This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: Vu6J7oU2DykTazi5aPXkch+YOLggC+hezFhGUUi85QA= Subject key identifier: 76:8A:3E:5B:E8:C9:6E:07:8E:0F:ED:AC:A8:FC:06:B1:C3:58:13:81 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 082E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 0816 Signing time: Thu 04 Dec 2025 20:04:42 +0000 Manifest this update: Thu 04 Dec 2025 20:04:41 +0000 Manifest next update: Thu 11 Dec 2025 20:04:41 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: CqlbsB92B9eThjHJulSAd51XVnNCjkDiXs32ZaZSe/Q=) 2: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: Rw6zEr6DY5Vp9Hj5tF7TI5Kq9ScA3GH+aMoga9/kLfs=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: 5YYK0YKoDCpaklYir4k5rIBA5wPjwgrEAbtRskRmQT8=) 4: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: U1bQn0cREbDCYE8np1FOgxq7ZLPbZTRmflBcUUu8DFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Dec 4 20:04:41 2025 GMT Not After : Dec 11 20:04:41 2025 GMT Subject: CN=6931e959-df2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:10:97:0d:e3:1d:77:a0:bf:a6:0d:9d:17: 23:c5:24:8f:31:01:64:da:3f:e6:c5:fd:e1:87:1c: 2c:b0:48:d2:d7:ee:2d:2c:93:fb:cb:81:b9:55:14: d9:6a:d9:9a:64:67:cb:cd:0c:3e:70:6f:8d:7a:d2: ff:4c:9c:47:e1:01:83:f5:41:39:7e:a0:3f:90:ee: 07:ab:98:4d:d9:84:e3:ea:ae:9b:89:fc:aa:09:f4: 8f:43:f6:07:23:3b:28:9a:14:bf:10:f4:72:dd:41: b2:62:1e:1d:4d:13:6c:3a:50:c9:b1:42:da:82:f0: 7b:af:51:af:1e:81:c8:6b:78:7a:8a:bf:78:56:b2: 40:77:0a:ff:79:df:02:72:67:81:59:f3:44:72:5f: 99:2f:44:2d:f5:25:e0:8a:e3:52:60:74:63:f8:16: 58:9a:88:5b:9e:d4:82:f6:03:57:05:ac:1f:bc:a3: b2:7a:0c:75:0f:2d:a0:3f:15:f4:f2:d5:b6:e7:11: 4f:9b:f4:f3:bb:48:b4:13:6e:49:a3:c0:61:75:f8: 01:e1:2f:2f:df:10:98:02:26:70:74:f2:23:93:35: 42:a3:62:d6:fd:bc:3d:30:46:d6:4d:13:10:6a:4d: 56:3f:e7:19:16:dd:79:27:ba:50:5c:ce:6f:45:2a: e9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8A:3E:5B:E8:C9:6E:07:8E:0F:ED:AC:A8:FC:06:B1:C3:58:13:81 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:14:39:dc:46:65:c0:13:82:7e:7e:19:f1:12:71:31:e1:6e: a1:c1:6e:fe:50:f1:80:e6:d4:4d:f2:6d:40:3d:71:e2:90:72: 2c:8d:9c:c1:e2:6a:ef:d4:9c:2c:61:e5:c4:a3:bf:f0:38:19: a6:61:b3:a9:28:56:4a:e9:7e:87:69:2b:9a:f3:11:8b:c5:34: 2b:10:d0:00:a9:1f:07:8a:6e:62:be:18:c8:9d:74:e9:a6:5a: ed:cb:0a:61:2f:9c:c5:9a:b1:91:a4:a6:98:69:90:fd:51:40: 43:e3:e2:e7:71:6c:41:24:b2:65:50:d4:49:d4:32:fc:8b:68: 0f:06:0a:cf:f9:ae:aa:85:06:f3:64:e4:a1:14:dc:92:bc:3f: b3:f2:36:be:c4:c0:7d:c4:d9:f0:7f:73:05:7d:1f:fe:19:07: 73:af:f0:85:31:87:0d:cb:ed:00:ec:cc:db:bb:82:40:ef:2e: 72:be:73:d9:5f:fb:60:15:cd:94:ba:3d:9d:a3:cb:e0:f6:f4: 5d:9e:82:a1:ca:cd:6b:93:db:b9:ac:ab:cb:5e:99:c0:f3:55: fb:a4:15:3d:21:fe:e3:71:ab:e8:15:42:7e:2a:36:78:de:7e: b3:ae:f2:a8:c6:20:4d:82:02:ed:a0:08:ba:55:07:3f:af:6e: 89:82:e3:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUxMjA0MjAwNDQxWhcNMjUxMjExMjAwNDQxWjAYMRYwFAYD VQQDEw02OTMxZTk1OS1kZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucoQlw3jHXegv6YNnRcjxSSPMQFk2j/mxf3hhxwssEjS1+4tLJP7y4G5VRTZ atmaZGfLzQw+cG+NetL/TJxH4QGD9UE5fqA/kO4Hq5hN2YTj6q6bifyqCfSPQ/YH IzsomhS/EPRy3UGyYh4dTRNsOlDJsULagvB7r1GvHoHIa3h6ir94VrJAdwr/ed8C cmeBWfNEcl+ZL0Qt9SXgiuNSYHRj+BZYmohbntSC9gNXBawfvKOyegx1Dy2gPxX0 8tW25xFPm/Tzu0i0E25Jo8BhdfgB4S8v3xCYAiZwdPIjkzVCo2LW/bw9MEbWTRMQ ak1WP+cZFt15J7pQXM5vRSrpZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaKPlvo yW4Hjg/trKj8BrHDWBOBMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtFDncRmXAE4J+fhnxEnEx4W6hwW7+UPGA5tRN8m1APXHikHIsjZzB 4mrv1JwsYeXEo7/wOBmmYbOpKFZK6X6HaSua8xGLxTQrENAAqR8Him5ivhjInXTp plrtywphL5zFmrGRpKaYaZD9UUBD4+LncWxBJLJlUNRJ1DL8i2gPBgrP+a6qhQbz ZOShFNySvD+z8ja+xMB9xNnwf3MFfR/+GQdzr/CFMYcNy+0A7Mzbu4JA7y5yvnPZ X/tgFc2Uuj2do8vg9vRdnoKhys1rk9u5rKvLXpnA81X7pBU9If7jcavoFUJ+KjZ4 3n6zrvKoxiBNggLtoAi6VQc/r26JguMV -----END CERTIFICATE-----Generated at Sat Dec 6 13:53:48 2025 by rpki-client