This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft File: 3oPHbNtE9PeURxkgK-OvqIPTSU0.mft (raw, json) Hash identifier: OWXlp7jBJgiv8jmSLCVKRIQdprZmOMHj72wXzQ1u4mA= Subject key identifier: BF:3C:36:DF:AC:47:31:4F:EE:A1:0B:0D:02:CA:42:27:9B:F9:E7:7A Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft Manifest number: 03 Signing time: Fri 19 Dec 2025 07:03:43 +0000 Manifest this update: Fri 19 Dec 2025 07:03:43 +0000 Manifest next update: Fri 26 Dec 2025 07:03:43 +0000 Files and hashes: 1: 3oPHbNtE9PeURxkgK-OvqIPTSU0.crl (hash: tkZgk2gINPg2rD5vDKf40NbceG+3KwVv/xkybZxanTk=) 2: E9CC4952DBB711F09A595FAD4E641951.roa (hash: N8C+RbGZ4TxSn2UCb5i7gkeLR+IHJ44RuRig3WO+cbY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Dec 19 07:03:43 2025 GMT Not After : Dec 26 07:03:43 2025 GMT Subject: CN=6944f8cf-896a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:73:eb:17:29:d4:6d:b3:86:5f:a2:e7:44: 17:4e:f6:30:10:f6:0c:93:9a:ea:27:49:d2:25:68: 9f:27:c5:e2:e6:d6:03:d8:df:55:65:47:5a:dc:4d: e8:72:20:b5:c0:fb:93:40:ca:e1:57:f9:69:9c:61: 22:69:49:f0:14:9d:fa:65:eb:e2:87:a7:c7:40:76: 6e:f2:10:7e:d5:9b:d6:54:ee:dd:b8:a6:51:c7:ac: 79:a8:83:b4:2a:ab:22:70:cb:2e:25:00:b8:6f:08: 22:b1:04:fd:a3:4a:d9:c9:da:4c:3a:0b:34:f8:c3: c8:ec:51:46:3a:90:52:51:21:72:f8:47:e7:9f:ae: 85:0d:9b:82:b1:7e:35:30:1b:5c:4c:20:36:04:d6: 1f:9a:fa:c0:6a:b5:ba:ae:64:42:8d:a9:e6:2e:8a: 3b:6e:50:4b:35:00:08:c5:29:50:df:8a:e4:5a:02: a3:c1:10:5c:2c:48:cb:65:54:ab:ac:1b:ed:49:45: 36:e2:88:14:6a:a3:a3:46:00:e4:44:d0:de:4a:bf: 5d:f1:fd:65:76:0f:6e:88:a2:3b:7a:06:91:50:7c: 85:6d:12:c0:b3:b5:d5:0b:8e:60:78:33:c0:97:c7: 02:e3:ea:eb:bd:0e:f4:81:6e:dd:79:ef:fe:32:78: 43:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:3C:36:DF:AC:47:31:4F:EE:A1:0B:0D:02:CA:42:27:9B:F9:E7:7A X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:1b:77:ba:88:07:90:b1:13:d4:55:5b:03:37:b4:24:f4:ec: 88:d4:a0:9e:c9:60:bb:27:0b:cc:46:17:6d:b9:8b:c2:42:2a: 81:18:9d:23:87:6c:e2:da:3f:06:a1:ce:3b:d7:37:36:13:69: 85:16:5f:bc:7a:8a:72:9c:90:07:a4:80:0d:38:56:2f:7e:bf: 4c:37:0b:f5:e4:1e:b5:81:68:42:29:7f:ef:7e:39:5f:7f:e4: 7d:44:3b:f1:18:de:d2:20:83:26:09:cf:f9:2b:34:45:5d:d6: ea:bb:8c:02:f2:f4:1a:d0:32:39:a4:eb:15:22:12:6a:97:1f: 34:00:69:34:d3:44:e8:b0:8f:b3:0a:82:89:9a:ed:e3:28:6b: 56:2b:25:f3:f4:ce:7c:20:3a:97:ab:be:7c:2f:bc:f4:0c:34: 26:4f:b9:d8:e1:83:d3:b3:52:8d:d5:2b:8a:a4:77:a3:8e:3b: 23:9e:42:42:9f:1c:58:dc:c5:c0:00:a6:6b:0f:59:9e:bc:28: c9:6a:fc:b5:37:89:3b:52:f3:20:f0:d6:e8:22:07:d7:a2:0e: 77:58:0f:b4:20:aa:8d:88:82:d5:c4:18:71:06:53:44:25:0d: 1b:7d:16:57:bc:30:9f:24:a0:e2:c5:89:a1:a6:66:b7:88:39: 10:7f:0b:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNTEyMTkwNzAzNDNaFw0yNTEyMjYwNzAzNDNaMBgxFjAUBgNV BAMMDTY5NDRmOGNmLTg5NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtUnPrFynUbbOGX6LnRBdO9jAQ9gyTmuonSdIlaJ8nxeLm1gPY31VlR1rcTehy ILXA+5NAyuFX+WmcYSJpSfAUnfpl6+KHp8dAdm7yEH7Vm9ZU7t24plHHrHmog7Qq qyJwyy4lALhvCCKxBP2jStnJ2kw6CzT4w8jsUUY6kFJRIXL4R+efroUNm4KxfjUw G1xMIDYE1h+a+sBqtbquZEKNqeYuijtuUEs1AAjFKVDfiuRaAqPBEFwsSMtlVKus G+1JRTbiiBRqo6NGAORE0N5Kv13x/WV2D26Iojt6BpFQfIVtEsCztdULjmB4M8CX xwLj6uu9DvSBbt157/4yeEPBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvzw236xH MU/uoQsNAspCJ5v553owHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTI4LzQ3NjA2RUI0REJCNzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBl VVJ4a2dLLU92cUlQVFNVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEAbd7qIB5CxE9RVWwM3tCT07IjUoJ7JYLsnC8xGF225i8JCKoEYnSOH bOLaPwahzjvXNzYTaYUWX7x6inKckAekgA04Vi9+v0w3C/XkHrWBaEIpf+9+OV9/ 5H1EO/EY3tIggyYJz/krNEVd1uq7jALy9BrQMjmk6xUiEmqXHzQAaTTTROiwj7MK goma7eMoa1YrJfP0znwgOpervnwvvPQMNCZPudjhg9OzUo3VK4qkd6OOOyOeQkKf HFjcxcAApmsPWZ68KMlq/LU3iTtS8yDw1ugiB9eiDndYD7Qgqo2IgtXEGHEGU0Ql DRt9Fle8MJ8koOLFiaGmZreIORB/C9g= -----END CERTIFICATE-----Generated at Fri Dec 19 18:59:03 2025 by rpki-client