This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: 6la5Vg/ZKYlhYQsdT7Wz9TdNtcf3jsHdXnCVQ8VSZBo= Subject key identifier: F0:99:35:EB:2F:32:16:BD:95:C8:4F:32:DD:7C:20:C2:83:90:E7:8E Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 01D5 Signing time: Thu 04 Dec 2025 15:05:50 +0000 Manifest this update: Thu 04 Dec 2025 15:05:49 +0000 Manifest next update: Thu 11 Dec 2025 15:05:49 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: asUcWt1xnx2DbCcJhPuHqrC6biwZVEpFgAw8QELYGhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Dec 4 15:05:49 2025 GMT Not After : Dec 11 15:05:49 2025 GMT Subject: CN=6931a34d-539a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:49:32:84:3d:fe:e9:26:88:bd:e1:33:45: 60:ed:db:d2:2c:48:f5:a6:95:39:80:c1:d5:b0:fb: 6f:4d:5b:c6:01:1c:cd:7a:48:4a:3c:6d:6e:44:21: 9b:92:82:2d:62:67:59:0b:21:5e:5e:c0:5e:b2:25: 19:77:a6:be:f4:21:5a:c6:e2:eb:30:cc:29:38:25: fd:bf:7c:0a:cc:19:b6:50:2b:43:70:c0:5b:71:4e: d8:44:82:da:69:6c:d8:07:b7:41:09:70:19:2e:b8: b0:d6:db:8e:8b:96:c2:3f:26:15:f5:bb:35:ae:85: dd:44:10:4d:63:f1:99:91:9f:66:68:cf:f6:94:f2: 3d:f9:63:41:ac:bb:19:5d:d8:6e:90:f1:91:c9:a6: 5f:d2:2b:4f:43:6d:cb:ca:eb:f8:d4:45:82:78:28: 8b:64:ce:02:ca:e7:d6:49:fb:ee:49:b4:96:b7:d5: 37:2a:80:0b:14:1a:64:cd:b1:a0:84:13:0e:54:0c: ab:17:ce:7e:54:cd:e1:3e:db:c3:59:94:75:d6:96: 84:f4:dd:9b:ad:ce:5e:8d:db:6e:d7:d4:2d:80:53: 2f:68:75:13:7b:97:b9:af:08:50:38:59:d2:0a:f2: 97:36:50:40:20:b6:79:0b:5b:bc:db:90:fb:87:e0: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:99:35:EB:2F:32:16:BD:95:C8:4F:32:DD:7C:20:C2:83:90:E7:8E X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:60:8f:92:08:ba:9a:06:db:60:dc:03:ee:4d:e6:b1:ea:4e: 09:13:a9:b0:51:7b:15:a1:65:fa:39:fc:21:06:83:37:d8:7d: fc:06:83:0f:a2:46:a9:1b:29:35:57:c5:a7:b3:af:68:4b:03: 16:78:8d:20:0d:4c:ea:ae:80:e5:fb:55:49:9c:4c:4d:62:86: b5:29:64:64:12:71:01:55:38:da:15:c4:5b:4a:3d:1b:82:ae: 1d:53:05:9c:17:db:7f:fc:c8:64:58:be:bc:ff:55:b7:47:44: 25:a7:28:20:9e:dc:5f:e6:46:30:72:50:c4:1e:78:1f:b7:90: 9d:56:3e:85:06:99:ee:e5:3f:43:47:e2:0e:65:3e:d5:94:19: 93:a2:e6:eb:64:f7:5d:89:23:ba:39:fc:25:85:d8:99:94:21: 90:65:9c:0f:1e:53:06:6f:5d:6e:ca:8c:57:84:9d:5c:fc:cb: d1:59:30:85:89:bf:40:e0:36:2e:06:6b:03:9b:04:a5:2f:4e: 10:4a:9e:67:c8:20:56:e1:d4:12:3b:25:34:f7:92:51:c8:13: ec:6c:d9:76:0c:8f:5e:05:7a:a1:94:1e:22:58:16:5f:b3:3c: aa:43:ae:0d:a7:96:df:a7:fc:46:d2:70:70:a0:7f:3a:69:ff: dd:d6:bd:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjUxMjA0MTUwNTQ5WhcNMjUxMjExMTUwNTQ5WjAYMRYwFAYD VQQDEw02OTMxYTM0ZC01MzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtENJMoQ9/ukmiL3hM0Vg7dvSLEj1ppU5gMHVsPtvTVvGARzNekhKPG1uRCGb koItYmdZCyFeXsBesiUZd6a+9CFaxuLrMMwpOCX9v3wKzBm2UCtDcMBbcU7YRILa aWzYB7dBCXAZLriw1tuOi5bCPyYV9bs1roXdRBBNY/GZkZ9maM/2lPI9+WNBrLsZ XdhukPGRyaZf0itPQ23Lyuv41EWCeCiLZM4CyufWSfvuSbSWt9U3KoALFBpkzbGg hBMOVAyrF85+VM3hPtvDWZR11paE9N2brc5ejdtu19QtgFMvaHUTe5e5rwhQOFnS CvKXNlBAILZ5C1u825D7h+BCqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCZNesv Mha9lchPMt18IMKDkOeOMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjYI+SCLqaBttg3APuTeax6k4JE6mwUXsVoWX6OfwhBoM32H38BoMP okapGyk1V8Wns69oSwMWeI0gDUzqroDl+1VJnExNYoa1KWRkEnEBVTjaFcRbSj0b gq4dUwWcF9t//MhkWL68/1W3R0Qlpyggntxf5kYwclDEHngft5CdVj6FBpnu5T9D R+IOZT7VlBmToubrZPddiSO6OfwlhdiZlCGQZZwPHlMGb11uyoxXhJ1c/MvRWTCF ib9A4DYuBmsDmwSlL04QSp5nyCBW4dQSOyU095JRyBPsbNl2DI9eBXqhlB4iWBZf szyqQ64Np5bfp/xG0nBwoH86af/d1r1c -----END CERTIFICATE-----Generated at Sat Dec 6 16:03:03 2025 by rpki-client