This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft File: VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json) Hash identifier: Sp5pf+jcCfHbEgeMme6onXqH2+9F03Dmtzi9u+AcPiA= Subject key identifier: 2A:93:A8:8D:50:B9:8B:97:DA:00:DA:A5:C2:61:E6:40:F3:3B:01:A2 Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D Certificate issuer: /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft Manifest number: 46 Signing time: Fri 05 Dec 2025 05:14:31 +0000 Manifest this update: Fri 05 Dec 2025 05:14:30 +0000 Manifest next update: Fri 12 Dec 2025 05:14:30 +0000 Files and hashes: 1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: Xq8vt/rtwvl38CnGhOTBn3hx0j4q+POgX1R2jT6XERc=) 2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Validity Not Before: Dec 5 05:14:30 2025 GMT Not After : Dec 12 05:14:30 2025 GMT Subject: CN=69326a37-bda8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c5:d0:8e:3f:e6:af:fc:4f:8d:48:af:39:89: d0:2e:6a:cf:d3:20:5b:5b:7f:6c:57:b8:98:8d:ef: 1d:d1:61:ff:ab:82:88:30:87:2b:3e:46:52:0f:bf: 25:0a:dd:c5:c6:1e:52:9f:c9:26:2a:6a:a8:c8:48: a7:bd:b7:3e:fb:6d:75:22:9e:f0:97:6c:d8:fd:55: 04:a5:1b:7f:1e:61:5d:f7:39:91:63:ea:a2:53:47: be:45:9e:0a:fe:ac:b2:51:bb:57:47:2e:fb:5b:71: 36:de:24:f8:c5:fd:34:25:f1:41:8e:6a:9a:17:6f: 97:bb:32:0d:71:a0:1b:68:ef:2e:c5:08:a5:2d:59: ac:17:d0:f0:15:ec:db:f1:ff:9d:de:e3:0e:71:c3: ef:01:0a:83:5f:3d:9d:34:bd:08:08:74:0f:01:67: 25:45:bd:a8:ff:ef:27:48:1e:e3:6d:fc:ed:04:89: 20:87:03:b9:14:13:ff:c3:f5:aa:a2:01:1e:14:7b: 66:6c:64:3e:71:32:e4:25:ce:d7:9a:0f:86:44:0f: 10:4a:0d:20:69:4a:df:54:ac:6e:06:7d:2b:96:dc: 86:6b:ef:ce:2e:70:67:3b:5d:2a:0e:27:1c:b6:4f: fb:fb:77:15:9d:81:02:6a:55:55:bf:aa:07:c5:fb: 06:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:93:A8:8D:50:B9:8B:97:DA:00:DA:A5:C2:61:E6:40:F3:3B:01:A2 X509v3 Authority Key Identifier: keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:24:05:89:0d:06:97:3d:52:6b:b3:cc:fc:ad:6a:7b:17:01: 81:b4:25:04:7b:2d:49:ad:42:39:2d:52:0f:cf:68:85:b2:a0: 5c:44:36:b7:a0:c2:82:d2:c0:e8:d3:52:e3:7a:69:b7:bb:d1: cb:b3:8c:72:d1:64:56:91:ba:33:0a:3b:60:03:75:74:1b:e3: a3:5a:46:1c:4d:d4:2b:b7:70:d5:92:9f:60:06:d3:00:df:45: 6b:d2:3b:fe:1e:6c:7a:3e:5d:12:06:fe:e8:d4:d2:2e:20:d6: d6:91:e5:c0:31:12:56:8f:07:1c:33:19:1d:d5:ef:1f:61:b4: 05:36:38:a4:25:51:bd:be:7d:c9:01:5e:53:d0:02:35:83:6a: 37:63:32:39:b2:18:21:37:41:44:c3:4f:13:b7:55:de:16:f5: 6a:0d:23:45:bc:11:81:f4:4f:96:b4:61:4d:ca:42:cf:e7:32: 7a:5d:86:91:6f:61:5b:8a:81:6f:47:0b:0c:18:f5:00:c7:43: 1b:e8:29:40:ec:19:7e:d3:db:15:ed:3f:fc:4f:b8:f6:f7:57: 13:96:bd:73:41:1e:f1:2c:cc:d6:ff:27:f5:9b:5e:46:6d:6f: a3:38:2a:09:a4:58:ec:92:c7:36:93:1d:d7:cb:1d:76:23:40: 69:a2:0c:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0U0QTExMC8GA1UEBRMoNTQxREQxNUUxNTRFNTA4RkIwMEZEQjI0NUM0RTc2RjJB RDNEODgxRDAeFw0yNTEyMDUwNTE0MzBaFw0yNTEyMTIwNTE0MzBaMBgxFjAUBgNV BAMTDTY5MzI2YTM3LWJkYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8xdCOP+av/E+NSK85idAuas/TIFtbf2xXuJiN7x3RYf+rgogwhys+RlIPvyUK 3cXGHlKfySYqaqjISKe9tz77bXUinvCXbNj9VQSlG38eYV33OZFj6qJTR75Fngr+ rLJRu1dHLvtbcTbeJPjF/TQl8UGOapoXb5e7Mg1xoBto7y7FCKUtWawX0PAV7Nvx /53e4w5xw+8BCoNfPZ00vQgIdA8BZyVFvaj/7ydIHuNt/O0EiSCHA7kUE//D9aqi AR4Ue2ZsZD5xMuQlzteaD4ZEDxBKDSBpSt9UrG4GfSuW3IZr784ucGc7XSoOJxy2 T/v7dxWdgQJqVVW/qgfF+waFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKpOojVC5 i5faANqlwmHmQPM7AaIwHwYDVR0jBBgwFoAUVB3RXhVOUI+wD9skXE528q09iB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRTRBL0UxRUExOUY2Njcz ODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUktd0Q5c2tYRTUyOHEwOWlC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkIzUlhoVk9VSS13RDlza1hFNTI4cTA5aUIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RTRBL0UxRUExOUY2NjczODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUkt d0Q5c2tYRTUyOHEwOWlCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIgkBYkNBpc9UmuzzPytansXAYG0JQR7LUmtQjktUg/PaIWyoFxENreg woLSwOjTUuN6abe70cuzjHLRZFaRujMKO2ADdXQb46NaRhxN1Cu3cNWSn2AG0wDf RWvSO/4ebHo+XRIG/ujU0i4g1taR5cAxElaPBxwzGR3V7x9htAU2OKQlUb2+fckB XlPQAjWDajdjMjmyGCE3QUTDTxO3Vd4W9WoNI0W8EYH0T5a0YU3KQs/nMnpdhpFv YVuKgW9HCwwY9QDHQxvoKUDsGX7T2xXtP/xPuPb3VxOWvXNBHvEszNb/J/WbXkZt b6M4KgmkWOySxzaTHdfLHXYjQGmiDLI= -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:01 2025 by rpki-client