This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft File: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft (raw, json) Hash identifier: YOmQNM2+UOaIdmAzLzwUFPjn1Fq9uHtNsOpF7EK3uBY= Subject key identifier: 34:43:5F:7C:DA:67:BC:BE:B8:D2:E4:6F:37:51:1A:89:14:08:FC:33 Authority key identifier: 49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 Certificate issuer: /CN=A916156D/serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft Manifest number: 59 Signing time: Fri 05 Dec 2025 05:03:04 +0000 Manifest this update: Fri 05 Dec 2025 05:03:04 +0000 Manifest next update: Fri 12 Dec 2025 05:03:04 +0000 Files and hashes: 1: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl (hash: aSQPEAhSwokfJTrKrV85sVqFJvrJESFnIeiDlZVEPuE=) 2: 850105504F3D11F0A0960F7CC4F9AE02.roa (hash: ycoxpKT+DpgcLoAUSWd+EWSk4JnPGKou98k0R1luHMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916156D, serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Validity Not Before: Dec 5 05:03:04 2025 GMT Not After : Dec 12 05:03:04 2025 GMT Subject: CN=69326788-a87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:ae:64:65:d4:58:07:e6:f7:55:e6:cb:09: 6d:93:b5:f9:b6:0d:53:e3:cc:1b:d0:60:a5:8a:55: d6:fb:f3:61:19:9e:e8:e3:c4:f1:eb:26:61:47:3b: 95:70:d0:83:4d:08:8c:56:a8:8a:5c:da:76:43:96: 13:2d:a7:bb:c9:d9:ce:d3:6c:1d:fe:42:1d:00:20: d2:10:0e:92:14:57:d1:69:6e:51:d3:a2:af:a9:c7: ad:8d:05:49:94:21:4e:5c:65:87:70:55:2c:95:bf: 1d:b4:f5:fd:8d:43:ff:97:85:54:95:d2:cb:8f:48: cd:71:39:76:b3:91:35:41:45:e0:a0:b3:c4:e7:b9: 9a:0a:b3:04:62:42:1f:06:72:fe:de:e4:e8:53:38: b7:7b:ee:78:8c:cc:82:d7:ea:bc:d2:2b:4d:b8:07: 0b:52:bb:4f:eb:1d:99:3c:44:66:c4:d1:f7:35:b4: 52:3a:85:8e:aa:ee:54:13:f0:ff:de:47:ae:d8:76: a6:91:28:66:f9:c1:c6:2c:44:9e:b2:c4:a8:38:b9: 39:75:8e:e9:5b:a5:82:1a:4f:6b:33:4a:46:ac:2a: ec:cf:bc:1d:5f:9a:1d:95:0e:d3:f6:a4:51:77:d1: 51:c6:a4:4d:bd:cb:6c:23:3a:18:69:da:03:44:26: 00:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:43:5F:7C:DA:67:BC:BE:B8:D2:E4:6F:37:51:1A:89:14:08:FC:33 X509v3 Authority Key Identifier: keyid:49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:01:51:94:ee:1b:94:17:95:0a:84:5d:0b:90:46:c7:4d:ec: c0:5e:3d:fc:2d:0e:fc:cf:f3:82:25:1c:b4:e3:3d:f4:c3:42: 1a:75:b2:57:7d:5e:c3:c8:02:5b:54:87:ad:50:fe:17:0a:e6: 75:f0:5d:f9:d3:a4:07:6f:f9:ea:ee:5d:1c:da:11:1f:10:32: c2:9d:25:7b:22:a6:8b:2e:c2:a9:86:6e:5a:b4:61:da:e0:34: f3:0b:41:e2:71:1c:12:97:61:6f:22:c1:4d:cc:ad:3a:1d:60: 2d:c3:84:ef:2a:6a:52:1f:76:e7:9b:87:c5:35:79:42:47:d6: ce:0c:55:bf:86:38:49:f7:96:11:39:fc:d5:3b:7c:a0:1b:25: 24:1a:d4:8d:90:24:ac:3e:51:97:b8:15:0e:88:e7:ec:f3:12: 91:73:70:16:6c:62:da:22:c7:c8:2c:45:73:ad:bb:fd:5f:a4: c0:00:77:b3:e9:30:36:a4:bb:4f:99:84:b6:43:41:66:0f:66: 45:85:92:b4:41:1c:ad:a3:49:bb:d2:87:11:b5:f8:8e:74:1f: 60:ec:2a:dc:ca:d1:c3:bb:ad:d2:f5:88:42:41:2f:d7:d4:b2: aa:e6:0a:5a:15:99:f6:c3:b3:fd:8b:31:df:8d:3e:4a:27:a2: 7f:d3:c5:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTU2RDExMC8GA1UEBRMoNDlEREQxRTRDNUE5RkM3NjY2MjZEMkZBM0I2NjM3REE4 MEVBMkZEMjAeFw0yNTEyMDUwNTAzMDRaFw0yNTEyMTIwNTAzMDRaMBgxFjAUBgNV BAMTDTY5MzI2Nzg4LWE4N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTzq5kZdRYB+b3VebLCW2Ttfm2DVPjzBvQYKWKVdb782EZnujjxPHrJmFHO5Vw 0INNCIxWqIpc2nZDlhMtp7vJ2c7TbB3+Qh0AINIQDpIUV9FpblHToq+px62NBUmU IU5cZYdwVSyVvx209f2NQ/+XhVSV0suPSM1xOXazkTVBReCgs8TnuZoKswRiQh8G cv7e5OhTOLd77niMzILX6rzSK024BwtSu0/rHZk8RGbE0fc1tFI6hY6q7lQT8P/e R67YdqaRKGb5wcYsRJ6yxKg4uTl1julbpYIaT2szSkasKuzPvB1fmh2VDtP2pFF3 0VHGpE29y2wjOhhp2gNEJgBnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNENffNpn vL640uRvN1EaiRQI/DMwHwYDVR0jBBgwFoAUSd3R5MWp/HZmJtL6O2Y32oDqL9Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNTZELzdDRDNERUFDNEU4 OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0habUp0TDZPMlkzMm9EcUw5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2QzUjVNV3BfSFptSnRMNk8yWTMyb0RxTDlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NTZELzdDRDNERUFDNEU4OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0ha bUp0TDZPMlkzMm9EcUw5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHkBUZTuG5QXlQqEXQuQRsdN7MBePfwtDvzP84IlHLTjPfTDQhp1sld9 XsPIAltUh61Q/hcK5nXwXfnTpAdv+eruXRzaER8QMsKdJXsiposuwqmGblq0Ydrg NPMLQeJxHBKXYW8iwU3MrTodYC3DhO8qalIfduebh8U1eUJH1s4MVb+GOEn3lhE5 /NU7fKAbJSQa1I2QJKw+UZe4FQ6I5+zzEpFzcBZsYtoix8gsRXOtu/1fpMAAd7Pp MDaku0+ZhLZDQWYPZkWFkrRBHK2jSbvShxG1+I50H2DsKtzK0cO7rdL1iEJBL9fU sqrmCloVmfbDs/2LMd+NPkonon/TxRA= -----END CERTIFICATE-----Generated at Sat Dec 6 15:09:27 2025 by rpki-client