This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: 8S0GqP82PkP+XsfZnZ2ft2OmooG5Tx4LwmRqmEeP6hA= Subject key identifier: D0:FC:70:E1:AE:A1:53:E4:D1:8E:C5:81:BE:75:6D:AB:7B:E1:E6:E2 Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 0A56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 0A4F Signing time: Thu 04 Dec 2025 18:58:07 +0000 Manifest this update: Thu 04 Dec 2025 18:58:06 +0000 Manifest next update: Thu 11 Dec 2025 18:58:06 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: XYHiLN+sXEd+B0dqDVSZlSrohR93qal/YYSsk2nG8vk=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: zi/2a7j2lYedIWZB1ZQVEfFe/URKlsQ3C6l5x+UUMmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2646 (0xa56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: Dec 4 18:58:06 2025 GMT Not After : Dec 11 18:58:06 2025 GMT Subject: CN=6931d9bf-286a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:2a:f4:2d:92:52:cc:3c:f7:da:48:41:6d: 47:87:25:49:cf:3e:a9:47:6d:ba:38:f7:77:e9:00: 42:20:86:61:1a:5f:cc:0e:e0:3b:92:44:b3:56:b5: 79:f0:af:01:7a:29:76:d6:a5:80:73:af:e2:e6:10: f6:f3:5c:f7:8b:49:47:d6:85:da:38:d6:14:3e:2d: 9b:2a:00:a4:1b:45:07:81:77:c9:0e:16:f6:76:a9: b2:16:64:84:16:05:49:a1:cb:63:fe:dc:7c:17:31: da:f6:f6:44:8f:fe:5a:8e:ad:1d:4e:1c:fe:44:45: f7:ec:a3:8a:d7:05:d3:7c:52:a1:14:86:ad:2b:0d: 8f:1b:90:65:d9:0f:80:49:11:bf:30:61:3a:f1:7b: 1c:38:24:fb:4c:ca:56:cc:ae:d4:a5:8c:9f:06:b8: 8f:e7:87:ca:f5:bb:b9:4c:46:da:52:59:4b:6b:24: e6:0d:08:5f:63:ce:51:ee:72:34:1b:d3:be:4f:fa: da:73:66:b1:a0:b9:cd:df:ee:dc:0b:cb:e2:eb:d0: 60:14:e3:f4:cf:74:69:ce:cf:a6:77:0c:99:48:60: 33:32:1f:01:fe:44:85:e0:d4:49:1e:ac:2a:4b:e2: ee:58:31:4c:b1:87:38:98:cd:82:fc:29:07:96:95: f2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FC:70:E1:AE:A1:53:E4:D1:8E:C5:81:BE:75:6D:AB:7B:E1:E6:E2 X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c6:2f:05:6d:f4:6a:af:a3:ed:f3:69:e8:6e:7c:95:04:31: a1:1e:9c:06:85:bc:39:12:48:64:dc:68:d0:3f:be:b2:23:cd: 65:9b:ec:49:10:06:96:c4:64:f6:e8:51:be:9d:a9:96:d4:58: b3:6c:68:37:70:28:a2:c8:6f:7f:29:3d:38:2e:6d:7e:ca:51: 0c:51:52:50:c9:c5:70:df:97:c1:95:74:8e:84:4c:94:62:be: 7d:d6:5a:41:06:35:ff:d5:41:ad:67:b7:95:58:19:66:10:e7: 2b:2b:0b:bd:64:54:c4:67:d7:f5:2a:51:e8:62:b0:4a:95:73: 47:4b:92:32:16:e0:a4:3a:68:84:2c:b3:88:1f:ee:69:b5:ad: 6b:89:87:69:30:53:d4:85:46:aa:d5:78:9b:81:21:d2:1a:c3: 07:8f:11:ec:d3:cb:6f:ae:53:b3:d5:26:bf:56:8b:e1:3c:2b: a2:bb:ff:be:09:13:f8:e6:2c:71:43:06:b1:fd:c1:6c:e3:35: db:d0:cf:c9:9d:55:55:96:d4:0b:74:15:d8:77:d4:29:bd:ce: 2d:32:f1:f4:48:63:26:ad:e3:c5:27:d7:ea:02:4e:ab:22:03: 94:99:7e:0a:a2:10:ab:c7:8a:41:10:e5:88:0c:d6:94:0d:e8: 83:dc:dc:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjUxMjA0MTg1ODA2WhcNMjUxMjExMTg1ODA2WjAYMRYwFAYD VQQDEw02OTMxZDliZi0yODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrsq9C2SUsw899pIQW1HhyVJzz6pR226OPd36QBCIIZhGl/MDuA7kkSzVrV5 8K8Beil21qWAc6/i5hD281z3i0lH1oXaONYUPi2bKgCkG0UHgXfJDhb2dqmyFmSE FgVJoctj/tx8FzHa9vZEj/5ajq0dThz+REX37KOK1wXTfFKhFIatKw2PG5Bl2Q+A SRG/MGE68XscOCT7TMpWzK7UpYyfBriP54fK9bu5TEbaUllLayTmDQhfY85R7nI0 G9O+T/rac2axoLnN3+7cC8vi69BgFOP0z3Rpzs+mdwyZSGAzMh8B/kSF4NRJHqwq S+LuWDFMsYc4mM2C/CkHlpXyqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND8cOGu oVPk0Y7Fgb51bat74ebiMB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwxi8FbfRqr6Pt82nobnyVBDGhHpwGhbw5Ekhk3GjQP76yI81lm+xJ EAaWxGT26FG+namW1FizbGg3cCiiyG9/KT04Lm1+ylEMUVJQycVw35fBlXSOhEyU Yr591lpBBjX/1UGtZ7eVWBlmEOcrKwu9ZFTEZ9f1KlHoYrBKlXNHS5IyFuCkOmiE LLOIH+5pta1riYdpMFPUhUaq1XibgSHSGsMHjxHs08tvrlOz1Sa/VovhPCuiu/++ CRP45ixxQwax/cFs4zXb0M/JnVVVltQLdBXYd9Qpvc4tMvH0SGMmrePFJ9fqAk6r IgOUmX4KohCrx4pBEOWIDNaUDeiD3Nyf -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:56 2025 by rpki-client