This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: SHd33gUzsg9ABX0GbLWCm7E+cI75YDfec5tjF8q22Ps= Subject key identifier: D4:4B:92:71:B4:AC:CB:33:78:52:8A:88:7E:C0:10:8C:E3:89:2F:99 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 051D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0511 Signing time: Thu 04 Dec 2025 22:12:08 +0000 Manifest this update: Thu 04 Dec 2025 22:12:07 +0000 Manifest next update: Thu 11 Dec 2025 22:12:07 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: SgHCcwEt3D3RTrxSBrx5XUex6bZWBU36szSHFcIhzpg=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1309 (0x51d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Dec 4 22:12:07 2025 GMT Not After : Dec 11 22:12:07 2025 GMT Subject: CN=69320738-d6f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:c4:b8:d0:25:a1:95:fe:d3:92:02:17:5e: 95:ab:d7:8d:0a:f1:6d:26:b0:86:68:12:1d:11:8a: 06:af:cd:6e:41:c5:a1:2a:9e:6e:5f:df:49:b7:09: fb:a2:de:d9:b0:45:be:c2:66:d2:41:28:cd:77:ef: 61:9f:bc:d2:f1:be:39:b6:f7:c4:21:cb:9d:9d:5d: 06:7b:d2:67:09:4d:a5:fe:2d:d2:25:a2:6b:1a:98: 51:43:9b:d8:84:9e:30:b6:85:6c:6d:d3:a6:3a:01: df:f7:85:ef:1d:9d:ae:1c:c1:3e:04:a7:bc:50:68: a1:fe:d8:eb:ff:48:ff:bf:c0:55:98:98:71:58:8a: 3d:7d:7e:90:6c:ad:7f:93:ca:d6:6d:bc:ee:72:c2: 2c:a1:27:ef:94:16:fa:60:20:e2:bd:f3:b4:68:a6: 3c:ec:6a:8a:80:2e:f7:11:e7:76:dd:4e:b7:99:dc: e5:d0:45:8e:1b:82:04:85:4b:49:17:b3:11:4f:48: e0:26:ff:76:10:f1:78:b7:19:11:46:f0:c0:c4:63: b5:c9:8b:84:b5:02:74:57:1f:a4:49:04:34:cd:ad: e2:3d:67:75:6a:ae:64:4c:51:af:f4:63:d1:ce:e2: f1:9c:61:70:29:8e:78:2b:a9:90:24:4e:67:8c:fd: ab:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:4B:92:71:B4:AC:CB:33:78:52:8A:88:7E:C0:10:8C:E3:89:2F:99 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:80:23:5b:76:55:0b:21:ac:e4:53:8c:a1:bc:69:f6:89:16: 96:11:9d:8f:22:5c:a0:97:8a:15:e3:7f:b2:ed:18:cb:4f:c8: 10:45:6a:47:4a:ca:0b:a0:af:a4:26:a7:15:fc:de:97:67:92: 8a:e3:62:bd:3e:bf:c9:1d:50:01:f6:b4:42:bd:c6:d3:81:f8: 92:f5:ba:6c:7c:31:3b:63:d6:aa:9f:ff:18:2d:a9:7b:7e:f3: 78:03:7c:d0:e3:bc:89:c0:6e:ba:3b:84:9a:02:3c:38:16:4d: ae:6c:e5:5e:79:a3:60:8c:67:8a:31:57:3d:54:74:30:71:ab: 54:c7:4e:2a:fc:a2:dc:e7:b3:cd:09:01:8b:d9:2f:2d:87:89: 97:a7:ea:b8:a6:fb:4c:b0:04:6d:2b:d8:ff:43:e3:16:cf:b9: bf:34:3e:11:bd:8a:6a:f3:64:f9:e3:ea:de:05:14:ee:b5:bb: d1:1d:fb:49:d7:00:10:07:79:fa:a6:3d:c8:cb:fa:a2:53:ad: f1:b4:2f:bb:10:3c:fc:6a:0a:f1:f5:aa:73:b4:7c:e8:da:b0: c2:43:69:e2:2a:57:1b:1b:42:7c:f4:56:bc:9b:14:78:ca:81: cb:5b:a1:d8:05:b9:71:37:56:80:d8:78:f0:b9:19:46:1a:6f: 61:f8:99:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMjA0MjIxMjA3WhcNMjUxMjExMjIxMjA3WjAYMRYwFAYD VQQDEw02OTMyMDczOC1kNmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+DEuNAloZX+05ICF16Vq9eNCvFtJrCGaBIdEYoGr81uQcWhKp5uX99Jtwn7 ot7ZsEW+wmbSQSjNd+9hn7zS8b45tvfEIcudnV0Ge9JnCU2l/i3SJaJrGphRQ5vY hJ4wtoVsbdOmOgHf94XvHZ2uHME+BKe8UGih/tjr/0j/v8BVmJhxWIo9fX6QbK1/ k8rWbbzucsIsoSfvlBb6YCDivfO0aKY87GqKgC73Eed23U63mdzl0EWOG4IEhUtJ F7MRT0jgJv92EPF4txkRRvDAxGO1yYuEtQJ0Vx+kSQQ0za3iPWd1aq5kTFGv9GPR zuLxnGFwKY54K6mQJE5njP2r+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRLknG0 rMszeFKKiH7AEIzjiS+ZMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAgCNbdlULIazkU4yhvGn2iRaWEZ2PIlygl4oV43+y7RjLT8gQRWpH SsoLoK+kJqcV/N6XZ5KK42K9Pr/JHVAB9rRCvcbTgfiS9bpsfDE7Y9aqn/8YLal7 fvN4A3zQ47yJwG66O4SaAjw4Fk2ubOVeeaNgjGeKMVc9VHQwcatUx04q/KLc57PN CQGL2S8th4mXp+q4pvtMsARtK9j/Q+MWz7m/ND4RvYpq82T54+reBRTutbvRHftJ 1wAQB3n6pj3Iy/qiU63xtC+7EDz8agrx9apztHzo2rDCQ2niKlcbG0J89Fa8mxR4 yoHLW6HYBblxN1aA2HjwuRlGGm9h+Jkk -----END CERTIFICATE-----Generated at Sat Dec 6 23:25:15 2025 by rpki-client