This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: 24ghJ8jj7g1k1OJY7XMx32wY0F+k9WQnloJjJY9f6DM= Subject key identifier: 3A:E5:B2:77:03:CE:80:4D:19:40:1B:57:91:29:98:89:0A:21:9E:E7 Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: A3 Signing time: Fri 05 Dec 2025 04:15:18 +0000 Manifest this update: Fri 05 Dec 2025 04:15:17 +0000 Manifest next update: Fri 12 Dec 2025 04:15:17 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: EO36SGke3EJHfVsTdKGzH+ZL0F1rSrI2sUvj7LHzo/U=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:15:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: Dec 5 04:15:17 2025 GMT Not After : Dec 12 04:15:17 2025 GMT Subject: CN=69325c56-c0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:99:61:08:3a:1d:66:ed:dd:44:fe:41:35:b1: f3:e0:e7:69:d0:0c:41:71:02:dd:e6:9c:d4:5a:de: 42:1f:46:ef:90:68:74:e9:37:c0:6c:4c:7c:1f:1f: e3:81:0c:ea:05:6e:3c:59:5e:c9:04:eb:89:3e:fd: a6:d1:1c:df:43:ed:89:49:a7:9c:f8:04:ef:a2:f3: 25:66:f2:ea:3d:c9:29:8b:e6:6c:3d:84:ad:c3:0d: 4a:aa:6b:1a:6d:3c:35:c6:f7:b0:46:27:99:e4:1a: bf:9f:cf:6f:cf:66:60:fe:dc:ac:a3:b1:4a:b6:e1: 10:9e:33:b0:ed:38:98:88:3b:e2:a1:af:32:bb:61: 2e:f9:7b:64:a4:88:12:1c:92:61:4a:88:64:03:df: 2a:7f:1a:15:0d:9e:4d:28:a7:a2:3f:02:db:77:00: bf:4a:90:94:b5:3a:94:e9:31:a6:01:0b:9b:75:83: 62:9a:2b:10:c2:f0:a6:1b:33:0b:f2:8b:d3:e0:dc: 64:53:a7:01:76:c4:a6:2c:02:d2:90:43:b2:7d:a8: 89:c8:25:3d:44:a4:4b:1f:6c:6c:55:36:d6:4c:24: 07:01:f5:1d:f7:7c:f6:4f:3a:6b:37:0f:5c:56:7e: da:1c:5c:9d:26:1e:ba:df:9a:a4:3b:10:b6:f7:99: d8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E5:B2:77:03:CE:80:4D:19:40:1B:57:91:29:98:89:0A:21:9E:E7 X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:8a:45:0c:21:a5:cc:0d:f6:9e:12:3a:ba:d8:55:91:a3:b9: ca:32:ad:9c:89:86:d6:fb:04:80:e4:66:9c:3e:de:5c:b7:af: c8:10:ee:6d:f9:6d:00:6c:4c:51:1b:7d:25:36:5e:44:c3:e2: 03:e5:1f:9d:52:4c:22:84:9f:c7:42:6b:f8:96:2b:62:7b:2a: 64:4c:24:fa:63:67:98:62:cc:0c:74:6d:4f:97:7c:de:3a:5e: 69:f3:ed:c9:38:d0:cd:d4:39:2b:bf:8f:2c:ce:b1:f0:da:c1: 58:61:95:8e:a5:c2:e1:80:7e:8f:41:34:7a:44:b2:4d:63:db: b2:df:6d:f0:ce:5e:79:b8:ca:60:c9:af:52:89:bc:75:e0:f5: 49:00:5e:c4:3c:b3:9e:1b:9d:99:27:db:59:b2:dd:1d:ce:9b: 48:a6:7a:33:a0:a4:21:9d:a1:6c:55:27:44:86:89:ef:72:f4: 24:5d:96:ff:33:63:f4:59:bd:b4:19:7d:58:6f:c0:55:ec:25: b4:61:dc:38:46:65:fe:41:50:62:d1:ab:d3:d1:28:c9:25:f0: c5:3b:08:41:83:56:5d:42:1a:5f:88:fb:fe:50:1d:2e:bd:f4: 59:5c:81:f4:14:eb:96:e3:5b:f7:78:77:c4:04:5d:6d:7c:13: d9:f1:df:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDQ5MTM2Njc1RTdFMjM0RTdEMkY4ODQ1OTk4RTJDNjJE QjQ4ODgyQ0EwHhcNMjUxMjA1MDQxNTE3WhcNMjUxMjEyMDQxNTE3WjAYMRYwFAYD VQQDEw02OTMyNWM1Ni1jMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5lhCDodZu3dRP5BNbHz4Odp0AxBcQLd5pzUWt5CH0bvkGh06TfAbEx8Hx/j gQzqBW48WV7JBOuJPv2m0RzfQ+2JSaec+ATvovMlZvLqPckpi+ZsPYStww1Kqmsa bTw1xvewRieZ5Bq/n89vz2Zg/tyso7FKtuEQnjOw7TiYiDvioa8yu2Eu+XtkpIgS HJJhSohkA98qfxoVDZ5NKKeiPwLbdwC/SpCUtTqU6TGmAQubdYNimisQwvCmGzML 8ovT4NxkU6cBdsSmLALSkEOyfaiJyCU9RKRLH2xsVTbWTCQHAfUd93z2TzprNw9c Vn7aHFydJh6635qkOxC295nYIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrlsncD zoBNGUAbV5EpmIkKIZ7nMB8GA1UdIwQYMBaAFEkTZnXn4jTn0viEWZjixi20iILK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BNzU0RDM4MEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5PZlMtSVJabU9MR0xiU0ln c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BNzU0RDM4MEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5P ZlMtSVJabU9MR0xiU0lnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIikUMIaXMDfaeEjq62FWRo7nKMq2ciYbW+wSA5GacPt5ct6/IEO5t +W0AbExRG30lNl5Ew+ID5R+dUkwihJ/HQmv4litieypkTCT6Y2eYYswMdG1Pl3ze Ol5p8+3JONDN1Dkrv48szrHw2sFYYZWOpcLhgH6PQTR6RLJNY9uy323wzl55uMpg ya9Sibx14PVJAF7EPLOeG52ZJ9tZst0dzptIpnozoKQhnaFsVSdEhonvcvQkXZb/ M2P0Wb20GX1Yb8BV7CW0Ydw4RmX+QVBi0avT0SjJJfDFOwhBg1ZdQhpfiPv+UB0u vfRZXIH0FOuW41v3eHfEBF1tfBPZ8d9S -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:39 2025 by rpki-client