This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft File: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft (raw, json) Hash identifier: H34H1PTFkqjbhuCaqqbCxKEBXViLKFCSwdx9kRDvvU4= Subject key identifier: 7A:B4:6F:63:2E:A8:00:D1:7D:6D:42:AF:08:58:38:CF:0A:5C:28:5E Authority key identifier: DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 Certificate issuer: /CN=A91BA447/serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Certificate serial: 0B71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft Manifest number: 0B6A Signing time: Thu 04 Dec 2025 18:29:01 +0000 Manifest this update: Thu 04 Dec 2025 18:29:00 +0000 Manifest next update: Thu 11 Dec 2025 18:29:00 +0000 Files and hashes: 1: 3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl (hash: PRKR5Cwt+LyS+WvWN5JDhLYxSB0QTWWsBUVx81eecYM=) 2: 07F14B9C426411EABA91B569C4F9AE02.roa (hash: F4BgB3+37H1vj4fhyDwAENhQ6lWTOrd3il938AR6caY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2929 (0xb71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA447, serialNumber=DC98B544B16C49A98DD0585CF967242641552EA4 Validity Not Before: Dec 4 18:29:00 2025 GMT Not After : Dec 11 18:29:00 2025 GMT Subject: CN=6931d2ec-8626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:b1:08:1a:c4:2b:ab:20:35:f8:76:1b:cf: f3:05:ad:59:3d:96:24:65:7b:02:6a:81:76:34:d7: 88:ec:3a:71:fd:da:9b:f3:54:eb:ac:e8:1e:e1:d7: d2:51:6d:aa:e8:e4:43:b7:89:1c:f5:4c:4b:ce:2c: 6e:f1:bb:86:ea:54:3c:3f:38:b2:4b:af:92:07:61: d8:8f:ee:51:3e:0c:e2:1c:f0:5c:ab:c4:c8:49:8b: 6b:c1:09:c9:49:67:94:de:a7:c0:76:08:ed:ea:64: 37:8a:a5:5e:28:74:57:67:c8:8d:48:44:54:ac:e5: 29:68:cf:1d:0d:4f:d0:ef:34:a1:d5:2d:40:b0:4e: 8d:18:26:b6:32:91:24:83:a5:de:65:d6:20:e4:53: 45:fc:f8:78:4e:7e:6b:49:cf:ee:7f:c3:23:be:f8: 5c:4d:c3:8c:33:0b:34:95:0f:07:1b:82:81:66:5a: 6e:4c:73:50:49:3a:c4:cf:18:de:a5:95:34:be:dd: 52:f0:a3:cc:a5:de:62:5f:37:ec:c3:d4:cf:61:18: f5:94:ec:42:9b:c8:aa:5c:84:79:cc:5d:51:ab:d4: 05:ad:cd:e9:72:0d:e7:c9:e4:67:87:00:ed:20:3e: 09:63:b9:a6:8c:a1:da:be:0c:a3:cc:3e:39:b8:4c: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B4:6F:63:2E:A8:00:D1:7D:6D:42:AF:08:58:38:CF:0A:5C:28:5E X509v3 Authority Key Identifier: keyid:DC:98:B5:44:B1:6C:49:A9:8D:D0:58:5C:F9:67:24:26:41:55:2E:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA447/5F4C6CF2426211EA94C5C466C4F9AE02/3Ji1RLFsSamN0Fhc-WckJkFVLqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:be:d0:33:98:46:43:dc:87:90:67:31:33:f6:70:1e:28:5b: fb:0a:e1:67:b0:fc:ed:41:b9:ba:73:a5:2c:d9:8b:8f:bd:23: c4:4f:af:bd:9d:d5:86:57:b9:5c:88:b1:8e:36:e4:7f:85:48: c6:e6:25:77:31:23:7a:34:1b:82:6a:a1:cf:ba:b7:40:d6:3e: 5f:e1:b5:06:34:2d:87:83:79:9e:5e:e3:ca:cc:b3:79:10:97: fd:61:54:54:56:57:65:e2:44:46:69:dd:c4:a2:d4:05:1f:3f: 03:9e:dc:63:9d:35:5c:27:ad:f5:97:47:97:10:73:d5:39:90: cc:83:b5:1b:3c:d2:b3:35:6f:ae:8a:20:b3:a9:7b:5c:32:d2: 2b:ca:79:78:15:85:f5:7f:6c:c2:23:2b:2f:ce:dc:3c:16:bf: c4:4f:62:89:79:ed:90:9e:1a:ca:c2:07:a0:73:c1:37:30:5e: 6e:76:df:ee:79:86:f3:1b:f0:e5:94:36:40:fd:4c:32:ff:0a: 2b:4b:39:e9:5d:c2:95:61:aa:25:36:11:17:e0:bb:54:69:3e: 93:ae:36:6e:b6:85:0f:df:f5:79:fb:91:5e:55:39:83:c5:2e: 54:d3:4b:05:35:1d:4e:b4:fb:fe:89:1e:06:6c:8f:c4:68:db: 3d:e4:1f:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0NDcxMTAvBgNVBAUTKERDOThCNTQ0QjE2QzQ5QTk4REQwNTg1Q0Y5NjcyNDI2 NDE1NTJFQTQwHhcNMjUxMjA0MTgyOTAwWhcNMjUxMjExMTgyOTAwWjAYMRYwFAYD VQQDEw02OTMxZDJlYy04NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fKxCBrEK6sgNfh2G8/zBa1ZPZYkZXsCaoF2NNeI7Dpx/dqb81TrrOge4dfS UW2q6ORDt4kc9UxLzixu8buG6lQ8PziyS6+SB2HYj+5RPgziHPBcq8TISYtrwQnJ SWeU3qfAdgjt6mQ3iqVeKHRXZ8iNSERUrOUpaM8dDU/Q7zSh1S1AsE6NGCa2MpEk g6XeZdYg5FNF/Ph4Tn5rSc/uf8MjvvhcTcOMMws0lQ8HG4KBZlpuTHNQSTrEzxje pZU0vt1S8KPMpd5iXzfsw9TPYRj1lOxCm8iqXIR5zF1Rq9QFrc3pcg3nyeRnhwDt ID4JY7mmjKHavgyjzD45uEyfBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHq0b2Mu qADRfW1CrwhYOM8KXCheMB8GA1UdIwQYMBaAFNyYtUSxbEmpjdBYXPlnJCZBVS6k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTQ0Ny81RjRDNkNGMjQy NjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1NhbU4wRmhjLVdja0prRlZM cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKaTFSTEZzU2FtTjBGaGMtV2NrSmtGVkxxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTQ0Ny81RjRDNkNGMjQyNjIxMUVBOTRDNUM0NjZDNEY5QUUwMi8zSmkxUkxGc1Nh bU4wRmhjLVdja0prRlZMcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJvtAzmEZD3IeQZzEz9nAeKFv7CuFnsPztQbm6c6Us2YuPvSPET6+9 ndWGV7lciLGONuR/hUjG5iV3MSN6NBuCaqHPurdA1j5f4bUGNC2Hg3meXuPKzLN5 EJf9YVRUVldl4kRGad3EotQFHz8DntxjnTVcJ631l0eXEHPVOZDMg7UbPNKzNW+u iiCzqXtcMtIrynl4FYX1f2zCIysvztw8Fr/ET2KJee2QnhrKwgegc8E3MF5udt/u eYbzG/DllDZA/Uwy/worSznpXcKVYaolNhEX4LtUaT6TrjZutoUP3/V5+5FeVTmD xS5U00sFNR1OtPv+iR4GbI/EaNs95B+j -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:45 2025 by rpki-client