This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: qYPqIkbNkb7KXwC3O3ITXN/zSDuiRnFvM64F9KrB8uU= Subject key identifier: 0D:0E:B4:47:8F:00:1C:70:F3:DA:DD:F9:4F:0A:F8:F2:0C:4A:50:7F Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C4C Signing time: Sat 06 Dec 2025 17:59:42 +0000 Manifest this update: Sat 06 Dec 2025 17:59:41 +0000 Manifest next update: Sat 13 Dec 2025 17:59:41 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: BPBhbZepagq+U8+IQnzRcviDjm0OuP43ENhRmSKDTMI=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: LcxIbKxK3jutvAgu3ThkdTt7YT68VEQAWEq5z0WaOxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Dec 6 17:59:41 2025 GMT Not After : Dec 13 17:59:41 2025 GMT Subject: CN=69346f0d-bc35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9b:0f:ac:81:1c:72:55:19:74:26:a6:8a:ba: 38:0b:82:ca:5e:85:ae:8c:84:a5:db:8e:ac:b6:a6: 21:f5:dc:49:09:2b:5e:db:a4:f0:98:4a:ba:1f:35: 68:0d:d9:5e:5c:2c:89:ac:8f:c1:77:b0:91:58:4d: 8a:8b:99:5c:e9:73:ae:7e:a3:49:4c:f4:99:d5:8a: cc:7c:7a:70:1a:13:5f:75:86:78:fc:bc:17:4f:ca: 9f:86:90:d6:9b:36:ce:d8:e4:18:4f:f0:9d:87:a5: bd:93:1a:2a:6d:51:12:6d:df:5e:bc:1f:79:7d:ee: 9d:6b:1c:32:6b:6d:a8:cc:55:2f:69:76:5a:ae:ea: 0f:47:b1:7c:56:fb:9a:96:2b:3f:04:61:8f:06:db: 35:fc:65:36:07:f1:72:bd:61:64:c0:34:9d:00:b8: a4:b6:15:31:a4:c3:9e:95:78:dc:cf:26:65:62:f6: 4b:a1:54:60:99:b4:3e:b1:ad:98:c8:71:d7:ec:69: 5d:8e:07:a7:f8:fa:4f:89:28:a9:15:9b:47:80:f4: d3:40:da:4f:ce:8f:b7:15:d0:0f:e0:c9:cb:bb:83: 90:f4:11:e0:78:e1:48:4d:a1:3f:95:de:ca:16:53: 10:c8:55:10:9d:71:8f:f2:ec:a5:d2:33:1f:05:77: c2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0E:B4:47:8F:00:1C:70:F3:DA:DD:F9:4F:0A:F8:F2:0C:4A:50:7F X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b7:2f:da:fa:a3:b0:f9:0a:9a:5c:16:1e:a8:d4:ef:4f:2b: 58:d0:30:8c:31:86:9f:61:79:02:8e:08:1c:69:17:49:92:07: 42:10:1d:15:95:ec:b5:33:06:a5:87:90:79:5c:49:34:52:ba: 6f:4a:e9:6c:25:ae:69:bc:38:fb:82:85:c5:0b:d1:e8:d3:d7: ae:71:1b:41:2f:51:16:c0:ff:30:f0:b9:8c:68:35:49:48:74: 23:9f:2b:b4:87:2e:7e:8d:e3:97:44:23:71:d0:79:ff:05:41: b9:8d:82:e8:0d:42:53:7e:e9:d6:a0:d6:cf:00:9d:27:38:8b: e7:45:bb:c3:8d:b9:5e:0c:4f:54:79:81:54:42:28:85:1e:91: 36:af:c0:0e:c2:62:aa:e8:ca:6d:57:87:a5:2e:8b:bf:a9:85: 39:17:fd:95:c3:e6:1c:a9:68:3c:fe:08:3d:3f:2f:e2:53:fb: ba:96:c9:a0:e9:e2:6e:f2:b9:40:2c:a2:c2:32:b2:4a:e3:36: 0b:99:9a:73:fa:c3:db:6e:de:62:a1:07:1c:30:7b:dd:a2:05: 61:8e:47:2f:ad:3c:2e:aa:a5:58:19:5d:ca:36:80:81:78:4b: ec:f4:89:c5:aa:b9:06:24:ad:56:20:67:ec:45:c5:2a:32:5a: 2a:21:72:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjUxMjA2MTc1OTQxWhcNMjUxMjEzMTc1OTQxWjAYMRYwFAYD VQQDEw02OTM0NmYwZC1iYzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05sPrIEcclUZdCamiro4C4LKXoWujISl246stqYh9dxJCSte26TwmEq6HzVo DdleXCyJrI/Bd7CRWE2Ki5lc6XOufqNJTPSZ1YrMfHpwGhNfdYZ4/LwXT8qfhpDW mzbO2OQYT/Cdh6W9kxoqbVESbd9evB95fe6daxwya22ozFUvaXZaruoPR7F8Vvua lis/BGGPBts1/GU2B/FyvWFkwDSdALikthUxpMOelXjczyZlYvZLoVRgmbQ+sa2Y yHHX7Gldjgen+PpPiSipFZtHgPTTQNpPzo+3FdAP4MnLu4OQ9BHgeOFITaE/ld7K FlMQyFUQnXGP8uyl0jMfBXfCKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0OtEeP ABxw89rd+U8K+PIMSlB/MB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjty/a+qOw+QqaXBYeqNTvTytY0DCMMYafYXkCjggcaRdJkgdCEB0V ley1Mwalh5B5XEk0UrpvSulsJa5pvDj7goXFC9Ho09eucRtBL1EWwP8w8LmMaDVJ SHQjnyu0hy5+jeOXRCNx0Hn/BUG5jYLoDUJTfunWoNbPAJ0nOIvnRbvDjbleDE9U eYFUQiiFHpE2r8AOwmKq6MptV4elLou/qYU5F/2Vw+YcqWg8/gg9Py/iU/u6lsmg 6eJu8rlALKLCMrJK4zYLmZpz+sPbbt5ioQccMHvdogVhjkcvrTwuqqVYGV3KNoCB eEvs9InFqrkGJK1WIGfsRcUqMloqIXJQ -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:15 2025 by rpki-client