This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: RvxRBC6I2NW0mRH48rWD2dj8mFg54f0J5Zo7BG9zEeg= Subject key identifier: 9D:85:D3:8D:3E:54:69:DA:A6:DC:84:CF:3B:34:26:F1:AC:1D:10:1D Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 025E Signing time: Fri 19 Dec 2025 00:55:11 +0000 Manifest this update: Fri 19 Dec 2025 00:55:10 +0000 Manifest next update: Fri 26 Dec 2025 00:55:10 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: uWrtWmyCLgvDeymkFP2lPI0+EQK1M8aALA4bdnlmSWo=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: trPFy8cNIA9S7clvvpkdsBeW04ltNQk0Oe0zQdGvyFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Dec 19 00:55:10 2025 GMT Not After : Dec 26 00:55:10 2025 GMT Subject: CN=6944a26f-d8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:ef:17:b5:43:54:05:b2:78:3c:3a:35:8f: 44:d8:4a:75:db:07:1f:79:22:04:49:c0:05:06:d6: 2c:d6:c9:f3:d0:d9:1b:f0:f2:0d:4f:77:7b:53:48: da:ac:5c:ef:b7:45:67:c4:eb:ef:ea:7a:1f:3b:88: 13:44:48:56:08:06:b1:68:88:5c:ab:d1:98:79:e6: 5a:c8:f6:88:a4:a7:14:89:b7:ee:69:ef:eb:ab:83: cb:22:f2:79:99:db:15:69:89:a9:5f:07:dc:d4:99: db:f3:06:c4:c0:da:39:af:06:46:b1:ae:19:85:10: b0:ba:8c:72:f7:1d:45:d4:06:c8:17:af:d4:b2:b1: 41:33:3a:ea:20:8c:f2:bd:de:ed:bb:1e:e4:ce:50: bd:b4:90:5f:aa:19:25:e8:a4:98:48:be:01:8b:4f: 32:f1:dc:95:7e:96:d2:d9:36:09:01:71:e9:fc:e5: e5:1c:8a:fd:73:e6:3a:c5:13:35:5e:eb:cb:a4:c9: a4:49:38:d5:31:f8:5d:57:6c:11:d6:c6:e5:f6:9d: 9f:3d:01:1e:29:fb:2b:17:18:85:dc:c3:7e:46:80: c1:be:9e:a9:e0:44:f3:ff:a4:43:17:96:d0:1a:62: 7d:55:4b:e6:bf:4e:3b:61:f0:c8:ce:db:a8:66:c3: 39:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:85:D3:8D:3E:54:69:DA:A6:DC:84:CF:3B:34:26:F1:AC:1D:10:1D X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d8:60:39:b6:d5:ca:02:96:a6:f8:c1:27:c0:f7:bf:99:c0: 17:98:ec:b7:80:05:e7:1b:bd:65:35:fd:35:47:bb:49:b7:87: a3:f8:02:b3:24:02:61:b7:68:14:39:c1:4c:56:6d:fb:69:6c: 87:15:9d:67:89:7f:2f:a9:68:aa:79:f0:00:de:89:49:18:95: db:d6:f4:30:0a:90:4f:65:d5:ad:89:76:cc:da:1d:8d:78:d9: a5:e5:58:c5:56:27:5f:a2:7a:da:98:31:b8:30:85:99:07:b8: 1f:f7:d2:70:44:41:05:b3:53:dc:eb:28:d1:66:54:f4:4c:ab: 39:95:30:0f:7e:c1:d9:97:ba:f4:03:84:42:90:31:5f:6b:a6: 50:aa:0c:2b:65:bc:a0:8b:2a:33:41:8b:b6:70:f0:96:27:20: ad:c2:d7:df:6c:ad:72:d3:28:2d:0b:be:8f:01:71:85:e3:6e: fb:7f:cb:ff:47:4f:4e:62:c7:11:73:11:f8:ee:97:2c:de:94: e4:5e:93:43:9e:94:29:66:3e:b7:48:e6:13:ba:36:46:29:0d: db:22:56:7f:ab:41:64:d6:2c:00:e3:c4:a7:f4:16:de:cc:be: cc:da:0d:7c:74:23:90:98:07:9d:42:72:92:d3:fb:53:e0:75: 04:2d:44:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUxMjE5MDA1NTEwWhcNMjUxMjI2MDA1NTEwWjAYMRYwFAYD VQQDDA02OTQ0YTI2Zi1kOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZfvF7VDVAWyeDw6NY9E2Ep12wcfeSIEScAFBtYs1snz0Nkb8PINT3d7U0ja rFzvt0VnxOvv6nofO4gTREhWCAaxaIhcq9GYeeZayPaIpKcUibfuae/rq4PLIvJ5 mdsVaYmpXwfc1Jnb8wbEwNo5rwZGsa4ZhRCwuoxy9x1F1AbIF6/UsrFBMzrqIIzy vd7tux7kzlC9tJBfqhkl6KSYSL4Bi08y8dyVfpbS2TYJAXHp/OXlHIr9c+Y6xRM1 XuvLpMmkSTjVMfhdV2wR1sbl9p2fPQEeKfsrFxiF3MN+RoDBvp6p4ETz/6RDF5bQ GmJ9VUvmv047YfDIztuoZsM5pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2F040+ VGnaptyEzzs0JvGsHRAdMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn2GA5ttXKApam+MEnwPe/mcAXmOy3gAXnG71lNf01R7tJt4ej+AKz JAJht2gUOcFMVm37aWyHFZ1niX8vqWiqefAA3olJGJXb1vQwCpBPZdWtiXbM2h2N eNml5VjFVidfonramDG4MIWZB7gf99JwREEFs1Pc6yjRZlT0TKs5lTAPfsHZl7r0 A4RCkDFfa6ZQqgwrZbygiyozQYu2cPCWJyCtwtffbK1y0ygtC76PAXGF4277f8v/ R09OYscRcxH47pcs3pTkXpNDnpQpZj63SOYTujZGKQ3bIlZ/q0Fk1iwA48Sn9Bbe zL7M2g18dCOQmAedQnKS0/tT4HUELUQP -----END CERTIFICATE-----Generated at Fri Dec 19 19:01:47 2025 by rpki-client