This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft File: 3FfpX2KSEzop44hINlCWI10ZN8o.mft (raw, json) Hash identifier: ffwmTYmPTnpJ0eDvEZoThGiVvPIvpghy8OB99j8sNWE= Subject key identifier: 03:5D:1D:86:86:72:86:82:87:7E:F6:59:25:B2:A5:6F:F3:F1:3E:75 Authority key identifier: DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA Certificate issuer: /CN=A914E1E3/serialNumber=DC57E95F6292133A29E38848365096235D1937CA Certificate serial: 1D63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft Manifest number: 1D58 Signing time: Sat 06 Dec 2025 15:49:31 +0000 Manifest this update: Sat 06 Dec 2025 15:49:30 +0000 Manifest next update: Sat 13 Dec 2025 15:49:30 +0000 Files and hashes: 1: 3FfpX2KSEzop44hINlCWI10ZN8o.crl (hash: gAXTRJvL9KGj+fbSzQsWZcBzJiSLADAQH6lcgz6StGs=) 2: 3C1382D0BEA211E68902BC3DC4F9AE02.roa (hash: 4tdhNCoXuQpi6+LVzEflBnVNgk5q7DhclUHPWv4LN4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7523 (0x1d63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1E3, serialNumber=DC57E95F6292133A29E38848365096235D1937CA Validity Not Before: Dec 6 15:49:30 2025 GMT Not After : Dec 13 15:49:30 2025 GMT Subject: CN=6934508b-020b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:1b:13:10:4a:8f:d8:04:f6:52:22:9a:72: ca:fe:a1:ac:55:b9:3e:b5:dc:7c:ff:98:df:75:46: 7b:fc:76:85:59:6c:78:ca:20:b9:02:0d:0b:d2:78: 50:b2:fa:13:73:ff:5c:3f:10:90:9a:b1:2c:43:84: ee:d5:5d:35:bf:be:f5:dd:b1:db:24:e9:9b:cc:bf: 0a:8a:b8:53:fb:f6:56:47:99:c0:39:e2:e9:ac:f7: 02:f7:56:a2:5a:55:f4:6d:3d:7d:4e:f2:95:44:ee: 4f:9b:1e:66:e3:c3:02:a3:f2:82:08:d3:50:bd:46: b9:a5:cd:56:0c:98:ca:89:18:25:9f:20:01:11:94: 1d:49:f3:e1:81:91:54:d7:f5:b5:20:e0:e0:f7:72: d9:43:4e:f8:cd:80:25:ea:bd:73:6b:1a:fc:ca:52: 0b:7f:44:2c:ea:ec:f4:e3:27:37:a0:94:78:cf:e8: ec:2a:1d:b8:70:46:c5:39:e1:c2:34:5e:1c:ff:58: c7:08:f0:31:3a:0b:bd:e0:bc:2c:86:17:67:81:b3: 0b:1e:b1:90:05:d7:a8:ef:7b:66:0a:38:a3:62:e0: f7:75:1b:2a:00:e2:3b:da:a0:49:d5:49:51:44:f3: a1:bb:58:2d:6f:17:fe:c0:fb:9a:55:d7:44:05:ea: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5D:1D:86:86:72:86:82:87:7E:F6:59:25:B2:A5:6F:F3:F1:3E:75 X509v3 Authority Key Identifier: keyid:DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:0c:94:05:7e:81:68:5e:fe:21:85:41:d6:de:b2:eb:a9:ff: 9d:4c:69:64:98:86:6c:b3:9d:00:73:12:f4:40:f5:f0:f6:2c: 5f:a6:db:45:bd:8a:28:89:06:a4:23:b2:b3:1a:06:5d:2e:1e: b6:d4:15:39:3d:40:63:2d:4a:5e:52:2e:7d:bb:67:b5:1e:90: 66:08:a9:32:40:c6:9e:76:cc:b8:93:ab:53:d6:97:43:c6:27: f8:b4:47:a8:64:d2:0d:ac:f3:a6:2b:10:0c:49:ab:cf:48:41: 56:54:4b:df:12:15:04:c3:2b:3c:c3:e0:5f:68:bb:30:a0:07: ec:b8:18:e1:af:76:4c:67:21:d1:cc:d0:9d:2d:7f:04:54:69: 4a:7b:87:bd:77:cc:3b:bd:7f:0b:14:4d:c1:4a:4a:28:2d:4f: db:b0:85:8a:2b:6d:f6:44:11:10:3d:5c:2f:d2:4f:cb:65:c8: 41:79:01:6f:50:82:8a:51:2a:aa:e9:ad:d5:2e:ed:ca:53:af: bd:6f:5f:71:b4:2e:61:eb:05:e3:47:00:f0:dc:5c:4b:10:9f: 5c:06:80:63:00:ab:5a:be:7a:87:75:e1:9d:29:bf:61:b7:f3: 6a:a3:6f:24:e8:6e:9d:78:8d:ef:14:5b:9b:50:39:41:a7:ce: 68:bc:1b:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxRTMxMTAvBgNVBAUTKERDNTdFOTVGNjI5MjEzM0EyOUUzODg0ODM2NTA5NjIz NUQxOTM3Q0EwHhcNMjUxMjA2MTU0OTMwWhcNMjUxMjEzMTU0OTMwWjAYMRYwFAYD VQQDEw02OTM0NTA4Yi0wMjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDkbExBKj9gE9lIimnLK/qGsVbk+tdx8/5jfdUZ7/HaFWWx4yiC5Ag0L0nhQ svoTc/9cPxCQmrEsQ4Tu1V01v7713bHbJOmbzL8KirhT+/ZWR5nAOeLprPcC91ai WlX0bT19TvKVRO5Pmx5m48MCo/KCCNNQvUa5pc1WDJjKiRglnyABEZQdSfPhgZFU 1/W1IODg93LZQ074zYAl6r1zaxr8ylILf0Qs6uz04yc3oJR4z+jsKh24cEbFOeHC NF4c/1jHCPAxOgu94LwshhdngbMLHrGQBdeo73tmCjijYuD3dRsqAOI72qBJ1UlR RPOhu1gtbxf+wPuaVddEBerVxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANdHYaG coaCh372WSWypW/z8T51MB8GA1UdIwQYMBaAFNxX6V9ikhM6KeOISDZQliNdGTfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFFMy8wMjFBRTkyQUJE RTMxMUU2ODRDRTBCNTRDNEY5QUUwMi8zRmZwWDJLU0V6b3A0NGhJTmxDV0kxMFpO OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZnBYMktTRXpvcDQ0aElObENXSTEwWk44by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFFMy8wMjFBRTkyQUJERTMxMUU2ODRDRTBCNTRDNEY5QUUwMi8zRmZwWDJLU0V6 b3A0NGhJTmxDV0kxMFpOOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANDJQFfoFoXv4hhUHW3rLrqf+dTGlkmIZss50AcxL0QPXw9ixfpttF vYooiQakI7KzGgZdLh621BU5PUBjLUpeUi59u2e1HpBmCKkyQMaedsy4k6tT1pdD xif4tEeoZNINrPOmKxAMSavPSEFWVEvfEhUEwys8w+BfaLswoAfsuBjhr3ZMZyHR zNCdLX8EVGlKe4e9d8w7vX8LFE3BSkooLU/bsIWKK232RBEQPVwv0k/LZchBeQFv UIKKUSqq6a3VLu3KU6+9b19xtC5h6wXjRwDw3FxLEJ9cBoBjAKtavnqHdeGdKb9h t/Nqo28k6G6deI3vFFubUDlBp85ovBsM -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:55 2025 by rpki-client