:30:75:0D Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:39:36 +0000 Manifest this update: Fri 19 Dec 2025 04:39:36 +0000 Manifest next update: Fri 26 Dec 2025 04:39:36 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: JQGVTP2v0edM7REaD3IEvKZyNs0EeCgeqJD48VMlMGQ=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: laasWh8PuYjoERWb0doiSl5kx11xLeI2IUGh595BB8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB, serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Dec 19 04:39:36 2025 GMT Not After : Dec 26 04:39:36 2025 GMT Subject: CN=6944d708-2b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:ad:25:ef:4f:18:5d:cc:70:3b:6b:7c:41: 2a:70:8d:24:6f:4f:08:fd:aa:99:78:a3:89:4e:00: ce:bf:9b:b3:e0:bc:f7:91:f5:4b:ea:9b:59:d4:4a: d0:08:23:1b:c0:8d:54:cd:78:10:12:50:f4:19:fe: ae:c0:b6:42:33:dd:c4:ac:a1:b1:c8:5c:9f:fd:18: 9f:45:8d:cc:a6:09:99:be:5a:67:d7:3a:be:88:1a: 9f:33:83:a2:86:6d:2d:a9:53:a5:0a:3c:ce:6c:6e: 71:93:a4:95:01:57:f3:ea:7e:21:e5:3b:46:bf:5f: d0:93:3c:3b:b5:24:87:f9:c7:b6:0a:ff:1d:91:f8: c5:9e:1a:89:73:c6:2c:18:52:aa:40:5a:a7:12:57: 01:00:f9:83:38:a9:c4:1c:9e:73:bf:84:ca:7a:36: b0:27:c3:65:00:d3:9e:eb:33:71:1c:68:e9:e2:0c: 11:b0:74:28:2f:83:1f:20:58:2a:29:ab:d9:ea:0b: f5:63:0e:9a:a9:6e:0a:3b:04:0c:2d:15:cb:4e:67: 8a:2c:ad:05:81:8e:2e:39:1f:35:ed:64:53:6b:3e: 4f:83:47:8f:be:c8:14:5b:e9:2f:d5:a9:25:c4:02: d0:00:e9:2e:39:b3:86:40:ac:72:b7:e1:fc:56:d1: b2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:99:0E:47:57:D5:8D:77:45:6D:0F:AE:6B:CA:87:6A:49:30:75:0D X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:22:d9:ea:5d:42:d2:34:dc:0f:40:5c:a7:fb:83:e5:72:d1: a9:82:c7:05:cc:9b:1b:b8:5e:b0:8d:08:fd:d0:42:4d:27:dd: db:9f:e5:6a:a7:62:7c:46:78:bf:08:ce:77:2a:9e:64:96:da: ae:21:45:b0:ad:c4:0a:5a:43:97:21:d1:05:d0:49:35:65:4d: 20:24:d8:98:ad:ac:8e:95:79:e6:64:e8:03:da:8b:6e:b2:92: f7:6a:78:ef:9a:ed:dd:08:0d:0b:14:05:d5:49:6b:fd:73:81: 1f:7d:59:4f:79:b0:60:13:41:e9:f7:5d:35:20:e9:02:40:93: 35:81:01:0a:0f:e2:30:63:6f:b7:f1:c0:4a:92:e5:3b:2d:6e: ed:35:a7:7b:ac:87:fe:40:ce:aa:f2:df:40:f7:49:91:60:87: c6:af:26:7b:91:79:8c:90:5f:00:46:97:82:05:db:46:c3:29: 30:2c:58:b2:2f:10:83:25:c2:b2:eb:21:b1:c8:4c:49:ef:ab: af:e0:74:f0:bf:eb:bc:ac:aa:65:e9:3e:62:4b:d7:1e:48:ea: 92:05:b1:0e:b9:c1:fc:50:1e:5a:0e:06:fa:4b:f6:51:09:90: dc:24:d9:a6:8f:9d:06:1a:42:b7:23:00:0a:5e:a6:ac:37:b1: df:85:6f:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0IxMTAvBgNVBAUTKERGRTRBQ0RDQTBBNjIyNDM2NTRCRDIwOTM2ODIwNTc4 RTkyRDI1MjQwHhcNMjUxMjE5MDQzOTM2WhcNMjUxMjI2MDQzOTM2WjAYMRYwFAYD VQQDDA02OTQ0ZDcwOC0yYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H2tJe9PGF3McDtrfEEqcI0kb08I/aqZeKOJTgDOv5uz4Lz3kfVL6ptZ1ErQ CCMbwI1UzXgQElD0Gf6uwLZCM93ErKGxyFyf/RifRY3MpgmZvlpn1zq+iBqfM4Oi hm0tqVOlCjzObG5xk6SVAVfz6n4h5TtGv1/Qkzw7tSSH+ce2Cv8dkfjFnhqJc8Ys GFKqQFqnElcBAPmDOKnEHJ5zv4TKejawJ8NlANOe6zNxHGjp4gwRsHQoL4MfIFgq KavZ6gv1Yw6aqW4KOwQMLRXLTmeKLK0FgY4uOR817WRTaz5Pg0ePvsgUW+kv1akl xALQAOkuObOGQKxyt+H8VtGyTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyZDkdX 1Y13RW0PrmvKh2pJMHUNMB8GA1UdIwQYMBaAFN/krNygpiJDZUvSCTaCBXjpLSUk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDQi9GNDRDQ0Y3RTg5 RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlrTmxTOUlKTm9JRmVPa3RK U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDQi9GNDRDQ0Y3RTg5RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlr TmxTOUlKTm9JRmVPa3RKU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTItnqXULSNNwPQFyn+4PlctGpgscFzJsbuF6wjQj90EJNJ93bn+Vq p2J8Rni/CM53Kp5kltquIUWwrcQKWkOXIdEF0Ek1ZU0gJNiYrayOlXnmZOgD2otu spL3anjvmu3dCA0LFAXVSWv9c4EffVlPebBgE0Hp9101IOkCQJM1gQEKD+IwY2+3 8cBKkuU7LW7tNad7rIf+QM6q8t9A90mRYIfGryZ7kXmMkF8ARpeCBdtGwykwLFiy LxCDJcKy6yGxyExJ76uv4HTwv+u8rKpl6T5iS9ceSOqSBbEOucH8UB5aDgb6S/ZR CZDcJNmmj50GGkK3IwAKXqasN7HfhW/s -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:45 2025 by rpki-client