This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: tftKL7PGOOEEwF1z3H5134nhiR+4zA7x5adj++Ai1LY= Subject key identifier: 08:3C:1E:F9:B0:FC:83:03:5A:91:73:0D:88:CD:3C:27:A0:77:6E:36 Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0AEB Signing time: Sat 06 Dec 2025 18:58:11 +0000 Manifest this update: Sat 06 Dec 2025 18:58:10 +0000 Manifest next update: Sat 13 Dec 2025 18:58:10 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: IcNiMmqSipVQVrrErhri+UFyUCXaakkfGWBRVMdhgxU=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: bxEMXPw0Uf6AR6ksTo+EYnAV7IQpuoAnSjrI4XOmEWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Dec 6 18:58:10 2025 GMT Not After : Dec 13 18:58:10 2025 GMT Subject: CN=69347cc2-02a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c4:77:70:81:fb:a5:37:26:57:ed:ee:44:f7: 07:53:a2:12:a3:86:ae:0d:a0:eb:77:e4:2a:7a:8d: ed:e8:ac:c2:c5:57:f1:4a:52:fd:d3:b6:b3:da:12: ec:18:4e:7e:c0:00:82:6e:9c:0c:74:a9:96:d4:21: d0:5c:3e:60:8d:2d:03:ad:29:8a:34:bf:af:bd:c7: 0f:ff:32:91:8c:39:e2:1d:cb:09:f7:86:dc:cf:a2: 6f:0f:9c:2c:a0:74:f4:f7:7e:76:5c:09:f3:c2:82: 71:b6:b7:df:12:85:3d:ea:60:19:66:37:89:3a:05: 18:d2:6c:07:9a:61:3c:84:7a:a2:c7:ac:a6:a0:f6: 95:43:7d:1e:2b:74:07:76:b1:99:7d:b3:11:0f:38: dd:09:7b:7f:72:ed:da:4e:66:6d:cf:b0:54:11:50: 93:3c:ab:4d:f6:9a:95:0d:c2:87:d3:19:ad:a5:16: a1:32:d8:c5:f4:46:ec:00:94:9f:39:45:6b:dc:81: 2d:ad:0d:a1:26:5c:11:aa:92:c3:dc:63:ef:2e:5a: 72:cd:ab:68:e6:1c:79:b4:d4:19:30:24:04:d0:c8: 7c:a5:a9:ff:84:f1:f9:6e:20:bd:c5:cf:a7:af:0b: f4:06:20:e0:b5:2e:df:c1:88:5d:32:fc:83:af:30: a7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:3C:1E:F9:B0:FC:83:03:5A:91:73:0D:88:CD:3C:27:A0:77:6E:36 X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fe:cf:cc:95:cc:5b:9e:4b:6f:97:a6:de:aa:fb:aa:3a:81: c4:f1:d5:94:80:c0:eb:6e:99:22:1c:f4:86:12:12:d3:87:cd: 91:c3:bb:ee:a2:47:6a:7f:61:70:79:73:58:59:32:57:4c:9d: 59:a2:1e:00:85:2f:78:0c:90:cb:b0:69:8c:4e:f5:11:3c:d1: 1a:de:6b:21:43:7c:b2:99:4c:4d:ec:9e:ee:89:d3:97:ed:17: 78:89:6c:e1:a2:62:d4:5e:9b:2b:6c:bd:8b:b7:0b:20:ef:16: 07:6c:a2:fd:82:2a:95:6b:3d:3a:b5:84:17:8e:6b:43:57:88: ac:6b:81:49:d9:c0:86:e3:ef:1f:3d:45:7e:fd:b6:e9:bc:05: 3f:85:f4:4b:eb:a1:03:22:ea:76:0e:50:09:fb:fe:11:7c:b9: d7:66:14:a9:99:c0:3e:50:3c:e7:97:48:f2:86:23:2b:e1:e3: 24:5b:9f:12:30:74:41:fb:88:11:a0:40:71:9f:7e:e9:8d:f2: 88:8f:8c:50:76:bd:5b:a0:30:e3:c9:62:48:22:f3:15:95:1c: 43:8d:7c:35:a9:29:b6:5f:8e:5b:62:62:8c:ce:36:4b:0c:c3: b1:15:57:67:d5:58:56:99:03:2b:7d:dd:ee:fa:3a:bc:1e:8f: 06:d1:fb:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKERFNENFOTYwQTM5MzBBQjRDMjI3RkNFOEY4NTdDMDg0 MTk3RjA4RDAwHhcNMjUxMjA2MTg1ODEwWhcNMjUxMjEzMTg1ODEwWjAYMRYwFAYD VQQDEw02OTM0N2NjMi0wMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMR3cIH7pTcmV+3uRPcHU6ISo4auDaDrd+Qqeo3t6KzCxVfxSlL907az2hLs GE5+wACCbpwMdKmW1CHQXD5gjS0DrSmKNL+vvccP/zKRjDniHcsJ94bcz6JvD5ws oHT09352XAnzwoJxtrffEoU96mAZZjeJOgUY0mwHmmE8hHqix6ymoPaVQ30eK3QH drGZfbMRDzjdCXt/cu3aTmZtz7BUEVCTPKtN9pqVDcKH0xmtpRahMtjF9EbsAJSf OUVr3IEtrQ2hJlwRqpLD3GPvLlpyzato5hx5tNQZMCQE0Mh8pan/hPH5biC9xc+n rwv0BiDgtS7fwYhdMvyDrzCnsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAg8Hvmw /IMDWpFzDYjNPCegd242MB8GA1UdIwQYMBaAFN5M6WCjkwq0wif86PhXwIQZfwjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENyVENKX3pvLUZmQWhCbF9D TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENy VENKX3pvLUZmQWhCbF9DTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt/s/Mlcxbnktvl6beqvuqOoHE8dWUgMDrbpkiHPSGEhLTh82Rw7vu okdqf2FweXNYWTJXTJ1Zoh4AhS94DJDLsGmMTvURPNEa3mshQ3yymUxN7J7uidOX 7Rd4iWzhomLUXpsrbL2Ltwsg7xYHbKL9giqVaz06tYQXjmtDV4isa4FJ2cCG4+8f PUV+/bbpvAU/hfRL66EDIup2DlAJ+/4RfLnXZhSpmcA+UDznl0jyhiMr4eMkW58S MHRB+4gRoEBxn37pjfKIj4xQdr1boDDjyWJIIvMVlRxDjXw1qSm2X45bYmKMzjZL DMOxFVdn1VhWmQMrfd3u+jq8Ho8G0fua -----END CERTIFICATE-----Generated at Sun Dec 7 02:56:15 2025 by rpki-client