This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: in4rfFDCxySMiC85l2+Ij/I4zsr0sIyj4cXsyElUdn4= Subject key identifier: FA:88:27:42:DE:8F:32:85:C2:49:92:A7:69:F3:AC:BA:25:3A:BB:AB Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: 0149 Signing time: Fri 19 Dec 2025 03:26:34 +0000 Manifest this update: Fri 19 Dec 2025 03:26:34 +0000 Manifest next update: Fri 26 Dec 2025 03:26:34 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: A8EzIUk+ih1NFdkQdqO528u4dyBzUlOo14sdwtgETuM=) 2: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: qn4Fpxt7PWA/6hWMWYVeaGljIqcp672ouf6S4bONl/4=) 3: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: Kq9z18t39rAjNqTDFxx/COpb6FxmGJ+tPX1EqE4L/i0=) 4: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: YlzrLadmLZj8tcRLHED6W+B0nbQveqQqdBBbNI84e3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Dec 19 03:26:34 2025 GMT Not After : Dec 26 03:26:34 2025 GMT Subject: CN=6944c5ea-f548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c3:1d:e3:b7:21:2c:1f:81:27:f2:b6:4d:97: 7c:15:95:8e:67:98:6f:a0:d8:1d:d9:e6:62:10:90: 74:ac:fa:4a:a7:bb:a9:a2:5e:cb:11:b8:2a:81:a0: 2b:d3:cd:b1:00:3e:4c:60:87:d0:6f:b2:d8:f8:73: 0a:43:35:57:6b:04:f9:e3:03:ae:cf:91:04:a7:b5: cd:8d:42:3f:de:9d:e7:5c:ae:b2:68:fc:ea:70:a1: 30:b7:b6:c6:fb:2e:5f:03:ac:89:c3:5a:01:40:62: 14:ca:8a:7f:72:58:51:99:b0:ff:04:02:7e:2e:de: ab:1e:3d:6a:19:d1:ca:e3:9b:12:9d:2c:2b:04:08: d7:11:d4:e8:f8:79:4b:4a:e6:f8:30:16:79:40:69: d1:9c:02:89:c0:70:cf:79:1f:72:39:47:d4:b4:a9: c9:21:8a:7d:cf:05:f4:82:5a:99:5b:70:a0:0d:6c: a8:67:48:4a:8d:93:6b:a7:10:de:70:8d:3a:1c:b6: 52:2c:20:dc:8a:86:45:ef:2f:93:fe:73:2b:7b:05: 01:02:8d:ae:96:3f:12:d1:50:40:3f:03:2d:fe:0b: e6:92:9a:62:50:cc:c2:eb:dc:93:57:d0:e9:ca:be: 9e:99:b3:bf:35:39:fb:c7:65:68:5f:77:37:68:6c: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:88:27:42:DE:8F:32:85:C2:49:92:A7:69:F3:AC:BA:25:3A:BB:AB X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2c:04:12:ea:8e:c6:bb:ce:0c:b8:de:2d:8e:8f:bd:f9:81: f0:91:fe:b7:d6:0c:1e:74:3b:a6:f0:b2:91:d3:75:88:68:eb: cf:5e:86:dd:d8:32:f8:b7:80:88:5c:6a:db:2c:6d:7b:4e:54: 38:23:e5:62:e2:ca:31:b1:9f:9d:b6:a6:84:6d:02:49:0b:5c: c1:84:84:9d:76:51:37:eb:ba:e5:f3:c3:41:e6:b7:c4:78:22: f7:cc:5b:6c:76:59:fb:f2:56:cb:dd:67:e9:86:65:4e:d7:8a: f0:e1:b1:47:89:5f:9a:fb:f9:52:c3:d6:67:fc:57:15:49:88: a1:72:1e:9c:a7:aa:37:0f:14:50:79:7b:7d:78:ab:95:ec:8b: 60:00:2a:9c:dd:a0:aa:ca:0c:48:0d:36:f4:cb:77:bd:3d:75: 2c:9a:e0:97:81:ab:0c:e5:98:83:9a:73:77:84:5b:9a:92:92: ca:95:82:0f:c0:9c:28:61:d0:ea:b1:5c:3f:17:b5:1e:37:82: f9:56:9b:96:3d:e6:e5:71:65:cc:f7:04:ca:c9:56:3b:1b:6c: f3:7a:29:4c:7a:08:dc:2f:b8:fc:61:51:82:c3:cd:3b:e8:64: b6:ad:be:e0:cf:3f:bb:e9:78:a2:5f:dd:15:6e:3e:67:87:92: fa:1a:39:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjUxMjE5MDMyNjM0WhcNMjUxMjI2MDMyNjM0WjAYMRYwFAYD VQQDDA02OTQ0YzVlYS1mNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcMd47chLB+BJ/K2TZd8FZWOZ5hvoNgd2eZiEJB0rPpKp7upol7LEbgqgaAr 082xAD5MYIfQb7LY+HMKQzVXawT54wOuz5EEp7XNjUI/3p3nXK6yaPzqcKEwt7bG +y5fA6yJw1oBQGIUyop/clhRmbD/BAJ+Lt6rHj1qGdHK45sSnSwrBAjXEdTo+HlL Sub4MBZ5QGnRnAKJwHDPeR9yOUfUtKnJIYp9zwX0glqZW3CgDWyoZ0hKjZNrpxDe cI06HLZSLCDcioZF7y+T/nMrewUBAo2ulj8S0VBAPwMt/gvmkppiUMzC69yTV9Dp yr6embO/NTn7x2VoX3c3aGzplwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqIJ0Le jzKFwkmSp2nzrLolOrurMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbLAQS6o7Gu84MuN4tjo+9+YHwkf631gwedDum8LKR03WIaOvPXobd 2DL4t4CIXGrbLG17TlQ4I+Vi4soxsZ+dtqaEbQJJC1zBhISddlE367rl88NB5rfE eCL3zFtsdln78lbL3WfphmVO14rw4bFHiV+a+/lSw9Zn/FcVSYihch6cp6o3DxRQ eXt9eKuV7ItgACqc3aCqygxIDTb0y3e9PXUsmuCXgasM5ZiDmnN3hFuakpLKlYIP wJwoYdDqsVw/F7UeN4L5VpuWPeblcWXM9wTKyVY7G2zzeilMegjcL7j8YVGCw807 6GS2rb7gzz+76XiiX90Vbj5nh5L6GjmG -----END CERTIFICATE-----Generated at Sat Dec 20 05:15:18 2025 by rpki-client