This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: tByUgVZayr++tElDUATqRdGUvgUfsWRaU6KoOmEs3bM= Subject key identifier: B5:D2:C8:EB:C2:D9:E0:C9:0C:79:1D:E0:9E:0E:91:F9:6B:C0:75:37 Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 01A2 Signing time: Fri 05 Dec 2025 01:36:57 +0000 Manifest this update: Fri 05 Dec 2025 01:36:56 +0000 Manifest next update: Fri 12 Dec 2025 01:36:56 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: 51XHKRJ1fXKvUVZDz7/z6aQyE5JS2cEQN1f3FxmnYok=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: 5aNVVXrrk5+fzIwBo8UDYAZxVOdmHrz5HqTDIZHkN8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Dec 5 01:36:56 2025 GMT Not After : Dec 12 01:36:56 2025 GMT Subject: CN=69323738-b1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0a:c0:bd:38:c6:b1:3f:87:b8:13:a9:bc:22: 7b:b6:7b:0a:d2:a7:8d:71:c0:82:bb:e1:e2:3c:13: 1a:00:3c:48:e5:2c:8a:fc:e6:1b:c1:d1:f4:e6:2d: 4f:90:56:d2:69:05:8c:11:4d:62:b3:0a:a3:8b:b7: 08:3b:1c:12:b3:21:14:19:21:34:9c:1c:11:7c:46: f4:92:d9:91:a3:e8:28:ba:43:fb:56:c1:06:3e:7d: dc:79:5a:53:76:ef:c3:5a:e7:ca:40:d8:30:bb:f1: 19:b5:fe:74:db:96:c7:17:39:49:2c:99:68:f2:42: 06:4c:a5:5e:30:6e:ff:ae:92:f6:bb:f2:fc:0c:20: db:14:cb:e6:c3:ae:a4:41:58:f3:91:58:d9:92:1e: d4:20:df:fb:e5:9b:58:9d:85:66:1a:a1:d3:cd:50: 8f:f9:09:be:25:cd:21:61:9d:dc:c3:75:0e:cc:5b: d0:f1:9b:99:5d:0f:f4:92:37:b3:20:8d:39:67:07: f3:c4:16:7f:9c:ae:08:d6:f8:4a:de:e0:95:29:bd: 68:c1:36:c1:c5:cb:70:83:ae:6b:aa:da:52:6c:6d: e4:c9:ef:9b:fa:5e:7f:6b:90:73:68:3c:f4:a5:a8: cd:0c:a1:65:5f:fc:e1:22:50:be:7f:03:76:af:c5: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D2:C8:EB:C2:D9:E0:C9:0C:79:1D:E0:9E:0E:91:F9:6B:C0:75:37 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:4e:c5:45:69:6d:09:0d:5d:d6:83:b0:69:35:25:60:79:17: 03:a1:13:93:b6:a9:00:e9:d3:5a:0b:47:cc:2c:d9:a9:3f:15: 0f:09:ae:27:39:1f:13:c0:eb:be:d0:48:20:89:92:82:3a:e5: 34:9f:71:b6:29:c0:01:f5:8a:16:fb:4d:cd:3c:77:4c:fb:a6: 41:f4:0f:b5:ef:74:f7:be:1b:81:d7:46:f5:7c:88:d1:cf:c5: 38:66:c7:95:f0:64:e1:bd:ba:ae:ce:71:dd:11:9b:fe:19:9c: 18:46:c0:42:68:20:6e:e4:a2:83:3f:f2:ef:34:54:25:e5:10: c8:ee:c6:90:f4:da:2e:a1:eb:5b:7b:75:c3:83:3a:2d:03:b7: 0b:74:67:98:31:c2:b5:02:06:b0:7b:c9:71:b5:ae:7a:fc:64: 01:bb:65:de:93:ac:55:3a:85:da:c5:36:5b:49:55:84:28:0c: 1c:86:af:34:66:ea:c2:a6:79:17:08:31:26:b3:61:9d:0d:3a: 4c:3f:d2:62:db:6d:0c:85:cf:d2:94:54:29:12:20:13:ce:c8: c0:fc:ae:35:99:f7:6d:5c:cf:bd:54:e9:4a:f8:dc:55:bf:dd: 03:24:2a:d7:f6:c2:79:33:24:53:07:1b:50:73:2d:81:2e:4a: b1:d8:ee:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMjA1MDEzNjU2WhcNMjUxMjEyMDEzNjU2WjAYMRYwFAYD VQQDEw02OTMyMzczOC1iMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2grAvTjGsT+HuBOpvCJ7tnsK0qeNccCCu+HiPBMaADxI5SyK/OYbwdH05i1P kFbSaQWMEU1iswqji7cIOxwSsyEUGSE0nBwRfEb0ktmRo+goukP7VsEGPn3ceVpT du/DWufKQNgwu/EZtf5025bHFzlJLJlo8kIGTKVeMG7/rpL2u/L8DCDbFMvmw66k QVjzkVjZkh7UIN/75ZtYnYVmGqHTzVCP+Qm+Jc0hYZ3cw3UOzFvQ8ZuZXQ/0kjez II05ZwfzxBZ/nK4I1vhK3uCVKb1owTbBxctwg65rqtpSbG3kye+b+l5/a5BzaDz0 pajNDKFlX/zhIlC+fwN2r8UohQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXSyOvC 2eDJDHkd4J4OkflrwHU3MB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSTsVFaW0JDV3Wg7BpNSVgeRcDoROTtqkA6dNaC0fMLNmpPxUPCa4n OR8TwOu+0EggiZKCOuU0n3G2KcAB9YoW+03NPHdM+6ZB9A+173T3vhuB10b1fIjR z8U4ZseV8GThvbquznHdEZv+GZwYRsBCaCBu5KKDP/LvNFQl5RDI7saQ9Nouoetb e3XDgzotA7cLdGeYMcK1Agawe8lxta56/GQBu2Xek6xVOoXaxTZbSVWEKAwchq80 ZurCpnkXCDEms2GdDTpMP9Ji220Mhc/SlFQpEiATzsjA/K41mfdtXM+9VOlK+NxV v90DJCrX9sJ5MyRTBxtQcy2BLkqx2O7N -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:14 2025 by rpki-client