This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: YxF9kibZeU1dxXSOhS7/KnftAC7HkWBxSVsyqrAKCH4= Subject key identifier: E8:BC:86:67:EB:DC:66:0B:71:B6:92:C1:2D:81:4C:40:4C:81:B0:C7 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A4A Signing time: Thu 04 Dec 2025 18:59:44 +0000 Manifest this update: Thu 04 Dec 2025 18:59:43 +0000 Manifest next update: Thu 11 Dec 2025 18:59:43 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: 5Qyz+mmM4x+lLxbwrXK4zrJOIT3IiiLnMqgi7KtSd3s=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: lx///Z7Da35SlsWklk353QqekT8yYXigifaMtdugzeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Dec 4 18:59:43 2025 GMT Not After : Dec 11 18:59:43 2025 GMT Subject: CN=6931da1f-b0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4e:5f:41:a1:e6:ba:c0:29:ce:87:85:9a:ca: 54:52:63:6b:e0:1a:1b:fc:41:78:ec:e0:6d:07:1c: 05:44:ca:99:5f:28:1b:ab:53:0b:22:8c:42:25:4f: 82:0a:19:b4:c8:01:09:0e:b5:31:5f:84:d3:bc:ae: 44:cd:8c:09:a5:11:06:20:57:7a:72:6d:ad:14:79: 50:f6:78:88:b4:cf:79:e8:bb:ed:42:16:8e:b6:04: ca:b4:2a:fa:3d:d2:c8:1e:6a:c9:05:7c:b5:55:77: 66:67:39:5a:d7:06:9c:4c:6e:a6:31:b8:f9:a3:71: c5:5f:2f:68:ad:6e:4c:6e:ac:39:f7:b0:45:8f:72: 7e:1d:ce:90:00:3e:a4:12:27:79:83:8e:8b:93:52: b3:3f:9a:e4:2b:00:df:d2:c9:5f:92:5c:33:32:f0: 36:59:65:00:84:26:43:a7:55:8c:75:b9:a1:0e:19: 76:09:b7:2b:bf:ae:57:ea:4d:0c:ce:02:4c:31:0d: 92:81:a3:b2:b5:61:c6:77:27:b1:85:5a:36:c1:ed: 34:fb:1d:92:31:e3:db:79:d9:fa:f8:1f:63:12:3c: b5:c9:1d:02:99:eb:fe:dc:2d:62:d2:cd:90:2a:52: 95:39:c9:97:ef:1d:85:a7:11:a0:3e:08:35:0b:cb: 1b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:BC:86:67:EB:DC:66:0B:71:B6:92:C1:2D:81:4C:40:4C:81:B0:C7 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:fb:57:88:bf:59:d8:c3:a2:07:ca:1d:87:bf:a3:3f:a0:03: b4:31:1e:86:c7:96:b6:36:83:b7:8e:a0:49:13:28:05:58:23: 73:59:04:db:6c:07:9e:ab:d9:0b:9f:53:92:55:95:b9:c3:0a: 05:41:87:78:32:a9:e0:cf:0f:38:29:85:c9:12:72:fc:cf:c9: bf:77:cb:57:5a:69:2a:74:43:6d:9e:03:d0:0e:47:41:a6:d2: d6:cc:24:11:2b:be:a8:ee:10:ce:b9:41:c5:17:c5:88:4d:27: 15:02:1e:f1:ad:80:f3:ac:22:56:23:ab:2c:97:cb:78:04:f5: 39:2e:e3:b0:0b:ae:d8:6c:af:9d:90:dd:34:85:b3:06:11:6f: 81:0e:50:da:f9:a7:c9:d9:e5:c3:56:7a:95:29:58:db:b4:d0: 1c:9c:15:e8:b0:6f:af:39:bd:bc:20:a8:16:29:c4:01:24:25: 00:bc:fd:6a:0d:40:42:fe:fe:25:ed:29:36:6e:3d:7a:1d:de: 5b:58:d8:83:50:d2:22:85:ac:eb:40:fa:68:e9:20:eb:40:b9: b3:5a:b4:5e:c7:00:c1:81:ce:45:a8:e3:0a:bc:2b:18:85:9c: b4:ed:65:56:04:2a:50:a2:02:8e:b1:8f:59:1c:02:47:a7:ab: 03:e0:84:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUxMjA0MTg1OTQzWhcNMjUxMjExMTg1OTQzWjAYMRYwFAYD VQQDEw02OTMxZGExZi1iMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2E5fQaHmusApzoeFmspUUmNr4Bob/EF47OBtBxwFRMqZXygbq1MLIoxCJU+C Chm0yAEJDrUxX4TTvK5EzYwJpREGIFd6cm2tFHlQ9niItM956LvtQhaOtgTKtCr6 PdLIHmrJBXy1VXdmZzla1wacTG6mMbj5o3HFXy9orW5Mbqw597BFj3J+Hc6QAD6k Eid5g46Lk1KzP5rkKwDf0slfklwzMvA2WWUAhCZDp1WMdbmhDhl2Cbcrv65X6k0M zgJMMQ2SgaOytWHGdyexhVo2we00+x2SMePbedn6+B9jEjy1yR0Cmev+3C1i0s2Q KlKVOcmX7x2FpxGgPgg1C8sbVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOi8hmfr 3GYLcbaSwS2BTEBMgbDHMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS+1eIv1nYw6IHyh2Hv6M/oAO0MR6Gx5a2NoO3jqBJEygFWCNzWQTb bAeeq9kLn1OSVZW5wwoFQYd4Mqngzw84KYXJEnL8z8m/d8tXWmkqdENtngPQDkdB ptLWzCQRK76o7hDOuUHFF8WITScVAh7xrYDzrCJWI6ssl8t4BPU5LuOwC67YbK+d kN00hbMGEW+BDlDa+afJ2eXDVnqVKVjbtNAcnBXosG+vOb28IKgWKcQBJCUAvP1q DUBC/v4l7Sk2bj16Hd5bWNiDUNIihazrQPpo6SDrQLmzWrRexwDBgc5FqOMKvCsY hZy07WVWBCpQogKOsY9ZHAJHp6sD4ISy -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:39 2025 by rpki-client