This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft File: 74x3yBft3T_cxmtjUtbqeNcsWsY.mft (raw, json) Hash identifier: IwDFjlJZaWDm7Ky0nJCniMT7xL4dLVFV+ZNI+1rF61g= Subject key identifier: D0:F1:9F:F2:6F:3B:8F:D0:36:79:60:7E:4E:9B:66:FA:04:1F:BE:A3 Authority key identifier: EF:8C:77:C8:17:ED:DD:3F:DC:C6:6B:63:52:D6:EA:78:D7:2C:5A:C6 Certificate issuer: /CN=A91DABAA/serialNumber=EF8C77C817EDDD3FDCC66B6352D6EA78D72C5AC6 Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft Manifest number: 02 Signing time: Fri 05 Dec 2025 05:48:01 +0000 Manifest this update: Fri 05 Dec 2025 05:48:00 +0000 Manifest next update: Fri 12 Dec 2025 05:48:00 +0000 Files and hashes: 1: 74x3yBft3T_cxmtjUtbqeNcsWsY.crl (hash: gyWvrKX6X7E2B4I4JwmxmZt6iDipYmZV1Js/tdp+Cjo=) 2: EEEB4CEAD19D11F0B238D972C4F9AE02.roa (hash: wcuLm38qVMVNfKNHp4RygYOU4qm8i0LLeiUXLc8K4jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.crl rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DABAA, serialNumber=EF8C77C817EDDD3FDCC66B6352D6EA78D72C5AC6 Validity Not Before: Dec 5 05:48:00 2025 GMT Not After : Dec 12 05:48:00 2025 GMT Subject: CN=69327211-e2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:98:55:ca:13:17:d0:e4:4f:e1:ca:e3:97:09: 03:58:fd:5a:2d:bc:b6:1e:3b:98:ef:2b:5e:61:fa: 68:19:07:cf:0a:95:5f:37:56:d7:f8:d2:0f:77:1b: ec:cf:fc:4e:10:0c:40:84:a4:7b:86:8f:6f:24:1e: 28:cf:4f:21:fb:f0:25:0f:ef:7f:7d:b7:ee:aa:07: d0:62:93:cc:0d:3a:9a:d3:c5:ad:e5:65:19:4d:8b: eb:17:ab:01:df:a9:1d:f4:f3:fa:97:9b:93:11:38: 70:23:80:b4:8f:03:d0:f4:75:46:a9:9a:57:ae:15: a2:ff:50:34:0c:40:6b:da:6e:91:b6:61:cd:16:9f: 6e:55:92:65:51:e9:09:bc:10:c4:f8:73:bd:0b:20: 2c:58:9d:18:c1:dc:12:77:47:6b:da:90:53:28:d6: 9a:c0:5e:87:85:0e:02:d6:e2:79:45:9a:41:c4:b7: 7b:c1:41:16:1c:3d:19:69:14:af:0a:dd:3c:31:a6: ce:3a:79:55:53:b8:ad:b4:3b:7b:c0:86:48:76:33: ba:23:1a:03:8f:d5:e3:d5:f2:29:3e:e4:92:2a:12: 45:35:38:e6:04:29:3f:dc:04:01:68:9e:b9:45:95: 77:1b:d4:ac:6e:86:e3:06:eb:93:20:d3:9a:48:b3: 4a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F1:9F:F2:6F:3B:8F:D0:36:79:60:7E:4E:9B:66:FA:04:1F:BE:A3 X509v3 Authority Key Identifier: keyid:EF:8C:77:C8:17:ED:DD:3F:DC:C6:6B:63:52:D6:EA:78:D7:2C:5A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/74x3yBft3T_cxmtjUtbqeNcsWsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DABAA/420C0F6ED19D11F083814170C4F9AE02/74x3yBft3T_cxmtjUtbqeNcsWsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e9:8d:f9:ff:44:30:8b:71:79:66:f0:4f:2e:3e:ff:c7:eb: 