This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: MVM9bZBYBQImYFkMSuPOV/3xlTdX32aO2+QHdzIrUUA= Subject key identifier: FC:46:A6:2C:16:80:39:25:C4:68:65:18:BD:D1:FE:00:0D:97:4C:CB Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 34EF Signing time: Thu 18 Dec 2025 14:48:26 +0000 Manifest this update: Thu 18 Dec 2025 14:48:26 +0000 Manifest next update: Thu 25 Dec 2025 14:48:26 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: 7zXFPiIT/kgD31m3Oklgd0wQdEqcWSEe7MCvfL19+So=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 6tys2kBORt2e9LfTgwSygjIdDqVtnmqGXLJS1SjEsWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC, serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Dec 18 14:48:26 2025 GMT Not After : Dec 25 14:48:26 2025 GMT Subject: CN=6944143a-95c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:02:10:5c:36:21:a3:44:98:94:02:3c:20:76: 43:ca:de:57:7e:5b:5a:6b:10:37:bc:29:98:e2:c4: ae:62:a7:57:c3:a5:9c:f3:b5:4b:04:ff:8e:c3:06: 1f:d8:99:1e:11:e6:fe:1b:1d:17:e4:ed:7f:58:c9: ec:21:8a:30:bd:80:5e:ea:b1:53:66:8f:88:73:ff: 84:42:5c:e3:5f:73:ce:a8:fd:70:1d:8a:30:cd:50: d7:d9:d2:28:0b:cf:cc:ca:ec:16:c7:40:8a:7c:f2: 1a:3b:7b:ae:a8:3f:31:1c:4d:4c:13:02:8c:d1:2f: 3e:d9:96:66:d0:c2:4a:3a:71:44:ee:35:9f:6e:0e: b5:6e:24:fa:16:66:cf:67:9a:6b:c7:ff:be:c5:d5: 69:b1:dd:34:06:07:63:32:a7:21:33:17:62:b9:34: e2:8c:0f:7a:fc:e7:be:3e:f0:be:4c:9a:73:2b:06: f7:32:a9:1e:2f:9f:4a:39:76:72:b4:2e:2e:b4:20: 6d:ce:72:58:76:a4:9a:5c:09:92:ba:a5:a6:18:6d: 8b:b8:7f:12:05:ec:30:67:7e:1b:c9:00:e6:19:58: 94:f8:f0:c6:9a:51:4c:c1:3e:be:08:f2:a7:04:c1: 85:93:5f:7e:69:5c:58:c5:0a:10:09:e2:c9:fe:3f: 7e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:46:A6:2C:16:80:39:25:C4:68:65:18:BD:D1:FE:00:0D:97:4C:CB X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:5b:20:df:bc:70:2e:47:7a:3f:09:3c:aa:86:e7:13:8d:4e: e9:20:f8:d1:e0:39:51:31:72:e2:af:3f:97:42:69:98:97:c4: 87:de:65:1e:48:eb:91:b9:38:ce:4d:74:0e:72:06:f2:52:ed: a7:cd:f5:ca:d3:6c:b3:02:26:2a:af:42:a5:34:c0:13:9c:81: f0:7d:34:10:96:b3:95:bb:6f:9b:ec:fc:9f:bf:b3:b1:42:27: fd:93:d5:23:c4:53:c2:dc:2b:17:0c:f4:47:a7:7c:24:08:51: ee:7d:d0:63:da:dd:58:c6:ee:a9:57:d7:6b:f9:2f:cb:bd:e0: 05:e1:6b:eb:8f:3f:3f:56:e7:d7:64:2a:82:59:b7:a1:a2:c0: e2:a7:53:d0:17:b2:e7:4c:cf:58:8b:cb:60:66:cb:18:16:02: 64:f8:dd:81:ac:96:e7:31:37:30:de:59:e5:dd:30:5e:9a:17: 16:dc:2f:88:3c:a9:f5:2f:44:be:3e:29:04:c8:b2:74:ea:1e: 21:bb:23:16:7d:c7:64:80:e5:16:87:ed:8e:c6:2f:c0:b0:48: 32:ab:7e:6f:55:03:d3:4b:f7:3e:ed:20:26:5d:f8:2a:f8:1b: 30:d5:85:84:34:6a:aa:00:5d:0f:2f:0e:27:1a:97:7a:d0:87: 68:eb:b9:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjUxMjE4MTQ0ODI2WhcNMjUxMjI1MTQ0ODI2WjAYMRYwFAYD VQQDDA02OTQ0MTQzYS05NWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQIQXDYho0SYlAI8IHZDyt5XfltaaxA3vCmY4sSuYqdXw6Wc87VLBP+OwwYf 2JkeEeb+Gx0X5O1/WMnsIYowvYBe6rFTZo+Ic/+EQlzjX3POqP1wHYowzVDX2dIo C8/MyuwWx0CKfPIaO3uuqD8xHE1MEwKM0S8+2ZZm0MJKOnFE7jWfbg61biT6FmbP Z5prx/++xdVpsd00BgdjMqchMxdiuTTijA96/Oe+PvC+TJpzKwb3MqkeL59KOXZy tC4utCBtznJYdqSaXAmSuqWmGG2LuH8SBewwZ34byQDmGViU+PDGmlFMwT6+CPKn BMGFk19+aVxYxQoQCeLJ/j9+mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxGpiwW gDklxGhlGL3R/gANl0zLMB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJWyDfvHAuR3o/CTyqhucTjU7pIPjR4DlRMXLirz+XQmmYl8SH3mUe SOuRuTjOTXQOcgbyUu2nzfXK02yzAiYqr0KlNMATnIHwfTQQlrOVu2+b7Pyfv7Ox Qif9k9UjxFPC3CsXDPRHp3wkCFHufdBj2t1Yxu6pV9dr+S/LveAF4Wvrjz8/VufX ZCqCWbehosDip1PQF7LnTM9Yi8tgZssYFgJk+N2BrJbnMTcw3lnl3TBemhcW3C+I PKn1L0S+PikEyLJ06h4huyMWfcdkgOUWh+2Oxi/AsEgyq35vVQPTS/c+7SAmXfgq +Bsw1YWENGqqAF0PLw4nGpd60Ido67l9 -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:54 2025 by rpki-client