This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: znAV15JfiYyw5Hex8CuqR8w3QAh5EJ8n31ymLcZzzis= Subject key identifier: 0E:13:A8:C2:F1:B3:79:DB:25:75:51:8F:1C:85:4F:CF:BF:A1:56:BB Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 01CD Signing time: Fri 05 Dec 2025 01:10:29 +0000 Manifest this update: Fri 05 Dec 2025 01:10:28 +0000 Manifest next update: Fri 12 Dec 2025 01:10:28 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: MhP4N7t3tQC8SiXupdPOM988+a2u1uGhRO2xxj+8CQE=) 2: CD1C75D8B98A11F0A26C3854C4F9AE02.roa (hash: sHy0AwVAJBGq/EKm3rJjAjZHwe3udG3yQF07jGTCj2A=) 3: 4F9AF642C51611F0BA6C053AC4F9AE02.roa (hash: 1AbjCtqD4u+7KGjGOPMS77dj4rUPYp5rnx5ZMf73E1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Dec 5 01:10:28 2025 GMT Not After : Dec 12 01:10:28 2025 GMT Subject: CN=69323105-b4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:6b:69:63:9d:1c:31:63:b8:01:77:15:3d: 6d:96:93:60:89:96:9b:7a:da:0b:cd:21:b2:c0:d0: 7a:10:41:a9:3c:28:df:79:8d:61:75:6c:03:7c:71: 81:a5:62:73:02:49:99:d1:97:91:72:fd:23:7a:81: a4:11:fb:fd:b1:31:fb:6b:0a:11:3a:35:19:4a:f7: 27:02:24:d0:63:08:66:78:5a:e9:8e:91:39:2a:1d: 71:5d:f7:98:8c:28:ef:5d:eb:dd:65:22:8e:8a:c5: 8a:e3:5c:16:f5:d6:48:2b:49:b7:71:88:90:72:6a: e0:6d:fa:1b:93:e7:ab:f7:bb:a2:44:69:26:49:67: 04:bc:16:d1:b3:8d:a0:65:63:7a:0a:bf:37:3a:6d: 6c:80:b6:e3:50:df:84:c3:ad:59:11:2e:9a:8e:31: 9d:c6:7f:f2:19:e3:c5:86:0a:5c:2b:49:80:38:f6: e0:20:40:a7:3a:9a:d3:23:77:ac:9e:12:c4:45:cb: 6a:45:d0:7a:3e:c6:dd:bc:09:36:b4:27:6d:ab:ed: af:b9:c4:c1:cc:bd:b2:27:5b:96:64:9a:fa:21:c5: 2a:63:9f:96:47:04:94:bc:6d:fa:6e:59:80:31:be: d3:d3:c7:c6:07:fe:46:16:6c:35:5d:dc:e1:b9:02: fd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:13:A8:C2:F1:B3:79:DB:25:75:51:8F:1C:85:4F:CF:BF:A1:56:BB X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:97:d9:fc:c2:83:ec:47:c0:d3:2a:07:78:c5:ab:6c:3f:a2: f7:87:f1:2a:0c:fd:8c:9c:a8:e4:d9:87:e4:89:02:5b:13:d5: 0d:c5:07:84:59:e8:66:ae:ef:25:d2:d4:e3:5c:21:69:70:80: e2:71:f5:ff:89:46:bb:19:47:d3:11:e8:d0:20:3d:23:a1:d8: 7d:58:9a:21:cd:ae:80:96:cb:0c:2a:4a:5a:2b:d7:d8:bd:18: c3:d6:86:fe:ab:75:f6:4d:9c:e9:4c:46:ae:28:15:65:ff:13: 78:d6:44:dd:5d:59:23:90:6b:09:48:7c:c1:5c:b3:c4:89:c2: 8c:4b:0e:86:4d:bf:06:69:ea:1f:21:ee:e9:43:5b:7d:40:d2: 54:75:3a:8e:cd:80:30:43:28:96:a5:88:a8:b0:4b:4f:2e:29: 9d:60:47:c6:93:9c:8d:80:0b:62:ee:a2:c6:cc:fb:2f:1f:ac: 5a:92:55:35:8f:7a:07:e6:78:76:1d:0d:78:a3:46:01:87:28: 7d:4b:73:8d:23:a8:8f:f2:58:f1:cf:45:a4:e3:29:3e:77:93: d7:02:38:90:ae:5b:60:e7:de:11:23:db:42:28:50:b9:c7:e4: 19:ae:df:2e:d4:e6:8d:bb:e2:60:95:93:35:87:3e:d8:53:77: f4:f3:51:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUxMjA1MDExMDI4WhcNMjUxMjEyMDExMDI4WjAYMRYwFAYD VQQDEw02OTMyMzEwNS1iNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0RraWOdHDFjuAF3FT1tlpNgiZabetoLzSGywNB6EEGpPCjfeY1hdWwDfHGB pWJzAkmZ0ZeRcv0jeoGkEfv9sTH7awoROjUZSvcnAiTQYwhmeFrpjpE5Kh1xXfeY jCjvXevdZSKOisWK41wW9dZIK0m3cYiQcmrgbfobk+er97uiRGkmSWcEvBbRs42g ZWN6Cr83Om1sgLbjUN+Ew61ZES6ajjGdxn/yGePFhgpcK0mAOPbgIECnOprTI3es nhLERctqRdB6PsbdvAk2tCdtq+2vucTBzL2yJ1uWZJr6IcUqY5+WRwSUvG36blmA Mb7T08fGB/5GFmw1XdzhuQL9KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4TqMLx s3nbJXVRjxyFT8+/oVa7MB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRl9n8woPsR8DTKgd4xatsP6L3h/EqDP2MnKjk2YfkiQJbE9UNxQeE Wehmru8l0tTjXCFpcIDicfX/iUa7GUfTEejQID0jodh9WJohza6AlssMKkpaK9fY vRjD1ob+q3X2TZzpTEauKBVl/xN41kTdXVkjkGsJSHzBXLPEicKMSw6GTb8Gaeof Ie7pQ1t9QNJUdTqOzYAwQyiWpYiosEtPLimdYEfGk5yNgAti7qLGzPsvH6xaklU1 j3oH5nh2HQ14o0YBhyh9S3ONI6iP8ljxz0Wk4yk+d5PXAjiQrltg594RI9tCKFC5 x+QZrt8u1OaNu+JglZM1hz7YU3f081GF -----END CERTIFICATE-----Generated at Sat Dec 6 22:11:59 2025 by rpki-client