This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: EI++cv+j/5W+XCh9l1gOEeY3jtGQ/fUp9HoNkFZXZkI= Subject key identifier: 01:CF:AB:95:3C:7D:EA:22:0A:DF:A8:74:EF:3F:6E:DC:15:D2:DE:6E Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0CE3 Signing time: Thu 18 Dec 2025 18:01:06 +0000 Manifest this update: Thu 18 Dec 2025 18:01:06 +0000 Manifest next update: Thu 25 Dec 2025 18:01:06 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: WMBfPQRaYYgwTcv2pKdt/n8G9byEMinoByKJEF4en40=) 2: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: rZ4CQjG/7W0/b4/xy8McSOxNbiTi926f91iRcbtKHeo=) 3: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /m7E0Dw/anD8qYNxCWedW44uleLaVBkf0eBmZ6XFvMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Dec 18 18:01:06 2025 GMT Not After : Dec 25 18:01:06 2025 GMT Subject: CN=69444162-186a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f7:79:5a:6a:19:c0:15:3c:d5:1a:03:b6:33: fa:2a:d0:7e:68:83:32:34:ec:b4:bd:af:2d:a9:bf: 1e:fb:85:cc:29:8f:3b:80:df:3f:08:26:35:a6:cc: c6:f5:e6:3e:26:18:7f:3a:d3:9b:00:c7:25:0d:16: aa:e1:2a:46:7a:00:fe:a2:45:9d:52:aa:05:14:93: f6:36:a0:da:e7:28:38:d2:09:cf:6b:c3:31:8e:79: 61:17:46:81:93:41:34:86:c8:a7:67:f8:41:72:c7: 71:11:ee:90:7d:59:b1:4a:fd:7e:d3:68:42:c8:9b: f4:68:5e:68:8a:b2:ba:4a:08:25:0c:b0:a3:81:16: f6:d9:d9:a7:d5:63:d5:2a:59:74:fc:3f:0f:7a:f1: 25:6b:38:8b:41:2c:86:3c:78:3c:a1:a0:b8:71:fc: 37:12:7d:3f:17:b3:34:29:2f:ff:c4:4e:4b:5c:5e: 83:70:39:ce:6a:01:25:ea:9a:7d:33:4b:fa:c0:d6: 57:6a:7b:77:81:bb:03:d0:dd:4d:6b:cf:b8:80:16: 91:6e:6d:af:1b:6d:fc:ef:8d:23:b7:6b:1d:34:bc: 4b:05:7c:cb:69:7a:e7:f4:05:1c:01:c3:6d:61:07: 97:3a:24:a5:c0:6c:75:aa:78:33:7d:38:b7:5f:ed: 44:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CF:AB:95:3C:7D:EA:22:0A:DF:A8:74:EF:3F:6E:DC:15:D2:DE:6E X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:24:69:a8:12:a3:c0:e3:39:6c:fc:91:45:37:4c:d5:48:51: 1f:eb:2c:82:ce:cd:2a:13:fd:e2:7b:84:1f:03:c1:ae:0c:15: ed:80:b8:7d:c8:68:ce:ec:e6:3c:0c:e8:4a:52:fe:4e:96:1f: 51:73:19:3b:ea:c3:8b:32:1e:fc:b6:7a:5c:6a:17:5c:b9:c8: 2d:cc:9e:cd:9a:c9:45:de:e0:7b:12:ab:5b:01:d4:95:f8:78: 54:36:5f:6c:5c:12:ee:bb:2e:5e:6d:27:59:4a:bd:0c:e9:51: 5d:f1:b2:be:9c:8b:84:79:73:73:a3:53:f9:26:63:61:16:ac: 6d:ff:cb:9d:8b:ce:45:8d:60:ef:55:3f:19:9c:8c:6f:45:dc: fa:07:42:a2:8b:be:00:8d:6d:bc:cc:eb:78:31:69:c8:4d:af: 69:01:d7:ff:b6:0b:9a:2b:14:26:03:50:9f:54:14:b0:21:35: f1:df:98:16:bc:b0:b2:c5:24:42:2d:00:8f:22:b1:5e:d7:52: d5:fb:68:79:48:df:23:72:79:92:55:da:5d:5a:da:ea:b0:fe: 9b:80:cd:b6:ef:be:97:80:be:27:8a:41:01:38:87:e4:28:a7: a4:c9:ab:6f:bf:f5:64:03:09:1b:f7:a1:40:62:fe:75:28:bc: 1a:50:1f:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjUxMjE4MTgwMTA2WhcNMjUxMjI1MTgwMTA2WjAYMRYwFAYD VQQDDA02OTQ0NDE2Mi0xODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPd5WmoZwBU81RoDtjP6KtB+aIMyNOy0va8tqb8e+4XMKY87gN8/CCY1pszG 9eY+Jhh/OtObAMclDRaq4SpGegD+okWdUqoFFJP2NqDa5yg40gnPa8MxjnlhF0aB k0E0hsinZ/hBcsdxEe6QfVmxSv1+02hCyJv0aF5oirK6SgglDLCjgRb22dmn1WPV Kll0/D8PevElaziLQSyGPHg8oaC4cfw3En0/F7M0KS//xE5LXF6DcDnOagEl6pp9 M0v6wNZXant3gbsD0N1Na8+4gBaRbm2vG238740jt2sdNLxLBXzLaXrn9AUcAcNt YQeXOiSlwGx1qngzfTi3X+1EswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHPq5U8 feoiCt+odO8/btwV0t5uMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGJGmoEqPA4zls/JFFN0zVSFEf6yyCzs0qE/3ie4QfA8GuDBXtgLh9 yGjO7OY8DOhKUv5Olh9Rcxk76sOLMh78tnpcahdcucgtzJ7NmslF3uB7EqtbAdSV +HhUNl9sXBLuuy5ebSdZSr0M6VFd8bK+nIuEeXNzo1P5JmNhFqxt/8udi85FjWDv VT8ZnIxvRdz6B0Kii74AjW28zOt4MWnITa9pAdf/tguaKxQmA1CfVBSwITXx35gW vLCyxSRCLQCPIrFe11LV+2h5SN8jcnmSVdpdWtrqsP6bgM22776XgL4nikEBOIfk KKekyatvv/VkAwkb96FAYv51KLwaUB+9 -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:47 2025 by rpki-client