This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: 35pTTMkF5bIAcgkMUPAYiAXiw9EB83C9WZPPuUT/5gA= Subject key identifier: E3:57:79:05:ED:87:A6:AE:06:A1:9C:D3:49:77:8F:C9:78:24:97:ED Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: D3 Signing time: Fri 05 Dec 2025 03:41:06 +0000 Manifest this update: Fri 05 Dec 2025 03:41:06 +0000 Manifest next update: Fri 12 Dec 2025 03:41:06 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: n6wbfBpkx17RqUiXEn2uu9u+Q9N97titvCLdJBPxpec=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Dec 5 03:41:06 2025 GMT Not After : Dec 12 03:41:06 2025 GMT Subject: CN=69325452-fb71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:75:66:0c:cd:ad:75:31:b4:41:ca:1f:ae: 11:d2:c0:bc:e6:89:e9:e5:e8:81:da:8a:6e:98:e0: 90:d7:57:05:59:8d:09:62:ab:4a:81:ea:91:12:9b: 20:ca:2f:f4:85:3a:17:f8:e6:bc:9a:62:09:02:b8: c8:e1:97:14:e7:b7:82:ce:db:e0:e8:01:23:8a:d4: d9:ba:66:55:ed:fa:1e:db:32:c9:84:75:fb:64:05: 44:99:76:f0:a7:61:bd:75:34:b7:3d:cb:9f:f3:82: 93:0c:c3:ce:61:3b:28:4a:67:fa:c0:53:08:74:df: cf:16:64:10:19:18:5b:be:9d:e1:10:48:1e:9d:ce: 3d:58:e7:f8:50:af:67:a1:0a:a6:46:65:2f:c9:fb: f7:cd:67:85:f3:9e:e4:f3:04:d4:34:91:cd:46:d3: af:46:dd:0d:3e:fc:ff:da:8e:cd:f4:12:a6:45:14: f6:d2:9a:2b:40:60:b4:75:cc:ec:ab:d4:49:a7:9c: 12:0c:ca:07:17:22:a2:5f:69:04:47:05:54:35:cc: 94:22:09:2c:e6:15:c1:23:d7:02:9c:32:be:53:db: 7e:9c:d9:57:95:0a:61:b1:a1:75:ac:db:97:ef:9d: 76:6e:29:2a:13:86:46:4e:8c:c6:ee:e3:9d:d1:96: 83:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:57:79:05:ED:87:A6:AE:06:A1:9C:D3:49:77:8F:C9:78:24:97:ED X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:61:dd:4a:b2:57:77:f1:73:49:86:30:f4:34:48:a1:c3:cb: 29:42:b2:d4:1d:9b:90:c8:88:29:d2:5d:0b:59:f8:ba:1f:17: a6:c5:de:d7:19:a0:70:7f:24:12:bc:a9:8a:61:f0:3f:e5:10: d8:9f:a3:5d:b3:b5:95:a2:cf:50:8e:21:ff:29:c9:a5:f5:13: 29:b4:2d:05:4b:a3:27:df:3a:d0:4c:d7:07:d9:44:da:26:7d: 59:9b:4c:cb:0f:d7:f3:df:ac:a7:4f:f4:96:3f:09:d6:65:97: 2b:7f:72:5b:d1:f7:84:2d:82:66:1a:ea:de:b7:7e:fa:61:3d: 4d:93:e8:ea:da:0d:e6:f6:9c:1a:99:a6:42:b5:07:13:59:42: 3b:cd:08:97:c8:94:5a:5f:41:5e:ca:a1:39:17:55:ff:0f:fd: fa:58:c5:00:e1:43:b3:60:9c:4b:d8:9f:eb:34:b8:83:79:02: 0d:bb:29:27:85:67:49:c6:ec:60:6e:ec:6a:56:fc:df:85:fe: 05:ee:ac:5b:4b:ee:db:83:ea:70:82:f9:e1:aa:88:1c:fa:9a: 31:c2:73:41:1c:d9:23:8b:7d:9c:ab:da:4c:8f:b1:01:ab:b6: 4f:ee:4d:2d:16:84:30:fe:ee:88:de:3a:0d:ac:95:50:12:57: 8b:3b:7e:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUxMjA1MDM0MTA2WhcNMjUxMjEyMDM0MTA2WjAYMRYwFAYD VQQDEw02OTMyNTQ1Mi1mYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G51ZgzNrXUxtEHKH64R0sC85onp5eiB2opumOCQ11cFWY0JYqtKgeqREpsg yi/0hToX+Oa8mmIJArjI4ZcU57eCztvg6AEjitTZumZV7foe2zLJhHX7ZAVEmXbw p2G9dTS3Pcuf84KTDMPOYTsoSmf6wFMIdN/PFmQQGRhbvp3hEEgenc49WOf4UK9n oQqmRmUvyfv3zWeF857k8wTUNJHNRtOvRt0NPvz/2o7N9BKmRRT20porQGC0dczs q9RJp5wSDMoHFyKiX2kERwVUNcyUIgks5hXBI9cCnDK+U9t+nNlXlQphsaF1rNuX 7512bikqE4ZGTozG7uOd0ZaDxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONXeQXt h6auBqGc00l3j8l4JJftMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Yd1Ksld38XNJhjD0NEihw8spQrLUHZuQyIgp0l0LWfi6Hxemxd7X GaBwfyQSvKmKYfA/5RDYn6Nds7WVos9QjiH/Kcml9RMptC0FS6Mn3zrQTNcH2UTa Jn1Zm0zLD9fz36ynT/SWPwnWZZcrf3Jb0feELYJmGuret376YT1Nk+jq2g3m9pwa maZCtQcTWUI7zQiXyJRaX0FeyqE5F1X/D/36WMUA4UOzYJxL2J/rNLiDeQINuykn hWdJxuxgbuxqVvzfhf4F7qxbS+7bg+pwgvnhqogc+poxwnNBHNkji32cq9pMj7EB q7ZP7k0tFoQw/u6I3joNrJVQEleLO36Q -----END CERTIFICATE-----Generated at Sat Dec 6 15:10:09 2025 by rpki-client