This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: SQGMBUMDUMUinMJv0azKOP7e/cn7s6mM+Xc2iB215ZQ= Subject key identifier: 14:56:4B:0F:C3:4D:6C:69:BC:18:89:BF:22:CA:C8:49:89:EF:E6:B3 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B5B Signing time: Sat 06 Dec 2025 18:27:38 +0000 Manifest this update: Sat 06 Dec 2025 18:27:38 +0000 Manifest next update: Sat 13 Dec 2025 18:27:38 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: a1xKTrSRkkPqlgU8gRfGJ63cd316HmGwJZMgAMk8x84=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: 58+0TyNKJb4Dhk7ED+Dg5ahFyoV+/K06n+R45NAzh68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Dec 6 18:27:38 2025 GMT Not After : Dec 13 18:27:38 2025 GMT Subject: CN=6934759a-e080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:24:3e:c4:10:b0:d4:c7:42:a8:ee:6d:8a: 4e:05:6f:4f:9f:4d:eb:a0:45:9e:70:94:1f:77:ac: 9b:71:43:21:73:be:16:a3:b7:5f:ac:ea:b1:0a:a6: f2:73:70:37:23:6c:37:0f:1b:20:4d:95:67:47:c2: 5e:f7:e8:18:21:25:57:ab:27:d2:c6:b5:ce:95:d4: cd:17:e3:37:3a:21:7a:de:4e:55:66:1f:a8:3b:3c: 2c:6e:c1:53:ed:5f:7c:25:5b:c1:72:7b:74:f7:c8: 24:8c:ee:c5:a8:67:83:50:7f:bc:02:a9:98:ba:39: 24:b9:8d:39:03:8e:d1:1c:c6:fb:24:88:3e:69:67: b3:d4:18:10:04:3c:46:3a:00:55:90:da:ee:25:a1: ee:96:6a:fe:33:d5:e0:0d:89:30:7b:4b:4f:ba:14: 40:7a:5d:94:dd:f2:86:38:0e:be:99:46:41:28:72: 6b:09:36:fa:be:93:d3:0f:e2:ef:43:2a:fc:d3:db: 4a:b7:9d:f4:d2:30:0c:ab:7b:13:58:75:83:6a:c4: 65:7c:cc:1f:e8:ca:c5:cc:e7:4c:8b:fd:ed:4d:e0: 5e:dc:a6:c7:7f:67:98:d5:92:78:da:94:71:82:34: a4:a4:eb:17:3a:bb:bd:fd:ce:bd:84:d8:c0:c8:7b: 25:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:56:4B:0F:C3:4D:6C:69:BC:18:89:BF:22:CA:C8:49:89:EF:E6:B3 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:d5:3a:7a:74:6e:1a:2e:57:e7:50:20:21:cb:2b:3b:90:ef: f6:e5:98:f8:8d:ce:0f:3c:a7:28:4a:cf:ea:eb:3c:18:d7:93: ee:f6:07:cd:f5:0f:00:f1:ae:77:dd:99:53:7b:b9:e0:2f:46: f7:6a:ca:b4:2f:38:70:ae:3f:20:be:63:42:31:a5:ac:94:43: 62:a9:63:58:ef:96:16:86:29:7b:51:b1:95:d4:bc:6d:63:20: 0f:01:1f:59:5b:37:ec:6c:16:d0:e5:56:d5:f4:c2:7f:e1:34: 49:66:75:99:58:90:a5:9b:b4:56:f1:bc:c6:54:fe:ed:36:e5: 25:65:73:45:5e:9a:1c:2e:b9:5b:21:82:6d:71:a3:b3:b4:9f: 50:68:c9:6b:e0:b7:2c:5b:b7:7b:c2:ba:46:e5:04:59:fc:2d: 16:b5:82:c7:a4:7f:04:32:60:aa:d8:32:19:78:77:de:9c:33: c7:05:51:41:ed:83:63:32:b1:dc:8b:a9:a7:99:14:eb:c4:93: ce:35:0e:ec:28:b6:f6:23:1c:79:b3:7f:4f:ec:b2:1b:2f:df: 7b:e6:3e:54:b7:b9:c5:64:df:52:93:b5:7c:2d:16:79:c9:eb: 56:00:28:6b:0f:1e:8c:da:7a:9e:67:bd:b2:82:13:1b:30:9b: 65:9f:a2:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUxMjA2MTgyNzM4WhcNMjUxMjEzMTgyNzM4WjAYMRYwFAYD VQQDEw02OTM0NzU5YS1lMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEwkPsQQsNTHQqjubYpOBW9Pn03roEWecJQfd6ybcUMhc74Wo7dfrOqxCqby c3A3I2w3DxsgTZVnR8Je9+gYISVXqyfSxrXOldTNF+M3OiF63k5VZh+oOzwsbsFT 7V98JVvBcnt098gkjO7FqGeDUH+8AqmYujkkuY05A47RHMb7JIg+aWez1BgQBDxG OgBVkNruJaHulmr+M9XgDYkwe0tPuhRAel2U3fKGOA6+mUZBKHJrCTb6vpPTD+Lv Qyr809tKt5300jAMq3sTWHWDasRlfMwf6MrFzOdMi/3tTeBe3KbHf2eY1ZJ42pRx gjSkpOsXOru9/c69hNjAyHsl0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRWSw/D TWxpvBiJvyLKyEmJ7+azMB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA1Tp6dG4aLlfnUCAhyys7kO/25Zj4jc4PPKcoSs/q6zwY15Pu9gfN 9Q8A8a533ZlTe7ngL0b3asq0Lzhwrj8gvmNCMaWslENiqWNY75YWhil7UbGV1Lxt YyAPAR9ZWzfsbBbQ5VbV9MJ/4TRJZnWZWJClm7RW8bzGVP7tNuUlZXNFXpocLrlb IYJtcaOztJ9QaMlr4LcsW7d7wrpG5QRZ/C0WtYLHpH8EMmCq2DIZeHfenDPHBVFB 7YNjMrHci6mnmRTrxJPONQ7sKLb2Ixx5s39P7LIbL9975j5Ut7nFZN9Sk7V8LRZ5 yetWAChrDx6M2nqeZ72yghMbMJtln6L5 -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:17 2025 by rpki-client