This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.mft (raw, json) Hash identifier: Fr0bol4OjCpkCWAAEWfHdlsXYBdMWnowFbsOI2XAMLk= Subject key identifier: AB:54:FA:BE:BF:51:4B:2B:F8:F9:56:58:E3:FE:E3:D8:6B:5E:19:C6 Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft Manifest number: DB Signing time: Fri 05 Dec 2025 03:34:17 +0000 Manifest this update: Fri 05 Dec 2025 03:34:17 +0000 Manifest next update: Fri 12 Dec 2025 03:34:17 +0000 Files and hashes: 1: 3VdGDwwSvgVGE6L0KWewfaVoe_A.crl (hash: 7ud9X/hkPREcUXOTKFpQlwnYBgwrFFp22at8iH2B8sY=) 2: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (hash: sBDPY7rsFbT6fhu5rc+2MguV1coxbEaU8Tzb3L7ehlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: Dec 5 03:34:17 2025 GMT Not After : Dec 12 03:34:17 2025 GMT Subject: CN=693252b9-9173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:26:5e:26:72:14:42:8a:b5:a9:af:f1:0d: bb:a2:d3:b4:1b:fb:87:f9:b8:f0:c7:9a:a1:45:68: f1:f6:9b:4c:48:11:64:45:ed:bd:a1:82:4a:a0:a5: 8a:13:84:f3:07:84:1f:db:9b:86:aa:28:2b:de:97: 7a:35:8b:85:d4:c6:1e:31:b1:f9:a3:35:db:bc:f7: 33:8e:78:e0:7f:c7:df:c0:72:49:3f:07:75:a5:e1: a6:3b:df:4c:0e:94:52:a3:65:b2:a1:4f:10:c7:dc: c2:4c:72:f9:0f:00:1d:2b:40:ee:a2:85:26:37:e3: 38:4d:bc:08:0e:60:6b:bd:ec:6a:65:b3:f5:ce:35: 71:f1:52:ca:a5:1a:1b:95:62:a1:cc:e6:26:e3:1a: 35:fe:57:88:b6:8e:6c:f9:e5:a7:c2:ba:09:c4:a8: e8:db:d3:b3:d0:3f:60:33:d2:2a:08:d2:1f:94:e4: cf:e0:6b:9a:ca:a5:aa:f9:79:0b:28:14:fc:55:9d: de:3b:51:fd:16:6f:0d:da:5d:ab:e8:f7:16:91:6d: f3:09:1a:5b:7a:a4:0d:35:0c:ee:11:70:e0:14:5c: a6:3d:1f:71:e5:06:36:04:f8:f5:72:9c:01:96:b0: e3:bf:27:25:18:14:db:1b:ec:c5:41:b6:bd:8a:b0: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:54:FA:BE:BF:51:4B:2B:F8:F9:56:58:E3:FE:E3:D8:6B:5E:19:C6 X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:22:40:24:88:90:0c:6b:20:13:84:a9:a2:0d:d2:2b:f6:8f: 78:5c:ab:53:59:68:f6:e7:8e:aa:fb:3e:43:2c:7b:e6:74:ea: 4c:d1:cf:62:f5:85:12:ba:1d:a7:46:e7:32:f7:b7:9b:4a:ae: ed:f9:46:8d:fa:55:e0:56:76:16:ca:97:9d:f9:8c:ba:11:5c: 2b:99:29:f8:43:18:1a:c0:f7:8d:e5:48:72:f1:e2:1f:46:54: ec:bb:8c:c5:df:84:43:32:41:ec:a1:08:55:fa:b6:63:7b:3a: 59:6b:6d:70:df:35:a4:37:6b:0e:b8:00:84:2e:f4:aa:6f:9c: a0:8f:c2:57:d1:ad:47:0d:88:e8:b3:40:ed:30:18:0f:d2:c0: 23:e2:6d:79:d9:fc:f1:5d:15:ed:d8:4e:1b:d1:5a:44:84:49: ec:c3:46:fd:f2:9e:ec:79:29:fa:56:b6:b6:05:89:5a:ce:38: c6:23:c9:48:49:3c:1c:37:c0:c6:10:13:7b:43:e9:ea:19:00: 40:01:41:64:56:4b:24:64:56:2a:52:03:e6:d8:8e:dd:8c:dd: c3:93:8b:3d:83:25:06:ee:cf:f9:8d:d1:06:09:d9:7b:a2:9b: 64:f6:ca:aa:fd:fd:af:da:83:5e:c5:5c:68:5e:b2:74:e8:c6: 21:a6:82:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2REMxMTAvBgNVBAUTKERENTc0NjBGMEMxMkJFMDU0NjEzQTJGNDI5NjdCMDdE QTU2ODdCRjAwHhcNMjUxMjA1MDMzNDE3WhcNMjUxMjEyMDMzNDE3WjAYMRYwFAYD VQQDEw02OTMyNTJiOS05MTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxwmXiZyFEKKtamv8Q27otO0G/uH+bjwx5qhRWjx9ptMSBFkRe29oYJKoKWK E4TzB4Qf25uGqigr3pd6NYuF1MYeMbH5ozXbvPczjnjgf8ffwHJJPwd1peGmO99M DpRSo2WyoU8Qx9zCTHL5DwAdK0DuooUmN+M4TbwIDmBrvexqZbP1zjVx8VLKpRob lWKhzOYm4xo1/leIto5s+eWnwroJxKjo29Oz0D9gM9IqCNIflOTP4GuayqWq+XkL KBT8VZ3eO1H9Fm8N2l2r6PcWkW3zCRpbeqQNNQzuEXDgFFymPR9x5QY2BPj1cpwB lrDjvyclGBTbG+zFQba9irB8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtU+r6/ UUsr+PlWWOP+49hrXhnGMB8GA1UdIwQYMBaAFN1XRg8MEr4FRhOi9ClnsH2laHvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjZEQy81QTE4MkM3Qzg1 MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3ZnVkdFNkwwS1dld2ZhVm9l X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2VfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjZEQy81QTE4MkM3Qzg1MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3Zn VkdFNkwwS1dld2ZhVm9lX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiIkAkiJAMayAThKmiDdIr9o94XKtTWWj2546q+z5DLHvmdOpM0c9i 9YUSuh2nRucy97ebSq7t+UaN+lXgVnYWyped+Yy6EVwrmSn4QxgawPeN5Uhy8eIf RlTsu4zF34RDMkHsoQhV+rZjezpZa21w3zWkN2sOuACELvSqb5ygj8JX0a1HDYjo s0DtMBgP0sAj4m152fzxXRXt2E4b0VpEhEnsw0b98p7seSn6Vra2BYlazjjGI8lI STwcN8DGEBN7Q+nqGQBAAUFkVkskZFYqUgPm2I7djN3Dk4s9gyUG7s/5jdEGCdl7 optk9sqq/f2v2oNexVxoXrJ06MYhpoI/ -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:32 2025 by rpki-client