This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: IB5phnEs3hQRU0Q9GJhINv93xL1ylknBB9alITd3h1Y= Subject key identifier: 1E:96:92:74:3C:41:8B:2A:F0:FC:78:BD:8B:6A:E9:D9:E5:38:5C:6A Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 0511 Signing time: Thu 04 Dec 2025 22:11:50 +0000 Manifest this update: Thu 04 Dec 2025 22:11:50 +0000 Manifest next update: Thu 11 Dec 2025 22:11:50 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: uOXv7wjyPM5R/HTLpyxEYqNI+GTyk3HEV2N71kMazwo=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: 8X5eBnJACDnF25R5obyjBzrkQFPgd4fVGHDaVysBGCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686, serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: Dec 4 22:11:50 2025 GMT Not After : Dec 11 22:11:50 2025 GMT Subject: CN=69320726-1e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3d:d9:b5:bf:a9:f0:f9:c7:67:f3:58:01:d1: 13:df:61:b2:df:86:8b:5b:04:24:22:ff:a0:0d:d8: b9:f3:0d:5f:11:72:1e:d5:2a:4b:94:5f:10:9f:01: fa:56:26:ce:c1:7a:84:09:de:c7:17:83:56:9a:1c: 6d:75:2b:d0:0e:ad:01:c2:ec:3f:a8:e7:aa:46:d1: 67:a6:78:78:81:ad:fd:91:fd:c3:7a:2a:db:f0:b2: d3:84:32:b3:ee:ba:7a:2b:07:66:5c:ed:88:74:b2: 5d:08:21:5d:d1:c6:a7:bd:ba:d3:cc:93:21:79:42: 97:49:5f:7f:b3:56:c5:1a:92:6e:e7:30:8c:b5:74: c6:12:ba:4f:c3:3f:05:47:3d:93:17:6d:b2:0d:07: f1:04:b8:88:23:28:9a:53:9c:8a:5a:23:c4:d4:45: c2:6b:a4:0c:c2:1d:27:b4:c2:72:7c:12:38:4a:cc: a8:d8:8c:b8:48:fc:5c:32:02:3c:9d:cb:a0:f6:08: de:d7:c6:84:6d:88:ee:d8:84:72:1a:f4:43:d5:c7: bd:d0:d3:ad:8c:02:c1:d0:db:f3:60:30:73:bf:99: d1:a9:76:75:1d:51:e1:37:4b:f5:c4:37:8e:c8:e9: 99:ba:f6:3a:74:ef:c9:8e:b9:f2:45:c7:02:7b:30: f3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:96:92:74:3C:41:8B:2A:F0:FC:78:BD:8B:6A:E9:D9:E5:38:5C:6A X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:25:a4:2f:47:fd:01:ab:c1:ff:d4:92:49:04:12:c6:95:07: c5:1b:ea:45:fe:72:ae:f6:73:67:81:e9:ee:13:58:35:1b:88: 68:e4:5f:5f:65:23:1e:36:c6:d8:9e:ba:4b:8d:4a:86:95:82: c6:77:55:99:85:e4:04:d0:b7:59:6b:e3:9c:22:fd:e2:9f:65: 0f:9c:d7:7e:ec:7d:a6:fb:8a:73:5e:5c:b6:36:17:92:4d:c4: 20:6b:25:c2:0a:78:87:d4:4f:7c:2f:7b:37:2c:53:84:35:92: 98:90:e4:cb:2e:8e:94:d9:76:e1:f7:65:c9:77:3a:c5:1a:02: 4e:09:cf:98:32:b2:f5:85:1f:7c:31:4a:8f:d3:c0:12:53:24: 4c:09:c1:19:7a:6c:02:ea:ee:50:95:0c:51:25:62:24:46:c3: 14:17:a4:19:10:37:58:16:09:e1:99:34:e8:f7:db:e8:1b:75: 6c:79:5c:c7:cc:f4:2d:d3:9f:24:fa:d9:2b:24:51:02:bf:71: 3a:e3:d7:ca:74:04:3a:92:ef:cb:9f:43:32:0c:50:01:87:0f: 3a:41:73:a2:fc:d7:18:b5:60:46:08:bb:ac:a8:50:80:0b:e1: 7d:01:da:5d:79:20:cc:bf:9e:5e:be:20:ff:95:1b:63:8a:79: 8e:96:a5:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUxMjA0MjIxMTUwWhcNMjUxMjExMjIxMTUwWjAYMRYwFAYD VQQDEw02OTMyMDcyNi0xZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD3Ztb+p8PnHZ/NYAdET32Gy34aLWwQkIv+gDdi58w1fEXIe1SpLlF8QnwH6 VibOwXqECd7HF4NWmhxtdSvQDq0Bwuw/qOeqRtFnpnh4ga39kf3Deirb8LLThDKz 7rp6KwdmXO2IdLJdCCFd0canvbrTzJMheUKXSV9/s1bFGpJu5zCMtXTGErpPwz8F Rz2TF22yDQfxBLiIIyiaU5yKWiPE1EXCa6QMwh0ntMJyfBI4Ssyo2Iy4SPxcMgI8 ncug9gje18aEbYju2IRyGvRD1ce90NOtjALB0NvzYDBzv5nRqXZ1HVHhN0v1xDeO yOmZuvY6dO/JjrnyRccCezDz+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6WknQ8 QYsq8Px4vYtq6dnlOFxqMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGJaQvR/0Bq8H/1JJJBBLGlQfFG+pF/nKu9nNngenuE1g1G4ho5F9f ZSMeNsbYnrpLjUqGlYLGd1WZheQE0LdZa+OcIv3in2UPnNd+7H2m+4pzXly2NheS TcQgayXCCniH1E98L3s3LFOENZKYkOTLLo6U2Xbh92XJdzrFGgJOCc+YMrL1hR98 MUqP08ASUyRMCcEZemwC6u5QlQxRJWIkRsMUF6QZEDdYFgnhmTTo99voG3VseVzH zPQt058k+tkrJFECv3E649fKdAQ6ku/Ln0MyDFABhw86QXOi/NcYtWBGCLusqFCA C+F9AdpdeSDMv55eviD/lRtjinmOlqUp -----END CERTIFICATE-----Generated at Sat Dec 6 12:25:45 2025 by rpki-client