This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: pVv06rFqUEHwNIWqEni98kW4hudlwBG1XH9/autQioM= Subject key identifier: 02:9E:89:78:CD:F3:17:2C:6F:BD:CC:86:FD:7A:32:26:75:19:1A:60 Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: 9B Signing time: Fri 05 Dec 2025 04:21:20 +0000 Manifest this update: Fri 05 Dec 2025 04:21:19 +0000 Manifest next update: Fri 12 Dec 2025 04:21:19 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: fUdZQPXTvYU+JBlizX65T/g0VixI7SPirNGC9aCf2A0=) 2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: SygYrtM3v/MPPC9qe7TYDUy1/kulSQDEnXRN8vMuKwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Dec 5 04:21:19 2025 GMT Not After : Dec 12 04:21:19 2025 GMT Subject: CN=69325dbf-69af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bd:63:0a:d9:1d:81:22:25:c2:c6:91:c4:3c: d6:26:f3:d2:6b:19:87:45:a8:c8:79:f2:ba:e6:16: ab:25:bd:2d:a5:74:f4:fe:d7:39:fd:16:45:ce:a9: 98:a7:98:b2:f9:67:ae:21:61:2b:2e:ae:af:2d:5f: e7:6f:b4:68:7a:eb:71:cd:d7:95:63:1e:23:09:7f: 69:67:e8:f1:28:78:cd:60:21:13:9f:95:67:54:89: 7f:1e:66:a6:9a:7b:09:63:1d:26:f3:fd:16:6e:99: 79:3e:fb:9a:bb:ac:03:b4:c5:1b:84:8d:ce:80:4a: 17:19:b0:b2:9f:70:f8:2d:83:99:2d:dc:0c:4c:5e: 28:61:47:d1:dc:c5:5a:18:44:16:f1:b6:12:d5:85: f7:9f:55:13:ee:54:57:75:12:aa:ba:4b:37:42:25: e0:46:38:e1:7b:9a:33:42:1d:b2:76:e5:59:59:75: 63:e6:cf:ba:20:f3:df:b5:2f:43:00:cd:45:c1:3f: 43:0f:b9:0c:55:df:87:04:b5:90:3a:71:65:6b:f9: 6d:39:78:a2:fb:32:38:9a:df:b4:72:5b:a5:36:7e: 3b:ae:49:15:31:5c:28:3e:06:10:e7:96:34:9b:57: 81:bb:fe:e1:ed:5a:1e:70:e2:56:a9:08:4b:0e:11: 3e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9E:89:78:CD:F3:17:2C:6F:BD:CC:86:FD:7A:32:26:75:19:1A:60 X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b2:8c:4e:27:b7:32:34:0e:97:bc:af:c7:13:10:87:31:fc: 71:a8:32:58:06:05:9a:0b:4f:b5:94:ce:dc:88:2a:75:21:2e: 7f:b8:55:94:5d:25:ee:d8:47:e8:cb:20:ee:42:b2:17:dc:70: 93:4a:3f:e6:4b:e7:f7:76:44:47:0b:c1:f4:9b:98:9f:98:3c: e1:33:40:c7:65:18:9b:f7:f2:a8:7b:9a:87:72:e9:3f:e9:29: f0:61:a7:a6:55:6d:6b:6d:03:83:85:f0:b5:20:5a:0d:cb:a0: 61:1c:e7:86:0a:c0:a5:2a:49:04:bf:f7:6e:32:7c:d1:98:27: 53:d7:59:49:9b:2a:94:86:09:eb:1e:92:4f:e3:3d:6e:67:43: 5a:5e:f0:a5:ee:7a:ab:14:1a:47:4c:b8:67:88:b6:47:5e:78: db:61:2a:9c:e1:5a:9b:4e:b7:df:a7:30:ce:c4:8f:30:72:af: 14:58:f6:d9:49:f6:76:9d:60:c7:82:e5:f6:2a:d1:06:4f:4d: 0e:83:9f:31:ea:eb:db:03:f3:2e:6f:03:18:51:64:bf:21:bb: da:c6:fe:a8:06:4e:e3:e8:4c:ff:28:61:5a:af:4e:34:96:a0: ab:f4:f4:91:3e:ed:cc:c3:a6:1a:cc:f8:89:62:9b:62:5f:b1: 86:81:56:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjUxMjA1MDQyMTE5WhcNMjUxMjEyMDQyMTE5WjAYMRYwFAYD VQQDEw02OTMyNWRiZi02OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw71jCtkdgSIlwsaRxDzWJvPSaxmHRajIefK65harJb0tpXT0/tc5/RZFzqmY p5iy+WeuIWErLq6vLV/nb7RoeutxzdeVYx4jCX9pZ+jxKHjNYCETn5VnVIl/Hmam mnsJYx0m8/0Wbpl5Pvuau6wDtMUbhI3OgEoXGbCyn3D4LYOZLdwMTF4oYUfR3MVa GEQW8bYS1YX3n1UT7lRXdRKquks3QiXgRjjhe5ozQh2yduVZWXVj5s+6IPPftS9D AM1FwT9DD7kMVd+HBLWQOnFla/ltOXii+zI4mt+0clulNn47rkkVMVwoPgYQ55Y0 m1eBu/7h7VoecOJWqQhLDhE+lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKeiXjN 8xcsb73Mhv16MiZ1GRpgMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW LWNwOF9GVzY2bnRoYlpWMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATsoxOJ7cyNA6XvK/HExCHMfxxqDJYBgWaC0+1lM7ciCp1IS5/uFWU XSXu2EfoyyDuQrIX3HCTSj/mS+f3dkRHC8H0m5ifmDzhM0DHZRib9/Koe5qHcuk/ 6SnwYaemVW1rbQODhfC1IFoNy6BhHOeGCsClKkkEv/duMnzRmCdT11lJmyqUhgnr HpJP4z1uZ0NaXvCl7nqrFBpHTLhniLZHXnjbYSqc4VqbTrffpzDOxI8wcq8UWPbZ SfZ2nWDHguX2KtEGT00Og58x6uvbA/MubwMYUWS/Ibvaxv6oBk7j6Ez/KGFar040 lqCr9PSRPu3Mw6YazPiJYptiX7GGgVa7 -----END CERTIFICATE-----Generated at Sat Dec 6 12:23:07 2025 by rpki-client