This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: ezlzhVzpTZ0zZjlFgmbNE19uOIcJUiAWYLtUtRBDq+U= Subject key identifier: C1:31:0A:2D:EB:40:6A:1C:DD:69:C1:4C:3A:91:1A:89:28:A2:3C:64 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: 76 Signing time: Fri 05 Dec 2025 04:47:18 +0000 Manifest this update: Fri 05 Dec 2025 04:47:17 +0000 Manifest next update: Fri 12 Dec 2025 04:47:17 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: vBnGkPNLmLrFKgHQV96cFWFMnEdQil3sUCW5QRs/lyY=) 2: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=) 3: A209D9E4BC2311F09A8FB280C4F9AE02.roa (hash: ROMimlav+Kwv4KL5aZPE3FnW4mOvCmbzzXBU2NVsmwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Dec 5 04:47:17 2025 GMT Not After : Dec 12 04:47:17 2025 GMT Subject: CN=693263d5-2967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2a:ce:68:c0:28:66:33:97:47:41:01:08:1e: b3:35:f8:ce:5f:b7:31:4d:ea:10:8c:15:df:b2:aa: 22:f2:88:9b:59:9f:70:f3:02:0b:0f:59:60:56:ee: 36:3e:59:74:d1:0f:76:d5:e6:c8:ee:43:0a:6e:0f: 92:f0:91:50:ea:1b:d6:34:8e:8b:8d:2d:1a:5c:ca: a6:c8:e8:45:5f:98:0a:cb:9d:71:2b:b9:15:f7:db: cc:ea:9a:7a:18:4a:05:e2:10:03:1a:93:d0:42:70: 9d:81:be:9b:1b:bd:12:72:6a:43:85:b9:e7:5d:02: 66:8e:28:14:c9:f8:b3:00:ff:50:fc:e2:55:ed:01: 5d:92:1d:db:3e:10:c2:36:cb:db:13:b2:b0:b5:e4: ed:3f:3c:eb:5b:21:b1:22:40:d4:64:c4:2d:20:1e: 15:38:50:7f:2c:5a:e0:d6:1f:de:b2:b3:7c:b3:3f: 4b:af:41:6d:bc:4f:9e:55:56:a3:3c:15:72:64:22: 72:9e:b7:e4:5a:d4:d5:59:a1:03:74:c8:07:3b:4c: 58:c5:31:62:9a:ff:df:21:fc:5d:8b:8d:d0:2b:41: 99:20:f9:78:35:aa:2c:fc:4e:d3:21:19:b5:0e:94: 14:b9:7a:13:74:e7:a6:4c:48:54:ef:4a:e7:ac:84: be:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:31:0A:2D:EB:40:6A:1C:DD:69:C1:4C:3A:91:1A:89:28:A2:3C:64 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:12:10:d2:12:f9:b1:f9:0b:56:61:f7:f4:99:02:53:68:9e: 9c:2e:ef:f3:ed:46:88:02:1e:c5:c8:65:50:6f:2b:1d:2b:c3: 35:7d:20:08:43:b1:5a:39:8c:54:f3:24:10:fe:03:45:ba:6c: 9e:e8:f8:eb:23:75:05:09:eb:10:f1:6d:02:19:18:74:f9:d3: 23:32:be:1b:54:45:3f:19:89:12:69:82:a7:8d:35:02:be:c7: b0:0d:ea:df:fe:dd:07:66:c2:98:61:8d:a6:a0:a2:0b:1c:b3: ed:1f:29:ed:4f:2d:ab:8f:a0:e9:3a:19:65:d0:3f:5b:6f:24: 13:2e:c1:6f:fa:47:82:bc:75:48:de:66:73:0d:54:4c:cb:fa: e2:00:54:8e:33:e9:65:df:01:59:2e:02:1e:6a:6c:c9:0d:19: 3f:a5:42:d2:3f:50:ca:ec:c8:d5:ec:0a:3f:a4:d1:e8:64:87: 90:29:e1:40:ae:86:e0:8c:90:7c:8e:ce:6c:29:24:36:cc:5a: 37:ae:42:15:49:b1:6e:12:8f:4f:6f:5b:87:81:c0:0d:1e:3c: 25:56:1b:cc:dc:fb:cd:c2:d5:e6:3c:fb:03:87:a3:2c:dd:fe: d6:2d:32:e2:02:96:1e:0d:1d:8a:ac:79:93:47:61:ec:00:df: 83:b7:9a:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTEyMDUwNDQ3MTdaFw0yNTEyMTIwNDQ3MTdaMBgxFjAUBgNV BAMTDTY5MzI2M2Q1LTI5NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKKs5owChmM5dHQQEIHrM1+M5ftzFN6hCMFd+yqiLyiJtZn3DzAgsPWWBW7jY+ WXTRD3bV5sjuQwpuD5LwkVDqG9Y0jouNLRpcyqbI6EVfmArLnXEruRX328zqmnoY SgXiEAMak9BCcJ2BvpsbvRJyakOFueddAmaOKBTJ+LMA/1D84lXtAV2SHds+EMI2 y9sTsrC15O0/POtbIbEiQNRkxC0gHhU4UH8sWuDWH96ys3yzP0uvQW28T55VVqM8 FXJkInKet+Ra1NVZoQN0yAc7TFjFMWKa/98h/F2LjdArQZkg+Xg1qiz8TtMhGbUO lBS5ehN056ZMSFTvSueshL7pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwTEKLetA ahzdacFMOpEaiSiiPGQwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 RUNGL0VGNkI5MDVDMjVGNTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZT V1h2Xzd4bVM5MXlIWUIxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHISENIS+bH5C1Zh9/SZAlNonpwu7/PtRogCHsXIZVBvKx0rwzV9IAhD sVo5jFTzJBD+A0W6bJ7o+OsjdQUJ6xDxbQIZGHT50yMyvhtURT8ZiRJpgqeNNQK+ x7AN6t/+3Qdmwphhjaagogscs+0fKe1PLauPoOk6GWXQP1tvJBMuwW/6R4K8dUje ZnMNVEzL+uIAVI4z6WXfAVkuAh5qbMkNGT+lQtI/UMrsyNXsCj+k0ehkh5Ap4UCu huCMkHyOzmwpJDbMWjeuQhVJsW4Sj09vW4eBwA0ePCVWG8zc+83C1eY8+wOHoyzd /tYtMuIClh4NHYqseZNHYewA34O3muM= -----END CERTIFICATE-----Generated at Sun Dec 7 03:48:56 2025 by rpki-client