This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: yUKuEP25W/uTbLXHDCfyK6fG7Z0VPmKqn5/C0YAMIv4= Subject key identifier: 9B:0B:61:D9:3B:13:83:25:7F:A6:E5:4E:19:7A:45:DB:F2:9F:BB:34 Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0CBB Signing time: Thu 04 Dec 2025 17:53:12 +0000 Manifest this update: Thu 04 Dec 2025 17:53:12 +0000 Manifest next update: Thu 11 Dec 2025 17:53:12 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: qkNXxWCJA97lWbQeVMLVT4QMJjcs7KN5iIq66Fn9sm8=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: /Guh9JZ2GlA6fGHvz6IyFArNWYosj9/jyWCo/gIcAcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: Dec 4 17:53:12 2025 GMT Not After : Dec 11 17:53:12 2025 GMT Subject: CN=6931ca88-1c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bd:d3:ac:d7:73:07:66:b7:3d:0f:84:4b:e8: 6e:20:5e:7e:a2:d0:f6:14:73:ec:63:9d:55:bd:61: 8b:bc:f1:b4:ce:5c:1d:82:72:ce:31:84:23:be:b6: f2:e6:a4:fa:a9:a6:2d:84:8e:02:d3:30:46:a7:a5: 31:57:c7:e5:6b:ca:43:15:e5:ba:d3:4d:3c:90:1c: 38:f9:be:4e:82:64:0c:45:6f:45:8b:af:30:5a:c6: dd:f6:50:93:1e:3a:75:52:fd:6b:75:4c:c1:31:91: f8:92:49:0c:cc:17:4d:43:cf:f7:65:3c:35:1a:9a: 51:7a:15:2c:3f:38:96:81:70:94:b7:0d:9e:24:fc: a2:0f:84:7e:19:9f:fc:e7:48:f3:7d:7a:76:81:ce: 89:01:d6:e9:61:c1:f7:41:bd:70:c0:11:95:c8:f5: 7a:d6:55:e3:c0:05:43:9a:fd:25:74:48:13:8b:28: 8d:ba:95:8b:6d:76:f2:fd:08:4f:28:1d:ba:e1:4b: 05:ab:d3:ec:d9:fd:1b:37:95:8d:05:63:12:4c:14: ec:2d:88:8b:a7:ff:72:5a:42:d5:41:9d:4b:a4:fb: c9:f4:03:e5:2f:bb:a7:56:a9:90:5a:97:2c:fb:47: ca:d0:66:f2:5d:99:c7:fc:d1:d7:b0:9d:49:7b:74: 39:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0B:61:D9:3B:13:83:25:7F:A6:E5:4E:19:7A:45:DB:F2:9F:BB:34 X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:44:56:5b:ea:18:db:a5:97:f2:96:20:ff:6d:a1:21:87:84: 97:df:c1:e0:4e:31:96:ef:72:f9:e3:59:6b:b1:f5:86:c7:ea: fd:0b:62:16:ea:68:da:93:73:b2:f7:1e:14:b1:e7:56:9a:7b: a3:cf:d8:d5:29:78:c6:f0:bd:c5:98:8d:fa:cc:b1:81:93:85: 99:6c:92:f7:54:a8:a8:49:38:ec:c3:53:d2:31:70:08:c1:84: d1:14:0a:7c:b8:7e:a6:24:91:e0:d1:77:d8:7a:b6:1c:98:a1: 78:55:a5:cd:3a:ef:88:1f:29:a4:95:b1:07:62:d7:a9:01:75: 88:44:7b:62:39:86:19:49:f2:30:a4:fa:fa:a6:e7:5c:63:c8: 45:c9:85:7f:46:34:de:a7:bd:65:39:aa:27:26:ec:4f:f8:d9: c5:59:57:48:87:d0:2b:bd:34:e9:aa:46:3f:4e:58:4c:23:fc: cc:2d:75:96:31:54:c3:9c:9c:fd:10:a3:c1:8c:1c:91:39:61: 44:0a:d1:4e:3b:49:1c:91:02:67:4a:52:01:70:9d:c0:35:e0: de:f9:22:b1:4a:c4:28:43:92:ff:9d:ff:b2:e8:35:d1:27:27: 0f:9c:25:7f:de:ac:29:49:06:b3:0d:41:93:a8:d3:4e:a1:2b: 71:13:48:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjUxMjA0MTc1MzEyWhcNMjUxMjExMTc1MzEyWjAYMRYwFAYD VQQDEw02OTMxY2E4OC0xYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2L3TrNdzB2a3PQ+ES+huIF5+otD2FHPsY51VvWGLvPG0zlwdgnLOMYQjvrby 5qT6qaYthI4C0zBGp6UxV8fla8pDFeW60008kBw4+b5OgmQMRW9Fi68wWsbd9lCT Hjp1Uv1rdUzBMZH4kkkMzBdNQ8/3ZTw1GppRehUsPziWgXCUtw2eJPyiD4R+GZ/8 50jzfXp2gc6JAdbpYcH3Qb1wwBGVyPV61lXjwAVDmv0ldEgTiyiNupWLbXby/QhP KB264UsFq9Ps2f0bN5WNBWMSTBTsLYiLp/9yWkLVQZ1LpPvJ9APlL7unVqmQWpcs +0fK0GbyXZnH/NHXsJ1Je3Q5hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsLYdk7 E4Mlf6blThl6Rdvyn7s0MB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjRFZb6hjbpZfyliD/baEhh4SX38HgTjGW73L541lrsfWGx+r9C2IW 6mjak3Oy9x4UsedWmnujz9jVKXjG8L3FmI36zLGBk4WZbJL3VKioSTjsw1PSMXAI wYTRFAp8uH6mJJHg0XfYerYcmKF4VaXNOu+IHymklbEHYtepAXWIRHtiOYYZSfIw pPr6pudcY8hFyYV/RjTep71lOaonJuxP+NnFWVdIh9ArvTTpqkY/TlhMI/zMLXWW MVTDnJz9EKPBjByROWFECtFOO0kckQJnSlIBcJ3ANeDe+SKxSsQoQ5L/nf+y6DXR JycPnCV/3qwpSQazDUGTqNNOoStxE0gz -----END CERTIFICATE-----Generated at Sat Dec 6 15:36:44 2025 by rpki-client