This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: jhllx6vHqBZDfJNUgB0m/nS3kD+iUw5TJOVUlnipkvs= Subject key identifier: 3B:87:45:FC:A7:A2:CA:7E:C9:2D:89:F2:0C:48:9F:FC:C5:63:0C:35 Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 44 Signing time: Fri 05 Dec 2025 05:17:22 +0000 Manifest this update: Fri 05 Dec 2025 05:17:21 +0000 Manifest next update: Fri 12 Dec 2025 05:17:21 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: YORPmruDTxTX9jQlB5jo6vXN5NfKyU/1MQDnK3E2j4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Dec 5 05:17:21 2025 GMT Not After : Dec 12 05:17:21 2025 GMT Subject: CN=69326ae1-60a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:12:40:9d:57:fd:7f:8c:71:2a:71:85:6e:df: 82:60:d0:db:2d:5d:15:29:ad:76:f6:27:d0:d4:18: 38:58:f8:1b:8e:29:c9:89:51:16:3a:37:2a:1a:84: 06:42:10:8d:49:e1:b7:2c:ca:26:e9:a2:ec:ef:44: 5a:0e:7b:c8:39:eb:a7:08:74:32:20:53:26:86:c4: 12:a7:a8:e2:45:57:43:99:ba:a1:3f:19:89:c7:1b: 23:82:1f:c4:a9:8b:aa:8f:aa:cb:96:2b:2d:72:3b: ff:0a:5f:0f:75:32:48:0e:8f:5b:0c:d0:b0:89:ea: fb:1f:bf:0e:16:4f:ca:d1:f5:a6:eb:06:de:87:56: 5c:7f:4b:61:ba:46:31:bd:d3:41:fb:35:bf:d7:e2: 0d:2b:26:d8:02:13:5b:84:08:80:c9:01:09:36:a0: c7:ec:1d:30:ab:8e:c0:30:a1:41:e4:0c:2d:97:f7: 42:e4:30:11:6a:58:41:e6:90:4c:86:8d:0f:e5:4c: aa:83:39:3b:c8:31:de:6d:4a:37:80:3a:dd:93:8d: b9:af:bc:d9:f2:e7:88:5a:f0:d6:41:76:bc:8c:7a: 7d:ae:2d:a8:dd:5d:02:5b:45:27:2a:bd:c5:d4:d2: 65:8b:78:c6:14:58:75:c1:e0:35:c2:f3:bb:67:e0: 47:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:87:45:FC:A7:A2:CA:7E:C9:2D:89:F2:0C:48:9F:FC:C5:63:0C:35 X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ba:7d:f4:7d:19:1f:b5:b9:72:91:2b:cc:8a:2e:f0:83:ec: cc:b1:b6:15:77:c2:f8:90:16:9f:54:93:db:c2:56:38:d2:7b: 92:79:b3:20:9f:87:d9:a9:ca:6c:da:60:d6:fa:ee:f5:cb:e4: c5:a0:12:51:29:24:86:ed:28:58:84:f8:87:39:0a:a5:be:57: a5:35:63:ff:f7:e3:3d:8b:7b:8c:46:4b:a5:a9:ee:b9:46:1c: b7:09:53:8c:ee:60:9a:84:28:20:e0:48:55:95:2d:84:14:53: b4:75:08:e7:8e:9f:e7:17:28:21:40:54:bb:9d:ac:70:aa:61: 7d:5e:e5:f4:5c:c2:78:71:52:0d:06:a5:db:a0:10:fd:75:31: 9f:e3:2f:ac:e4:13:18:ca:56:6c:bf:3e:18:6e:a9:85:0c:6a: b5:ce:a5:28:53:50:83:d9:42:ec:52:1d:ec:20:fe:71:00:1d: ff:5e:c8:e5:28:61:9e:35:15:7d:85:2f:c5:c5:bb:1e:e3:22: 80:4a:b4:8c:d2:1c:36:60:1d:d8:28:36:85:46:f0:ee:aa:87: 0f:40:ae:45:71:1a:bd:cc:4d:97:80:55:ef:8c:73:f0:1a:7e: fe:e4:1a:bd:f7:19:7d:c5:60:32:3e:65:0e:4e:1f:e7:88:e8: af:fa:ff:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoREQyODA4MjhGRjA5OTZBOENCRUYyOUJGMEQ5MTRERjI1 MkRGMUNCRDAeFw0yNTEyMDUwNTE3MjFaFw0yNTEyMTIwNTE3MjFaMBgxFjAUBgNV BAMTDTY5MzI2YWUxLTYwYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDREkCdV/1/jHEqcYVu34Jg0NstXRUprXb2J9DUGDhY+BuOKcmJURY6NyoahAZC EI1J4bcsyibpouzvRFoOe8g566cIdDIgUyaGxBKnqOJFV0OZuqE/GYnHGyOCH8Sp i6qPqsuWKy1yO/8KXw91MkgOj1sM0LCJ6vsfvw4WT8rR9abrBt6HVlx/S2G6RjG9 00H7Nb/X4g0rJtgCE1uECIDJAQk2oMfsHTCrjsAwoUHkDC2X90LkMBFqWEHmkEyG jQ/lTKqDOTvIMd5tSjeAOt2TjbmvvNny54ha8NZBdryMen2uLajdXQJbRScqvcXU 0mWLeMYUWHXB4DXC87tn4EezAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO4dF/Kei yn7JLYnyDEif/MVjDDUwHwYDVR0jBBgwFoAU3SgIKP8JlqjL7ym/DZFN8lLfHL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzZBOUU5MTVDNkVF OTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1NnSUtQOEpscWpMN3ltX0RaRk44bExmSEwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0E4LzZBOUU5MTVDNkVFOTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFq TDd5bV9EWkZOOGxMZkhMMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADi6ffR9GR+1uXKRK8yKLvCD7MyxthV3wviQFp9Uk9vCVjjSe5J5syCf h9mpymzaYNb67vXL5MWgElEpJIbtKFiE+Ic5CqW+V6U1Y//34z2Le4xGS6Wp7rlG HLcJU4zuYJqEKCDgSFWVLYQUU7R1COeOn+cXKCFAVLudrHCqYX1e5fRcwnhxUg0G pdugEP11MZ/jL6zkExjKVmy/PhhuqYUMarXOpShTUIPZQuxSHewg/nEAHf9eyOUo YZ41FX2FL8XFux7jIoBKtIzSHDZgHdgoNoVG8O6qhw9ArkVxGr3MTZeAVe+Mc/Aa fv7kGr33GX3FYDI+ZQ5OH+eI6K/6/z8= -----END CERTIFICATE-----Generated at Sun Dec 7 04:54:15 2025 by rpki-client