This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: KB1lvrODaD6abIFGPLKABETmie3gHWgWTTdoo3N1KU4= Subject key identifier: 07:54:8C:1D:0F:8A:B3:B8:5A:2C:49:5C:FB:84:49:92:BF:3F:9F:DC Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 8D Signing time: Mon 29 Dec 2025 05:39:52 +0000 Manifest this update: Mon 29 Dec 2025 05:39:52 +0000 Manifest next update: Mon 05 Jan 2026 05:39:52 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: W8DU2k0sA647Kwjyr6NMAAd6Xfh72JNZfcayLmSuqAg=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: XP45MNkBJDvMP4szABAjNLFk+96NCHIDa9eitTmeLLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Dec 29 05:39:52 2025 GMT Not After : Jan 5 05:39:52 2026 GMT Subject: CN=69521428-36b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8c:fc:45:44:da:69:6c:ad:77:4c:c0:bf:90: d8:a8:fb:40:80:7f:0d:8b:02:b2:bb:6c:6b:90:3e: 3d:90:86:97:99:ae:a9:9e:fa:8e:7a:5a:4f:28:9b: 7d:d1:a9:a2:6a:48:e8:be:9a:bb:7f:72:c2:03:a4: 74:3e:6c:3a:27:b2:0c:a9:c3:cd:b4:0c:2e:02:d3: 30:c5:77:33:1b:7f:02:19:82:21:b6:a9:fe:43:9b: bc:b1:c4:1b:ba:2e:1f:a3:4f:58:25:98:a4:40:e8: 63:9a:5a:0d:92:93:08:56:a6:fa:ee:ab:95:83:02: 4a:84:c4:04:1e:b3:88:27:4e:dc:34:20:1c:5e:93: 27:ca:f5:c6:cf:8c:f3:24:79:c0:22:00:30:8d:b3: 72:28:4c:fa:3b:f0:62:a2:72:99:ec:e5:bf:30:cf: 91:ac:d5:55:79:de:6a:95:f2:cb:f5:2b:6a:8f:45: 15:3d:09:d4:a6:ac:81:9d:7e:9d:cb:c2:48:c3:ee: 29:b2:3b:23:b4:7f:11:cd:a9:f6:45:4a:15:c1:17: d8:b3:46:b3:61:e3:85:89:18:35:22:8e:90:2c:e7: d5:f5:c8:52:b6:19:67:18:43:e9:0f:a9:4c:61:7f: 96:c1:51:6c:32:db:f4:b0:53:db:16:07:e5:26:31: 34:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:54:8C:1D:0F:8A:B3:B8:5A:2C:49:5C:FB:84:49:92:BF:3F:9F:DC X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8d:bb:c8:a3:76:f0:a2:d8:17:3a:3c:a0:78:d2:03:cb:45: 89:07:c7:28:a2:be:67:f6:42:d6:3c:c9:e7:b6:18:47:67:0a: 13:7e:9e:98:fa:fa:27:da:05:2e:be:42:22:38:3d:97:c8:45: a9:f0:d8:83:89:28:82:8f:13:73:48:47:28:22:7d:99:b7:63: 3b:da:0f:a2:43:ef:a5:e5:b2:e7:dc:61:c1:43:bf:62:3d:27: 40:93:08:b6:b1:c5:e9:b1:82:71:94:f1:f3:e3:5d:ae:51:ca: 16:36:7c:85:8d:e1:5a:9a:4d:d8:32:c9:2b:fb:55:fe:84:ec: 89:ef:b1:c7:41:39:e7:51:dd:99:8f:d7:81:58:5d:b4:5d:97: 8e:75:0b:3e:01:04:25:ae:98:18:66:bd:30:96:9f:e8:db:25: b5:56:53:a5:6c:90:f1:b2:ee:86:b8:26:1d:ef:e9:60:a4:8a: 27:ca:1e:4c:00:d9:b8:70:d2:6e:65:09:f7:a5:eb:44:67:ea: 77:ce:91:89:f7:40:ad:0b:37:aa:67:27:81:72:18:7c:9a:93: 34:dc:79:2e:48:b4:86:a6:16:d8:2c:c3:da:ee:17:21:62:98: 5c:da:06:d7:00:cd:55:b0:dc:6c:b4:e5:67:41:a2:d3:59:89: 85:36:15:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjUxMjI5MDUzOTUyWhcNMjYwMTA1MDUzOTUyWjAYMRYwFAYD VQQDDA02OTUyMTQyOC0zNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04z8RUTaaWytd0zAv5DYqPtAgH8NiwKyu2xrkD49kIaXma6pnvqOelpPKJt9 0amiakjovpq7f3LCA6R0Pmw6J7IMqcPNtAwuAtMwxXczG38CGYIhtqn+Q5u8scQb ui4fo09YJZikQOhjmloNkpMIVqb67quVgwJKhMQEHrOIJ07cNCAcXpMnyvXGz4zz JHnAIgAwjbNyKEz6O/BionKZ7OW/MM+RrNVVed5qlfLL9Stqj0UVPQnUpqyBnX6d y8JIw+4psjsjtH8Rzan2RUoVwRfYs0azYeOFiRg1Io6QLOfV9chSthlnGEPpD6lM YX+WwVFsMtv0sFPbFgflJjE03wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdUjB0P irO4WixJXPuESZK/P5/cMB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZjbvIo3bwotgXOjygeNIDy0WJB8coor5n9kLWPMnnthhHZwoTfp6Y +von2gUuvkIiOD2XyEWp8NiDiSiCjxNzSEcoIn2Zt2M72g+iQ++l5bLn3GHBQ79i PSdAkwi2scXpsYJxlPHz412uUcoWNnyFjeFamk3YMskr+1X+hOyJ77HHQTnnUd2Z j9eBWF20XZeOdQs+AQQlrpgYZr0wlp/o2yW1VlOlbJDxsu6GuCYd7+lgpIonyh5M ANm4cNJuZQn3petEZ+p3zpGJ90CtCzeqZyeBchh8mpM03HkuSLSGphbYLMPa7hch Yphc2gbXAM1VsNxstOVnQaLTWYmFNhXX -----END CERTIFICATE-----Generated at Wed Dec 31 00:12:16 2025 by rpki-client