This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: 2yTHZQFRtvBjMTis7E1KBCK0IJmsnkJ4Zt7tQC48TMk= Subject key identifier: 3D:77:DC:58:BB:D4:60:03:B3:07:3C:15:E8:8A:56:68:82:68:F6:1C Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: 019E Signing time: Fri 19 Dec 2025 02:31:51 +0000 Manifest this update: Fri 19 Dec 2025 02:31:51 +0000 Manifest next update: Fri 26 Dec 2025 02:31:51 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: 4/lPCC6qZ0bMjcGeDmHY5KWtRyxfXl25j+cWO6RqZ7I=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: aEwpt3FN/b3agcSqsy028NBcRbgaV2C2DNdzwhDgaUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B, serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Dec 19 02:31:51 2025 GMT Not After : Dec 26 02:31:51 2025 GMT Subject: CN=6944b917-18e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:57:28:8a:ef:74:6d:2e:ba:cc:61:1d:bc:f3: b4:a9:46:13:54:af:35:52:df:e0:24:28:5d:7e:ab: 87:4d:26:e2:f6:fc:d0:ad:ab:18:7f:64:b6:32:61: f4:b5:3e:ea:8f:46:d4:a4:d2:fe:d5:4f:88:a5:91: af:b2:5a:65:dc:7b:2f:81:af:6c:5f:0b:72:d2:3e: b8:b5:5a:1d:0a:94:56:06:4a:92:d5:32:32:9c:67: ed:89:c9:8f:3d:ff:68:2d:f1:8f:11:4a:5e:17:39: 3e:30:d2:05:30:62:a3:61:45:24:64:fb:50:90:2a: fa:14:56:bc:bb:2d:b1:66:9b:b6:80:f1:1d:77:31: 39:3f:f7:bf:c5:2d:32:bd:27:32:47:11:7a:f7:e4: 98:01:8f:78:89:c8:ca:97:62:66:68:fc:8a:90:ba: 76:e3:1a:73:d5:64:15:ec:ef:95:50:11:8d:c9:f4: d6:0c:5b:f3:57:06:28:3f:2c:dc:d0:cd:37:58:d9: a7:a3:05:d5:e4:ab:e0:f1:f4:c5:c9:2b:db:e7:e3: 90:0b:57:21:19:20:8c:da:80:7d:a1:05:2d:b8:6f: 7c:59:b1:74:a2:a0:dc:11:2f:29:7e:e9:4e:83:11: 0e:fb:db:04:c4:7a:4f:eb:db:a0:2e:d6:df:af:c4: 85:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:77:DC:58:BB:D4:60:03:B3:07:3C:15:E8:8A:56:68:82:68:F6:1C X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c0:c0:15:c6:ce:b9:d3:15:57:ed:5c:02:b7:29:e5:50:14: 88:76:bd:74:2a:3e:f1:48:9b:28:f4:c3:a3:1a:d0:0e:ab:cd: 2a:b9:4c:50:e7:9d:16:58:e0:ca:f5:15:e8:0e:ed:6c:e5:3b: 5c:44:41:39:35:01:aa:a0:03:9d:44:01:90:5d:61:a4:6e:0d: 47:f6:59:2a:cb:bb:00:2a:ba:bf:2f:a1:8a:87:db:5c:0e:ef: 4f:b1:4a:93:67:8d:f1:39:8f:f9:49:a1:54:46:3c:e2:2e:99: a2:f8:d0:fa:47:2b:d2:09:8f:4d:54:e1:10:9d:18:27:8d:66: ce:e2:63:bb:79:2b:bc:ba:57:03:bd:62:9c:91:09:9f:2b:b0: b7:5c:f1:4f:2e:64:08:7a:08:3e:85:61:16:e7:7f:1b:93:0e: e4:02:2a:7a:9c:42:19:61:7c:ca:2d:48:a4:49:0b:f3:8c:62: 1d:4e:dc:be:c4:d6:a2:8a:94:e3:06:9c:1d:fa:42:1c:13:d7: 47:23:70:75:e2:6e:45:7a:52:f4:ec:f8:ad:cd:70:a7:f0:d1: 69:ea:dd:fa:80:5e:6b:11:c2:7a:9a:1f:02:91:8a:9b:25:c9: d4:01:4e:12:4e:10:ca:d8:2b:36:6e:4c:9d:e7:1d:44:2b:73: 64:44:07:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjUxMjE5MDIzMTUxWhcNMjUxMjI2MDIzMTUxWjAYMRYwFAYD VQQDDA02OTQ0YjkxNy0xOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiVcoiu90bS66zGEdvPO0qUYTVK81Ut/gJChdfquHTSbi9vzQrasYf2S2MmH0 tT7qj0bUpNL+1U+IpZGvslpl3Hsvga9sXwty0j64tVodCpRWBkqS1TIynGfticmP Pf9oLfGPEUpeFzk+MNIFMGKjYUUkZPtQkCr6FFa8uy2xZpu2gPEddzE5P/e/xS0y vScyRxF69+SYAY94icjKl2JmaPyKkLp24xpz1WQV7O+VUBGNyfTWDFvzVwYoPyzc 0M03WNmnowXV5Kvg8fTFySvb5+OQC1chGSCM2oB9oQUtuG98WbF0oqDcES8pfulO gxEO+9sExHpP69ugLtbfr8SFaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD133Fi7 1GADswc8FeiKVmiCaPYcMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANwMAVxs650xVX7VwCtynlUBSIdr10Kj7xSJso9MOjGtAOq80quUxQ 550WWODK9RXoDu1s5TtcREE5NQGqoAOdRAGQXWGkbg1H9lkqy7sAKrq/L6GKh9tc Du9PsUqTZ43xOY/5SaFURjziLpmi+ND6RyvSCY9NVOEQnRgnjWbO4mO7eSu8ulcD vWKckQmfK7C3XPFPLmQIegg+hWEW538bkw7kAip6nEIZYXzKLUikSQvzjGIdTty+ xNaiipTjBpwd+kIcE9dHI3B14m5FelL07PitzXCn8NFp6t36gF5rEcJ6mh8CkYqb JcnUAU4SThDK2Cs2bkyd5x1EK3NkRAdo -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:08 2025 by rpki-client