This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: Q3pRoOJ6WxICZ4VrTcvudyi3/VEyZZ8nmvbUd6dnaMo= Subject key identifier: 7B:6C:8F:BB:74:84:96:59:EE:73:25:CE:A0:D0:B6:39:55:C9:85:5E Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: BA Signing time: Fri 05 Dec 2025 04:01:24 +0000 Manifest this update: Fri 05 Dec 2025 04:01:24 +0000 Manifest next update: Fri 12 Dec 2025 04:01:24 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: atyjGSgnJL1p4MVU+hlS4lbODsJwwHWnS+DWJOvcVqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Dec 5 04:01:24 2025 GMT Not After : Dec 12 04:01:24 2025 GMT Subject: CN=69325914-71f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:06:ce:d9:d0:49:bd:f0:ac:6e:2a:58:5f:03: 07:19:64:17:b2:e9:88:8e:9e:85:1f:74:c4:4f:dd: c6:94:8b:5f:8f:6a:55:f6:54:32:89:f8:1e:cc:1d: 55:03:98:70:73:e6:1a:23:21:16:f3:e2:10:4d:86: 35:16:3d:a3:9a:f0:6d:70:b2:d8:33:0b:e8:14:f1: 7f:cb:be:10:9d:1b:bd:a0:7f:2b:d6:32:9e:23:61: 56:fa:ea:5e:23:d2:10:26:5c:22:d1:bd:3e:d0:ba: 0a:31:82:70:65:ca:dc:8f:29:1b:2c:d4:43:79:6e: a0:68:1b:73:cc:bb:42:41:d8:f1:f7:0a:db:93:41: 43:48:ba:24:09:ca:f5:60:7c:c9:cd:96:5f:ba:a8: 55:9a:9d:0a:af:a3:ff:85:92:68:7e:24:ce:fe:c0: 6d:3b:28:fb:20:20:9d:63:91:c1:a3:ee:89:6a:66: 12:dc:27:4a:a3:aa:39:93:60:26:8e:b3:b4:54:0c: 49:5f:8a:18:1c:f3:7c:9a:db:22:1e:b1:74:f3:6f: 81:3d:b4:d1:1e:3f:61:8e:8a:d3:82:05:4a:d9:45: 83:ea:16:d5:41:3b:ce:a4:12:4f:97:85:a3:93:2b: 89:8f:17:84:f7:0b:e2:0e:b7:2c:fe:ac:ee:5e:06: bf:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6C:8F:BB:74:84:96:59:EE:73:25:CE:A0:D0:B6:39:55:C9:85:5E X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:34:1b:ed:17:fd:85:6f:a4:a0:a0:dd:35:ce:58:9b:0a:bc: 2c:7b:f0:5f:89:3c:f3:1d:c1:25:7c:c8:21:02:7e:15:41:ff: b0:63:0d:a2:30:47:e8:16:20:a2:10:45:7f:d6:9e:ee:e9:49: 04:56:32:29:75:25:e6:bc:44:c9:57:38:ee:ae:84:1a:7f:7a: ef:51:b2:af:6e:98:50:2c:3b:19:3c:e5:74:0a:4d:ac:64:aa: 0b:71:14:76:d2:be:f5:4a:5e:58:40:49:a1:a1:2a:fe:15:a7: c0:59:7d:d1:a4:68:a5:10:71:5c:a9:b4:84:b3:8b:fe:3e:41: 1a:81:60:36:bf:59:b2:9e:c4:9c:8c:4f:83:72:74:1b:a8:23: ed:f0:d1:5b:9f:41:91:1a:12:d6:e5:03:94:dc:f4:4c:20:3b: b6:9f:fc:5f:84:8a:ef:d5:2f:1d:e2:4a:56:6c:fb:c1:1f:a3: 54:2c:84:a6:4c:d3:a6:77:31:90:96:b2:bc:38:a1:29:20:1b: 55:77:4d:80:38:d6:96:37:01:b6:e7:2d:c6:75:d3:c8:9d:ed: 2f:1e:2a:b3:f0:4a:4d:cb:4c:51:c2:39:31:9f:2f:c1:c8:d2: 0f:b1:cc:d5:67:c6:bb:41:91:f1:25:70:8a:a6:fe:82:2c:7e: d6:a3:83:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKERDMTEzMEQ4NjE2QkFCQzZDRTA4OEY1RjIwRTY5NzE5 QTk5QzMyQkIwHhcNMjUxMjA1MDQwMTI0WhcNMjUxMjEyMDQwMTI0WjAYMRYwFAYD VQQDEw02OTMyNTkxNC03MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngbO2dBJvfCsbipYXwMHGWQXsumIjp6FH3TET93GlItfj2pV9lQyifgezB1V A5hwc+YaIyEW8+IQTYY1Fj2jmvBtcLLYMwvoFPF/y74QnRu9oH8r1jKeI2FW+upe I9IQJlwi0b0+0LoKMYJwZcrcjykbLNRDeW6gaBtzzLtCQdjx9wrbk0FDSLokCcr1 YHzJzZZfuqhVmp0Kr6P/hZJofiTO/sBtOyj7ICCdY5HBo+6JamYS3CdKo6o5k2Am jrO0VAxJX4oYHPN8mtsiHrF082+BPbTRHj9hjorTggVK2UWD6hbVQTvOpBJPl4Wj kyuJjxeE9wviDrcs/qzuXga/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtsj7t0 hJZZ7nMlzqDQtjlVyYVeMB8GA1UdIwQYMBaAFNwRMNhha6vGzgiPXyDmlxmpnDK7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS8wODlCQzRFNkI2 MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4Yk9DSTlmSU9hWEdhbWNN cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS8wODlCQzRFNkI2MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4 Yk9DSTlmSU9hWEdhbWNNcnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLNBvtF/2Fb6SgoN01zlibCrwse/BfiTzzHcElfMghAn4VQf+wYw2i MEfoFiCiEEV/1p7u6UkEVjIpdSXmvETJVzjuroQaf3rvUbKvbphQLDsZPOV0Ck2s ZKoLcRR20r71Sl5YQEmhoSr+FafAWX3RpGilEHFcqbSEs4v+PkEagWA2v1mynsSc jE+DcnQbqCPt8NFbn0GRGhLW5QOU3PRMIDu2n/xfhIrv1S8d4kpWbPvBH6NULISm TNOmdzGQlrK8OKEpIBtVd02AONaWNwG25y3GddPIne0vHiqz8EpNy0xRwjkxny/B yNIPsczVZ8a7QZHxJXCKpv6CLH7Wo4Ml -----END CERTIFICATE-----Generated at Sat Dec 6 23:54:46 2025 by rpki-client