This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: dWT5m9GLU9oQAJmclQZpe2RTqxlrXl0jJsDQjXrj47U= Subject key identifier: 83:4B:2C:56:05:54:8A:BC:F7:34:80:B1:11:CF:04:6C:50:9B:15:37 Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 0303 Signing time: Fri 05 Dec 2025 00:58:37 +0000 Manifest this update: Fri 05 Dec 2025 00:58:37 +0000 Manifest next update: Fri 12 Dec 2025 00:58:37 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: nGKs0t8rX40l/DAeveoDT8Wg/t3BwTdg1DFGxrcQ3Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: Dec 5 00:58:37 2025 GMT Not After : Dec 12 00:58:37 2025 GMT Subject: CN=69322e3d-dab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:40:f9:7d:6a:03:30:73:89:76:25:5f:99:c2: e4:5c:8f:cd:d0:48:e3:66:8b:d6:f8:85:57:09:87: 2f:69:69:38:4a:07:31:f2:45:df:0a:cb:7a:da:91: 5b:85:72:d1:86:e1:ef:a8:e9:b6:73:5a:c0:54:b4: 48:b7:81:dd:ad:28:ea:3a:d7:0e:bd:d3:35:a9:02: 5a:e1:2d:be:f9:09:c3:63:1a:b8:93:65:f4:5e:e6: 61:e2:64:fa:5f:57:0c:e4:8e:63:d6:4d:05:18:5a: ad:c8:38:01:f2:9d:14:b3:2b:6c:55:0c:f4:90:90: db:58:ff:e8:76:50:7c:bf:b3:a8:b0:27:88:e4:ee: fe:61:c7:ab:ed:30:4c:d4:3a:76:6a:df:a8:92:bd: 97:c8:a3:35:34:79:f4:f5:dd:3b:80:1a:88:ef:f5: 0e:58:0d:ee:2b:d5:c9:54:f5:c7:50:1d:4f:36:0c: 35:db:57:18:16:c2:04:87:b7:e5:52:3a:65:a8:f6: 45:0b:63:03:15:b5:d9:af:d2:bb:50:a9:0f:30:db: ad:46:4b:ff:b6:2a:dd:c4:8b:60:cf:19:34:b7:5a: cf:9d:3a:3c:9a:ae:52:c4:64:41:8f:46:97:58:fb: 64:95:58:1d:cd:71:53:22:6e:4b:f0:93:c1:51:bc: 92:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4B:2C:56:05:54:8A:BC:F7:34:80:B1:11:CF:04:6C:50:9B:15:37 X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:c8:bc:bc:6f:b1:68:14:c2:83:53:5e:fc:73:89:90:4a:23: 20:e9:6b:6e:d2:14:35:bd:53:54:8a:9b:e7:d0:4e:8e:82:61: cd:2c:6f:f9:f5:a3:29:85:13:eb:bb:37:f8:0c:9f:f3:04:47: 18:b4:90:31:f7:c9:bd:ce:60:eb:56:7a:78:9d:ae:ce:8a:7c: 05:d3:76:0d:62:fd:83:38:bb:07:0e:73:2f:01:f6:db:e4:1c: ba:aa:ab:73:dd:a9:45:9f:75:db:d5:a1:a2:49:3d:ac:93:78: 91:2b:01:04:f1:5b:25:9b:db:5c:41:60:5e:8c:05:00:84:5c: f3:87:d3:d8:b4:71:c0:ae:c0:55:fa:e1:98:7f:c7:92:37:13: 64:55:3f:9f:f6:2f:24:76:59:d3:83:f6:6b:28:d8:90:6a:21: b2:20:73:1a:04:21:1d:20:08:fb:a0:d0:af:36:ab:1b:3c:e3: ab:d6:34:77:a7:02:75:ab:86:32:98:18:07:09:99:75:a5:6d: 13:ea:ea:1e:d3:1c:a8:26:1f:dd:f3:24:23:35:f7:af:34:ef: e2:26:13:80:ac:26:9b:09:7d:7b:52:9d:ff:bd:d1:2b:4e:75: d8:17:1f:41:eb:48:8b:3e:df:e2:c1:42:4e:a5:5c:10:21:23: dc:55:5e:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjUxMjA1MDA1ODM3WhcNMjUxMjEyMDA1ODM3WjAYMRYwFAYD VQQDEw02OTMyMmUzZC1kYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ED5fWoDMHOJdiVfmcLkXI/N0EjjZovW+IVXCYcvaWk4Sgcx8kXfCst62pFb hXLRhuHvqOm2c1rAVLRIt4HdrSjqOtcOvdM1qQJa4S2++QnDYxq4k2X0XuZh4mT6 X1cM5I5j1k0FGFqtyDgB8p0UsytsVQz0kJDbWP/odlB8v7OosCeI5O7+Ycer7TBM 1Dp2at+okr2XyKM1NHn09d07gBqI7/UOWA3uK9XJVPXHUB1PNgw121cYFsIEh7fl UjplqPZFC2MDFbXZr9K7UKkPMNutRkv/tirdxItgzxk0t1rPnTo8mq5SxGRBj0aX WPtklVgdzXFTIm5L8JPBUbySpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINLLFYF VIq89zSAsRHPBGxQmxU3MB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChyLy8b7FoFMKDU178c4mQSiMg6Wtu0hQ1vVNUipvn0E6OgmHNLG/5 9aMphRPruzf4DJ/zBEcYtJAx98m9zmDrVnp4na7OinwF03YNYv2DOLsHDnMvAfbb 5By6qqtz3alFn3Xb1aGiST2sk3iRKwEE8Vslm9tcQWBejAUAhFzzh9PYtHHArsBV +uGYf8eSNxNkVT+f9i8kdlnTg/ZrKNiQaiGyIHMaBCEdIAj7oNCvNqsbPOOr1jR3 pwJ1q4YymBgHCZl1pW0T6uoe0xyoJh/d8yQjNfevNO/iJhOArCabCX17Up3/vdEr TnXYFx9B60iLPt/iwUJOpVwQISPcVV6h -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:03 2025 by rpki-client