This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: PQBa+CPiBSkm3uxUqlDkMzWJPP2pBd5C0iZYmt9dW4I= Subject key identifier: 51:C1:53:E7:D7:4B:82:B1:05:C8:8F:B5:5A:64:E5:91:C3:E3:C6:42 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C4E Signing time: Sat 06 Dec 2025 17:59:31 +0000 Manifest this update: Sat 06 Dec 2025 17:59:30 +0000 Manifest next update: Sat 13 Dec 2025 17:59:29 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: NUKUR45v5crxxWODerTpl+pfcyznBf18nvCQlL255KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Dec 6 17:59:30 2025 GMT Not After : Dec 13 17:59:29 2025 GMT Subject: CN=69346f02-122f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4b:5b:d6:ee:98:15:64:05:5f:0a:3c:b4:34: 4b:67:5f:1b:ba:56:5e:84:76:02:8f:ca:93:62:2e: 05:51:6c:85:58:fd:2c:c5:63:b8:99:0e:10:34:51: fa:c4:e0:1b:6c:f4:d3:49:bc:2f:bb:b7:60:50:d8: 45:92:17:6a:65:a3:8f:2a:c8:fb:35:60:28:9d:93: bf:94:40:55:fa:27:e7:11:e6:67:53:43:66:5c:0a: b9:54:62:74:cb:57:8d:f8:7a:e5:e0:d9:2e:d3:6c: 77:4a:50:7c:70:c9:8e:ff:f8:87:5c:ad:2f:ab:73: 75:50:34:e8:94:3c:84:a7:ce:4f:53:45:d0:76:f9: 83:20:4c:d1:2e:b3:a0:d3:53:f0:c6:98:ab:83:8a: de:19:b8:59:49:5d:bd:ec:2b:5c:d7:91:37:5c:6f: 5d:0c:cf:31:f1:10:8b:00:3f:6a:2a:54:f6:d6:2d: 31:70:5a:97:8e:dd:51:c7:6e:a0:26:ec:d5:1e:2a: 1b:26:3c:c5:36:62:47:f6:49:ea:ee:ce:c3:83:ee: 14:a2:af:f0:7d:93:f5:07:7d:3f:92:d8:2f:d9:83: 21:c9:22:c7:65:e1:67:f7:fc:ef:f7:54:98:98:56: 89:01:17:10:f3:cb:05:af:86:db:f1:0c:04:c4:78: 74:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C1:53:E7:D7:4B:82:B1:05:C8:8F:B5:5A:64:E5:91:C3:E3:C6:42 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c3:cf:de:bd:8c:2e:98:14:3c:50:c3:d7:7e:21:d1:04:8e: 25:92:53:2a:19:eb:d1:fe:25:b4:d4:5d:0a:1f:91:36:f8:ea: 30:38:5d:1d:e2:4f:70:6a:53:fa:bc:97:fb:57:35:f5:cb:58: 8b:e6:50:c8:92:e2:30:fb:6a:6f:68:b0:1a:af:d0:39:ee:3b: 24:6e:5b:96:dc:d1:8b:a4:3d:c9:da:f4:4b:21:92:b6:d5:08: 72:e3:dc:b4:25:41:a3:2f:bd:47:3c:dd:d3:61:d8:3e:9f:93: 55:8b:98:73:5b:15:a1:54:8d:6f:03:86:07:8d:04:2e:f2:d2: 36:75:9e:86:66:b3:a7:79:b9:00:2a:62:fe:a3:1c:a7:4d:a9: 1f:eb:fc:46:fa:50:2c:c0:94:03:12:77:50:68:d2:e2:17:00: 18:26:d2:c6:b0:3c:b7:fa:66:92:e1:0f:82:bb:02:16:03:be: 75:38:b6:17:13:c7:c4:b0:bf:c1:64:03:b1:30:29:e8:47:32: 4e:91:8e:63:26:5c:e1:ca:ae:8c:3a:51:99:7d:6b:c7:2d:90: ca:b2:07:9f:a1:92:e7:a2:57:79:66:33:26:07:9d:b7:21:4d: 9f:fc:2e:90:07:46:94:c4:f4:b8:72:1a:d4:4d:14:46:6c:78: b0:5e:b7:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjUxMjA2MTc1OTMwWhcNMjUxMjEzMTc1OTI5WjAYMRYwFAYD VQQDEw02OTM0NmYwMi0xMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Utb1u6YFWQFXwo8tDRLZ18bulZehHYCj8qTYi4FUWyFWP0sxWO4mQ4QNFH6 xOAbbPTTSbwvu7dgUNhFkhdqZaOPKsj7NWAonZO/lEBV+ifnEeZnU0NmXAq5VGJ0 y1eN+Hrl4Nku02x3SlB8cMmO//iHXK0vq3N1UDTolDyEp85PU0XQdvmDIEzRLrOg 01Pwxpirg4reGbhZSV297Ctc15E3XG9dDM8x8RCLAD9qKlT21i0xcFqXjt1Rx26g JuzVHiobJjzFNmJH9knq7s7Dg+4Uoq/wfZP1B30/ktgv2YMhySLHZeFn9/zv91SY mFaJARcQ88sFr4bb8QwExHh0DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHBU+fX S4KxBciPtVpk5ZHD48ZCMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWw8/evYwumBQ8UMPXfiHRBI4lklMqGevR/iW01F0KH5E2+OowOF0d 4k9walP6vJf7VzX1y1iL5lDIkuIw+2pvaLAar9A57jskbluW3NGLpD3J2vRLIZK2 1Qhy49y0JUGjL71HPN3TYdg+n5NVi5hzWxWhVI1vA4YHjQQu8tI2dZ6GZrOnebkA KmL+oxynTakf6/xG+lAswJQDEndQaNLiFwAYJtLGsDy3+maS4Q+CuwIWA751OLYX E8fEsL/BZAOxMCnoRzJOkY5jJlzhyq6MOlGZfWvHLZDKsgefoZLnold5ZjMmB523 IU2f/C6QB0aUxPS4chrUTRRGbHiwXrew -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:07 2025 by rpki-client