This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: qCbohMhs4Yhg12Q4pHDyNBqxoE81sR82Ly2CVguvnKU= Subject key identifier: D3:9B:B9:06:8D:FE:EB:3E:B1:0A:87:14:28:36:7A:59:E2:7E:4B:4D Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: 71 Signing time: Fri 05 Dec 2025 04:46:06 +0000 Manifest this update: Fri 05 Dec 2025 04:46:05 +0000 Manifest next update: Fri 12 Dec 2025 04:46:05 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: s1vKUAvoOu3sY38IHPHfkSTup0E5YowsimX6IbbuYZQ=) 2: F1940290212911F087425013C4F9AE02.roa (hash: MnHNxat0n45sPIepd+2k7Aeq3t/02+1KvIJP8MEpuv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Dec 5 04:46:05 2025 GMT Not After : Dec 12 04:46:05 2025 GMT Subject: CN=6932638e-5870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:03:dd:df:a1:bf:bc:43:f1:2f:4f:d9:64:f0: ba:f9:67:4d:a4:c3:01:3e:ae:78:1c:20:62:b5:d5: d7:a9:d9:29:88:08:61:d9:a5:19:b1:35:4b:eb:91: 58:e1:6a:8b:92:59:93:ff:7e:51:e2:1e:43:3d:bd: 46:9c:c3:23:18:04:90:ff:ee:68:82:ac:fc:28:69: 11:b2:32:65:70:b1:dc:67:45:16:fc:be:c4:7c:ba: 09:ee:f4:12:ed:70:2c:24:07:48:b8:07:3f:90:fe: 38:4d:9f:e9:eb:76:9d:0b:0d:b0:24:50:e0:51:41: ce:0d:13:44:84:0d:85:30:a0:b4:30:f0:9b:7f:d9: ff:bd:3d:1e:d5:3b:5d:04:27:5e:da:a1:a5:58:95: 81:aa:e0:27:7a:77:e5:b4:05:f2:ff:3b:51:ff:a0: 70:16:33:58:2c:f4:b4:26:dc:06:3c:e5:75:17:51: 49:44:ad:2b:48:f4:eb:3f:15:5d:97:38:b1:fa:34: ff:5b:86:92:b0:ce:28:62:47:6a:9a:07:a1:63:67: 72:06:8c:d4:1f:a5:3e:8b:d7:ed:8f:28:39:95:dc: 56:fc:4b:ca:b0:b3:67:b4:09:49:3e:16:27:3e:cc: 73:6d:82:20:81:0a:64:15:26:40:f5:e1:4e:ed:3f: 30:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9B:B9:06:8D:FE:EB:3E:B1:0A:87:14:28:36:7A:59:E2:7E:4B:4D X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e1:5e:22:d1:30:b7:ab:9a:1d:16:59:35:8b:75:b0:3a:e7: 6f:94:10:f7:1f:3e:ca:08:cd:b1:6c:e4:a7:fb:63:b0:2c:2c: 36:f0:59:61:0a:33:ee:a3:9c:98:be:a2:b7:4f:8e:d0:34:88: b0:62:69:88:76:c0:77:5d:33:8b:a0:b4:06:d2:9b:c5:4d:ca: 07:db:96:23:24:e5:b7:af:6d:40:16:5a:a8:4f:88:16:5c:33: e6:42:85:77:bf:62:47:1c:ea:1f:92:c2:ac:b3:d6:2a:5f:d5: f0:1b:c2:9c:a7:e9:a1:74:01:18:bd:e2:40:53:12:53:57:12: ef:cd:ce:c8:79:db:8c:92:23:17:3c:d7:f1:e0:13:57:1b:33: 34:ba:ee:29:8a:8c:27:8c:db:4b:06:63:d3:aa:da:7e:b4:5a: 47:27:e8:34:7f:15:13:0d:3e:10:6e:9f:25:16:1a:d9:bc:cd: b3:8c:f0:d4:3b:3c:fb:b4:0c:31:aa:4a:45:b4:41:96:4a:c5: 07:7d:9c:e2:50:79:45:09:87:2e:34:f8:2d:f6:b8:35:35:bc: a3:e2:a6:58:c3:53:1b:7f:2f:18:f7:0d:d7:04:e3:97:d0:fb: 30:36:b2:26:ee:e1:97:2d:6b:3d:5d:b0:d0:5d:39:2c:1b:c4: a9:52:21:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUEwNTExMC8GA1UEBRMoREYxODczMTFGQTA5Qzc3OUI4QjE1RDk0N0E0NkQ0RjRF RENDNTA1MzAeFw0yNTEyMDUwNDQ2MDVaFw0yNTEyMTIwNDQ2MDVaMBgxFjAUBgNV BAMTDTY5MzI2MzhlLTU4NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRA93fob+8Q/EvT9lk8Lr5Z02kwwE+rngcIGK11dep2SmICGHZpRmxNUvrkVjh aouSWZP/flHiHkM9vUacwyMYBJD/7miCrPwoaRGyMmVwsdxnRRb8vsR8ugnu9BLt cCwkB0i4Bz+Q/jhNn+nrdp0LDbAkUOBRQc4NE0SEDYUwoLQw8Jt/2f+9PR7VO10E J17aoaVYlYGq4Cd6d+W0BfL/O1H/oHAWM1gs9LQm3AY85XUXUUlErStI9Os/FV2X OLH6NP9bhpKwzihiR2qaB6FjZ3IGjNQfpT6L1+2PKDmV3Fb8S8qws2e0CUk+Fic+ zHNtgiCBCmQVJkD14U7tPzDfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU05u5Bo3+ 6z6xCocUKDZ6WeJ+S00wHwYDVR0jBBgwFoAU3xhzEfoJx3m4sV2UekbU9O3MUFMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQTA1LzREQzFEOTI2MjEy OTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVG TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3hoekVmb0p4M200c1YyVWVrYlU5TzNNVUZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QTA1LzREQzFEOTI2MjEyOTExRjBBNjZBNDk3MkM0RjlBRTAyLzN4aHpFZm9KeDNt NHNWMlVla2JVOU8zTVVGTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJjhXiLRMLermh0WWTWLdbA652+UEPcfPsoIzbFs5Kf7Y7AsLDbwWWEK M+6jnJi+ordPjtA0iLBiaYh2wHddM4ugtAbSm8VNygfbliMk5bevbUAWWqhPiBZc M+ZChXe/Ykcc6h+Swqyz1ipf1fAbwpyn6aF0ARi94kBTElNXEu/Nzsh524ySIxc8 1/HgE1cbMzS67imKjCeM20sGY9Oq2n60Wkcn6DR/FRMNPhBunyUWGtm8zbOM8NQ7 PPu0DDGqSkW0QZZKxQd9nOJQeUUJhy40+C32uDU1vKPipljDUxt/Lxj3DdcE45fQ +zA2sibu4Zctaz1dsNBdOSwbxKlSIU0= -----END CERTIFICATE-----Generated at Sun Dec 7 01:59:23 2025 by rpki-client