55:93:94:a9:fe:aa:e0:97:29:6b:18:fb:b7:2c:2e:31:70:2d: 3f:e1:48:df:42:90:1d:31:e5:c0:7f:4e:2c:4f:af:a9:5f:55: f3:89:29:ad:dc:de:cd:ea:c3:9b:d7:42:c2:63:14:56:ae:1c: be:eb:c6:01:ef:7d:95:44:68:58:9d:ce:9a:45:7b:7c:19:12: 31:21:6b:02:0a:9e:cc:84:8f:65:1b:2b:d6:54:de:8c:ca:a1: 0f:14:3b:98:50:60:8e:6d:2a:2e:bf:60:66:53:ff:d8:a3:4f: ee:15:c3:86:d4:e0:5a:2f:4c:c7:9e:0e:f7:03:e0:a5:69:d2: 34:41:c2:ae:92:79:2a:89:7e:25:27:dd:3e:72:38:21:51:d1: 45:84:d3:29:92:4a:28:5b:30:70:bd:03:02:3c:bb:8f:06:cb: c9:81:3a:36:81:db:10:6e:65:69:e3:2c:d3:c7:54:e3:c9:ff: 3d:f5:88:5f:97:d5:e8:3b:6d:e2:94:a1:d6:d6:f1:f5:fb:fb: 1c:52:25:6f:09:6f:3c:68:a4:2f:21:ea:23:61:58:44:4b:62: 57:3c:3d:d9:00:50:fd:de:7f:cd:d8:08:be:6d:d6:f8:96:3f: 5d:0e:25:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QUJBQTExMC8GA1UEBRMoRUY4Qzc3QzgxN0VEREQzRkRDQzY2QjYzNTJENkVBNzhE NzJDNUFDNjAeFw0yNTEyMDUwNTQ4MDBaFw0yNTEyMTIwNTQ4MDBaMBgxFjAUBgNV BAMTDTY5MzI3MjExLWUyZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqmFXKExfQ5E/hyuOXCQNY/VotvLYeO5jvK15h+mgZB88KlV83Vtf40g93G+zP /E4QDECEpHuGj28kHijPTyH78CUP7399t+6qB9Bik8wNOprTxa3lZRlNi+sXqwHf qR308/qXm5MROHAjgLSPA9D0dUapmleuFaL/UDQMQGvabpG2Yc0Wn25VkmVR6Qm8 EMT4c70LICxYnRjB3BJ3R2vakFMo1prAXoeFDgLW4nlFmkHEt3vBQRYcPRlpFK8K 3Twxps46eVVTuK20O3vAhkh2M7ojGgOP1ePV8ik+5JIqEkU1OOYEKT/cBAFonrlF lXcb1KxuhuMG65Mg05pIs0qfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0PGf8m87 j9A2eWB+Tptm+gQfvqMwHwYDVR0jBBgwFoAU74x3yBft3T/cxmtjUtbqeNcsWsYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBQkFBLzQyMEMwRjZFRDE5 RDExRjA4MzgxNDE3MEM0RjlBRTAyLzc0eDN5QmZ0M1RfY3htdGpVdGJxZU5jc1dz WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNzR4M3lCZnQzVF9jeG10alV0YnFlTmNzV3NZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB QkFBLzQyMEMwRjZFRDE5RDExRjA4MzgxNDE3MEM0RjlBRTAyLzc0eDN5QmZ0M1Rf Y3htdGpVdGJxZU5jc1dzWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE7pjfn/RDCLcXlm8E8uPv/H61WTlKn+quCXKWsY+7csLjFwLT/hSN9C kB0x5cB/TixPr6lfVfOJKa3c3s3qw5vXQsJjFFauHL7rxgHvfZVEaFidzppFe3wZ EjEhawIKnsyEj2UbK9ZU3ozKoQ8UO5hQYI5tKi6/YGZT/9ijT+4Vw4bU4FovTMee DvcD4KVp0jRBwq6SeSqJfiUn3T5yOCFR0UWE0ymSSihbMHC9AwI8u48Gy8mBOjaB 2xBuZWnjLNPHVOPJ/z31iF+X1eg7beKUodbW8fX7+xxSJW8JbzxopC8h6iNhWERL Ylc8PdkAUP3ef83YCL5t1viWP10OJRY= -----END CERTIFICATE-----Generated at Sat Dec 6 16:19:49 2025 by rpki-client