This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: 4vcriTUuzbxp4AzQfPyjskGeQlGUcJgSfZ4NaJq/RZU= Subject key identifier: 87:12:E2:80:23:10:E3:F7:AE:DB:A8:25:29:5D:3A:50:57:64:61:8D Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: A8 Signing time: Fri 05 Dec 2025 04:15:05 +0000 Manifest this update: Fri 05 Dec 2025 04:15:04 +0000 Manifest next update: Fri 12 Dec 2025 04:15:04 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: BvTZxlr4F3hmZ/reVIh2VLfkF7FEJ+US/EriH4nwsUU=) 2: 279A9510AB7811F09488DF65C4F9AE02.roa (hash: 7+ZOvaTWijF19fvrYhrbkrijLyfPn8jaNNPKHW6m280=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Dec 5 04:15:04 2025 GMT Not After : Dec 12 04:15:04 2025 GMT Subject: CN=69325c49-97cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f8:07:72:04:44:a8:51:b5:90:53:97:48:e1: eb:55:5e:80:04:18:a0:c2:13:34:56:c5:af:fa:8e: bb:f1:d1:a1:eb:eb:5d:21:9b:6c:1d:be:8a:c9:e7: 95:56:2c:95:6a:af:35:72:14:c8:aa:06:cb:9e:3a: 6c:50:df:c0:55:5f:24:7e:d4:5b:e1:85:97:13:b3: 12:c5:9e:1a:69:a0:4b:bd:a2:18:d4:c3:ab:0d:f9: f8:7c:b6:e2:85:02:68:8d:1d:8d:33:18:91:90:29: dd:cc:7a:bf:10:6f:da:fb:46:e0:18:3e:c3:bd:cd: 60:04:56:c2:af:b2:b2:8f:a9:bf:56:1a:de:9f:9e: 03:ca:e8:4a:d2:22:45:ce:0e:28:01:5f:4b:1c:05: f8:e0:92:ae:5a:e6:af:7b:b5:5e:61:c7:ac:ca:f3: f1:fd:46:7b:05:bb:36:42:98:15:fa:6a:4f:06:90: 7c:6b:c8:18:56:49:bc:a9:09:30:c5:73:1e:a1:a6: 4c:2d:bf:c2:77:4f:b4:97:03:5e:a3:bf:82:56:de: a5:41:e1:00:e8:3d:6f:9d:8e:25:c8:0d:23:ac:c1: 07:7d:36:90:1b:d7:34:43:2a:18:f0:d6:bb:3b:ec: 15:5d:80:56:de:11:f6:de:a0:90:a1:fe:cd:df:6b: e0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:12:E2:80:23:10:E3:F7:AE:DB:A8:25:29:5D:3A:50:57:64:61:8D X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c9:74:e0:1c:66:c8:48:0d:90:24:48:77:ef:2f:b8:b8:27: 48:f9:81:af:e5:b5:7f:3f:f2:76:12:3c:ef:6e:1d:b2:82:f7: b1:a8:a4:dc:d3:60:5e:fb:00:6b:92:c4:e3:08:70:1d:9d:3f: c9:6c:97:cf:0d:d9:c2:d9:c1:a0:ed:30:6a:c1:c9:f6:9e:f8: 32:c3:73:56:e1:b9:46:06:40:a6:0d:86:6d:84:55:c5:36:f7: b4:3c:fe:76:0f:e1:5b:23:c2:f7:97:bc:93:94:0a:6e:aa:d7: e9:e2:77:d8:05:86:a3:43:a3:d6:b1:2c:33:ad:5d:56:93:b7: 5c:c4:f8:f3:6f:d2:bc:81:c1:80:90:d4:b8:25:71:01:11:43: cd:cb:83:59:f3:9b:5f:04:35:89:39:46:ac:0f:06:22:7f:99: 75:cc:4e:58:d4:dd:8e:8a:f7:23:93:83:46:64:98:d9:76:92: f9:cd:d7:5a:24:85:8b:50:43:bf:83:c6:b8:06:66:a7:53:19: b2:1f:9d:41:f5:6e:47:a3:79:5c:eb:ec:20:0e:51:74:41:ad: 2c:7d:a4:fe:e7:2d:c9:1c:72:0c:cf:49:1a:77:16:bc:30:84: b4:ce:a0:d1:3d:35:b3:96:8a:a2:c8:30:4b:09:65:69:90:ec: 2a:bc:11:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDAzNzg4RUUyQkFFNEQ4MDVFQkNEQ0E2NjE4RTJFQzFB MThBNUM0RTIwHhcNMjUxMjA1MDQxNTA0WhcNMjUxMjEyMDQxNTA0WjAYMRYwFAYD VQQDEw02OTMyNWM0OS05N2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfgHcgREqFG1kFOXSOHrVV6ABBigwhM0VsWv+o678dGh6+tdIZtsHb6KyeeV ViyVaq81chTIqgbLnjpsUN/AVV8kftRb4YWXE7MSxZ4aaaBLvaIY1MOrDfn4fLbi hQJojR2NMxiRkCndzHq/EG/a+0bgGD7Dvc1gBFbCr7Kyj6m/Vhren54DyuhK0iJF zg4oAV9LHAX44JKuWuave7VeYcesyvPx/UZ7Bbs2QpgV+mpPBpB8a8gYVkm8qQkw xXMeoaZMLb/Cd0+0lwNeo7+CVt6lQeEA6D1vnY4lyA0jrMEHfTaQG9c0QyoY8Na7 O+wVXYBW3hH23qCQof7N32vgdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcS4oAj EOP3rtuoJSldOlBXZGGNMB8GA1UdIwQYMBaAFAN4juK65NgF683KZhji7BoYpcTi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CRTdDQUMxMkQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJBWHJ6Y3BtR09Mc0doaWx4 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CRTdDQUMxMkQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJB WHJ6Y3BtR09Mc0doaWx4T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKyXTgHGbISA2QJEh37y+4uCdI+YGv5bV/P/J2Ejzvbh2ygvexqKTc 02Be+wBrksTjCHAdnT/JbJfPDdnC2cGg7TBqwcn2nvgyw3NW4blGBkCmDYZthFXF Nve0PP52D+FbI8L3l7yTlApuqtfp4nfYBYajQ6PWsSwzrV1Wk7dcxPjzb9K8gcGA kNS4JXEBEUPNy4NZ85tfBDWJOUasDwYif5l1zE5Y1N2Oivcjk4NGZJjZdpL5zdda JIWLUEO/g8a4BmanUxmyH51B9W5Ho3lc6+wgDlF0Qa0sfaT+5y3JHHIMz0kadxa8 MIS0zqDRPTWzloqiyDBLCWVpkOwqvBHc -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:36 2025 by rpki-client