This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: 8rfD1B1Ae2/6jycoqK7UN0O/l3REdnGcwkSMwkBgQn4= Subject key identifier: D5:FB:D9:FC:D0:F9:E6:64:17:5D:8B:BB:FF:A6:1B:6E:F1:01:87:4F Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 0360 Signing time: Thu 04 Dec 2025 23:20:51 +0000 Manifest this update: Thu 04 Dec 2025 23:20:50 +0000 Manifest next update: Thu 11 Dec 2025 23:20:50 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: 0Rw5z9G53Gxmta88CftTf51zT9PEu3A4sw0D6gptz7g=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: BkyDK7N8MqPzb7yz7N5nQ1LHqHZV+xDxLFOlL/0hv/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Dec 4 23:20:50 2025 GMT Not After : Dec 11 23:20:50 2025 GMT Subject: CN=69321753-71f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:cb:74:d6:e7:b1:48:00:0d:00:d9:d6:c6:10: 0a:ca:69:a2:3c:06:ff:35:b7:2a:e5:1b:ca:1a:06: 79:99:71:57:06:be:07:70:fa:ec:83:db:40:ed:d3: f1:99:7e:56:50:d5:3e:25:75:72:59:fc:5b:c8:18: 61:b5:c2:34:76:41:3e:dd:29:ab:a3:22:fd:5a:98: d7:bd:9a:aa:fe:d0:b6:b6:aa:2c:22:1f:e5:b3:99: 5a:a1:32:0a:2f:6f:eb:91:a7:e9:de:31:c2:cd:76: fe:2f:f8:43:f9:67:d0:91:b8:f5:c4:25:14:59:34: d5:45:46:24:61:05:7e:4c:7b:8a:8b:59:ca:dd:19: aa:49:ba:b2:d0:b0:9f:55:78:bb:51:00:19:a6:8f: 37:fd:88:76:e4:e2:06:2e:0f:5b:d6:15:c9:d8:44: f9:c4:3b:ac:87:17:1d:86:3f:55:27:2e:ea:d4:6d: 68:44:6b:c3:9d:ad:a1:c7:ec:71:80:04:94:80:f1: 44:d9:74:ab:dd:c0:e2:c7:86:e9:fa:2b:b4:61:b2: 64:96:7d:2b:8c:bc:b2:13:1f:d0:b8:e3:c9:a5:82: 34:16:00:1a:a9:00:b6:30:30:3f:5e:a2:04:ef:56: 07:4c:69:19:11:14:67:3b:bd:78:0d:a4:61:17:42: c9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:FB:D9:FC:D0:F9:E6:64:17:5D:8B:BB:FF:A6:1B:6E:F1:01:87:4F X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:3f:04:fa:18:e5:3d:a7:fc:f9:11:c6:88:a8:95:ac:1e:83: 8a:f8:f3:0b:2a:04:4d:b6:ea:74:ae:77:b7:d1:3f:c3:c6:27: e6:e0:e1:8d:95:32:5c:86:69:a2:cc:eb:9b:f7:d5:2b:d7:0e: 49:ea:17:48:6f:0d:f3:e8:3b:6f:73:56:5f:5b:dd:91:5d:b9: 5d:03:88:55:cf:17:1a:08:e1:59:ba:fe:2e:4b:73:e6:41:cb: 1a:fb:9f:1a:36:41:f7:1c:fa:1d:5b:83:7a:2e:77:9b:5b:de: c7:46:d6:70:e4:20:43:54:2c:48:92:0b:74:c6:83:9e:7b:20: a9:42:a9:ae:b0:fa:82:52:e4:d5:a4:c5:c6:61:6d:34:6f:ed: 65:71:9a:40:ab:d1:fa:b3:fa:4d:91:24:ca:02:ec:5a:a9:6b: 30:6c:ac:24:0d:ba:5b:59:29:b1:98:04:cc:5a:b5:3b:f9:11: 90:3e:d4:25:f1:63:22:a6:34:cb:ec:9b:19:3d:7e:69:e6:b5: cf:2e:86:13:6a:de:aa:3f:8c:b3:02:a4:48:3d:f9:97:d8:b5: 8d:ab:f2:7e:49:2d:ad:75:2a:91:d4:68:a0:4b:d5:83:e1:e9: 1b:03:0f:08:ff:65:70:63:a2:7c:0d:ad:71:2c:21:8d:76:85: dd:10:13:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjUxMjA0MjMyMDUwWhcNMjUxMjExMjMyMDUwWjAYMRYwFAYD VQQDEw02OTMyMTc1My03MWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8t01uexSAANANnWxhAKymmiPAb/Nbcq5RvKGgZ5mXFXBr4HcPrsg9tA7dPx mX5WUNU+JXVyWfxbyBhhtcI0dkE+3SmroyL9WpjXvZqq/tC2tqosIh/ls5laoTIK L2/rkafp3jHCzXb+L/hD+WfQkbj1xCUUWTTVRUYkYQV+THuKi1nK3RmqSbqy0LCf VXi7UQAZpo83/Yh25OIGLg9b1hXJ2ET5xDushxcdhj9VJy7q1G1oRGvDna2hx+xx gASUgPFE2XSr3cDix4bp+iu0YbJkln0rjLyyEx/QuOPJpYI0FgAaqQC2MDA/XqIE 71YHTGkZERRnO714DaRhF0LJMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNX72fzQ +eZkF12Lu/+mG27xAYdPMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8PwT6GOU9p/z5EcaIqJWsHoOK+PMLKgRNtup0rne30T/Dxifm4OGN lTJchmmizOub99Ur1w5J6hdIbw3z6Dtvc1ZfW92RXbldA4hVzxcaCOFZuv4uS3Pm Qcsa+58aNkH3HPodW4N6LnebW97HRtZw5CBDVCxIkgt0xoOeeyCpQqmusPqCUuTV pMXGYW00b+1lcZpAq9H6s/pNkSTKAuxaqWswbKwkDbpbWSmxmATMWrU7+RGQPtQl 8WMipjTL7JsZPX5p5rXPLoYTat6qP4yzAqRIPfmX2LWNq/J+SS2tdSqR1GigS9WD 4ekbAw8I/2VwY6J8Da1xLCGNdoXdEBPM -----END CERTIFICATE-----Generated at Sat Dec 6 20:41:58 2025 by rpki-client