This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft File: 3glSX1epVbpvLTKtIoMwQhUYLkU.mft (raw, json) Hash identifier: eS/DleJbQ557Zi886g0iTcb4xA4FKrO1hc27MeaKfL0= Subject key identifier: CE:F0:8D:84:77:3A:88:9F:99:96:60:B5:02:78:6C:8B:5A:1D:C3:E7 Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft Manifest number: 01AB Signing time: Fri 05 Dec 2025 01:27:47 +0000 Manifest this update: Fri 05 Dec 2025 01:27:46 +0000 Manifest next update: Fri 12 Dec 2025 01:27:46 +0000 Files and hashes: 1: 3glSX1epVbpvLTKtIoMwQhUYLkU.crl (hash: DW1L/qLGH5HgJncQhGui82p3goxEA/s4Q7yNURpo1Lk=) 2: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (hash: Pq73PgAG6oMeQVEVi6eMUHjuXX4heTdR3HOjLtOdzzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Dec 5 01:27:46 2025 GMT Not After : Dec 12 01:27:46 2025 GMT Subject: CN=69323512-8a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e2:f9:df:2d:21:df:82:0f:d1:b5:5a:be:65: 19:44:02:16:b2:62:e6:e5:9f:4f:40:ba:d1:7b:8b: 06:3a:db:3b:7a:52:6d:ba:b8:30:14:d3:e3:bb:0a: fa:09:75:1b:45:20:e6:8e:4b:06:eb:12:17:ba:ab: af:87:2e:99:62:bc:f4:7c:06:a5:a3:6c:04:9c:31: 5c:7e:52:c6:7a:a4:f4:f9:48:fd:e7:2b:13:db:46: 26:f0:cf:91:17:17:c5:b1:8b:81:5f:37:39:53:7c: ac:2a:9e:60:7e:91:35:0d:23:cf:71:fa:27:25:59: 55:e8:c1:b6:9b:ef:dd:f0:3b:a5:bb:ae:25:93:c6: e4:86:91:a9:22:c3:7d:9b:a2:60:19:4f:ff:1b:14: 8b:36:40:64:3a:c8:19:3d:2d:86:7a:d4:66:bd:38: 20:a0:4b:4f:76:56:f9:d6:19:17:a0:f9:af:0e:22: d5:93:92:3f:27:6e:9c:c7:13:c8:7a:87:94:e1:9e: c0:86:ba:1d:92:ee:22:39:06:f4:e1:0f:61:aa:63: 78:08:60:90:15:47:d9:7b:e2:4e:05:f5:54:8a:cb: 5f:b8:a7:ca:63:38:84:6a:d4:c7:a2:4e:36:87:43: ae:84:2e:ff:2d:45:8b:21:b0:ab:cc:6e:db:d1:bd: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F0:8D:84:77:3A:88:9F:99:96:60:B5:02:78:6C:8B:5A:1D:C3:E7 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a7:95:96:89:08:a6:23:32:7c:c9:3a:88:ae:21:cf:06:83: a6:87:7b:0c:eb:61:5c:1f:43:7b:8f:78:e8:05:63:84:06:c7: 5e:37:3f:66:98:8c:53:07:6f:e7:9a:63:30:0e:a8:86:d5:ab: a6:5f:da:c1:dd:bb:5b:d2:c6:ac:a7:af:9c:cf:5e:08:15:51: a7:33:0c:3f:41:7b:12:dd:7e:ee:7d:03:a4:63:82:b9:f9:c8: 50:20:12:47:91:cf:dc:8d:d1:41:07:aa:8b:6c:c3:2b:2e:fd: 4e:53:73:d6:e5:58:49:9b:6a:da:94:d4:f5:9c:11:5d:c7:d5: 85:76:30:87:fd:84:75:75:b6:4a:73:98:e4:b8:08:73:66:b0: 15:3a:71:9a:f9:a2:ee:6e:c3:6d:a9:73:15:f6:4d:fd:c6:e3: b2:36:1d:6c:4b:e8:6d:3d:14:06:cf:b4:03:70:da:a6:d1:c2: e3:f4:8f:9b:8e:ab:55:4e:91:02:80:7e:2d:d2:ad:21:cb:1c: 06:38:03:f1:4a:f6:2a:57:05:d1:af:b3:cc:b2:55:46:f8:60: 0e:75:f0:34:e9:4e:7d:7d:03:c3:cf:e2:a4:0e:1f:dd:ea:d8: ac:fa:f0:d2:01:07:57:0b:d3:29:d0:c0:07:81:fc:ba:d9:f6: 19:fc:83:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUxMjA1MDEyNzQ2WhcNMjUxMjEyMDEyNzQ2WjAYMRYwFAYD VQQDEw02OTMyMzUxMi04YTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmeL53y0h34IP0bVavmUZRAIWsmLm5Z9PQLrRe4sGOts7elJturgwFNPjuwr6 CXUbRSDmjksG6xIXuquvhy6ZYrz0fAalo2wEnDFcflLGeqT0+Uj95ysT20Ym8M+R FxfFsYuBXzc5U3ysKp5gfpE1DSPPcfonJVlV6MG2m+/d8Dulu64lk8bkhpGpIsN9 m6JgGU//GxSLNkBkOsgZPS2GetRmvTggoEtPdlb51hkXoPmvDiLVk5I/J26cxxPI eoeU4Z7Ahrodku4iOQb04Q9hqmN4CGCQFUfZe+JOBfVUistfuKfKYziEatTHok42 h0OuhC7/LUWLIbCrzG7b0b1Z8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7wjYR3 OoifmZZgtQJ4bItaHcPnMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUMzMi9DNEVBMUI5RTQ2RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZi cHZMVEt0SW9Nd1FoVVlMa1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZp5WWiQimIzJ8yTqIriHPBoOmh3sM62FcH0N7j3joBWOEBsdeNz9m mIxTB2/nmmMwDqiG1aumX9rB3btb0sasp6+cz14IFVGnMww/QXsS3X7ufQOkY4K5 +chQIBJHkc/cjdFBB6qLbMMrLv1OU3PW5VhJm2ralNT1nBFdx9WFdjCH/YR1dbZK c5jkuAhzZrAVOnGa+aLubsNtqXMV9k39xuOyNh1sS+htPRQGz7QDcNqm0cLj9I+b jqtVTpECgH4t0q0hyxwGOAPxSvYqVwXRr7PMslVG+GAOdfA06U59fQPDz+KkDh/d 6tis+vDSAQdXC9Mp0MAHgfy62fYZ/INx -----END CERTIFICATE-----Generated at Sat Dec 6 17:29:58 2025 by rpki-client