This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft File: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft (raw, json) Hash identifier: Ebqny1klsPZrpnN05mOAK7teBoLzRScxqaE8ME/EhHw= Subject key identifier: C8:D3:18:1D:E1:F1:3F:A0:FE:4D:8C:FA:E4:6F:62:7F:D9:3E:A6:1A Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft Manifest number: 1BA0 Signing time: Sat 06 Dec 2025 15:55:06 +0000 Manifest this update: Sat 06 Dec 2025 15:55:06 +0000 Manifest next update: Sat 13 Dec 2025 15:55:05 +0000 Files and hashes: 1: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl (hash: 2cd1symQiyJW5yTSTfmEqufIQoU+PIUIZXIDYU4A+00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7113 (0x1bc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1, serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: Dec 6 15:55:06 2025 GMT Not After : Dec 13 15:55:05 2025 GMT Subject: CN=693451da-ec39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6b:b6:b3:1c:2c:2d:51:53:51:47:0b:43:6f: dd:70:6b:fa:37:4f:61:31:5a:76:28:12:95:c7:4a: b7:58:72:ce:c0:cf:d3:f4:9c:88:cc:bd:6e:1d:73: ed:62:13:7d:65:bc:06:15:5b:40:d6:cd:94:cc:e6: 2c:ec:df:f9:a9:a0:2d:6c:cf:fe:21:a9:ae:2a:71: 4a:7c:90:ef:70:55:55:7c:6f:84:64:79:9f:75:e2: 70:c8:e3:9d:cc:e8:ed:6b:21:28:a6:09:c7:1b:72: 39:46:21:c8:52:6c:b5:ce:e4:9b:3d:3a:82:82:34: 09:c6:95:97:26:18:4a:43:67:78:97:0d:f0:4e:59: 86:76:82:83:4b:26:7b:c2:de:4f:52:64:64:65:42: f9:0a:1c:0a:94:af:f4:ac:9b:df:3b:85:02:70:f7: 33:4a:75:a1:77:3f:61:07:74:29:1b:8e:b9:56:34: 68:9d:0c:5b:cd:51:9a:32:9b:26:23:7a:87:79:92: ef:dc:28:77:24:8b:a8:59:19:13:b5:d2:e0:98:70: 94:46:4e:99:62:81:0a:2f:9a:77:1d:af:a9:40:9e: 4e:de:8c:d9:08:b5:92:c6:10:45:17:4a:a7:5d:1c: 6a:c0:74:c3:fe:ca:a3:ac:91:6a:71:73:d7:71:22: eb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D3:18:1D:E1:F1:3F:A0:FE:4D:8C:FA:E4:6F:62:7F:D9:3E:A6:1A X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:6b:d3:31:b1:ee:9f:9b:45:e9:7a:88:0b:26:2e:76:c8:88: a9:d5:8f:21:31:c1:b2:ad:fa:dc:dd:7b:3e:f8:c3:b0:2e:1c: 79:1b:8b:ab:5d:ff:e8:91:99:4c:df:11:04:aa:e2:c3:fe:0f: 7a:02:fb:91:2d:6a:ba:92:42:87:0f:b4:91:42:81:d6:ab:f4: a2:2e:d5:69:82:de:9b:ba:9d:2d:5e:3f:80:b3:8f:54:34:67: b1:1a:3c:d3:9e:03:e5:b7:8b:e7:88:a1:53:86:4b:ff:2c:51: 6d:11:6b:a1:13:1a:e8:dc:30:a1:36:47:87:6e:52:03:34:cb: 89:76:b1:81:d4:ee:8c:f9:a8:f8:5a:fa:9f:d4:84:de:f5:92: 7d:2d:3c:d4:39:ab:be:f8:99:65:72:94:94:04:85:e9:89:3a: ee:40:01:9f:5b:b9:e0:fe:7e:f5:be:1a:42:54:b6:a6:78:70: 73:d9:8d:d1:8d:87:a8:be:9f:12:a6:84:2e:15:e9:e6:ca:16: ac:6c:8d:51:42:43:22:05:2c:15:c2:78:81:f9:6a:59:9f:ce: d2:5b:59:25:1f:42:a1:e9:23:54:18:9d:17:16:91:e5:24:0c: 26:80:9b:b4:ff:ed:94:35:72:5c:6c:d4:14:99:05:53:9f:b9: 7b:b2:41:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjUxMjA2MTU1NTA2WhcNMjUxMjEzMTU1NTA1WjAYMRYwFAYD VQQDEw02OTM0NTFkYS1lYzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGu2sxwsLVFTUUcLQ2/dcGv6N09hMVp2KBKVx0q3WHLOwM/T9JyIzL1uHXPt YhN9ZbwGFVtA1s2UzOYs7N/5qaAtbM/+IamuKnFKfJDvcFVVfG+EZHmfdeJwyOOd zOjtayEopgnHG3I5RiHIUmy1zuSbPTqCgjQJxpWXJhhKQ2d4lw3wTlmGdoKDSyZ7 wt5PUmRkZUL5ChwKlK/0rJvfO4UCcPczSnWhdz9hB3QpG465VjRonQxbzVGaMpsm I3qHeZLv3Ch3JIuoWRkTtdLgmHCURk6ZYoEKL5p3Ha+pQJ5O3ozZCLWSxhBFF0qn XRxqwHTD/sqjrJFqcXPXcSLrTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjTGB3h 8T+g/k2M+uRvYn/ZPqYaMB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzRFMS8yMDA0RjE0NDE2MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lS ckhlS2t4YlhHd3ZvQUdPVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTa9Mxse6fm0XpeogLJi52yIip1Y8hMcGyrfrc3Xs++MOwLhx5G4ur Xf/okZlM3xEEquLD/g96AvuRLWq6kkKHD7SRQoHWq/SiLtVpgt6bup0tXj+As49U NGexGjzTngPlt4vniKFThkv/LFFtEWuhExro3DChNkeHblIDNMuJdrGB1O6M+aj4 Wvqf1ITe9ZJ9LTzUOau++JllcpSUBIXpiTruQAGfW7ng/n71vhpCVLameHBz2Y3R jYeovp8SpoQuFenmyhasbI1RQkMiBSwVwniB+WpZn87SW1klH0Kh6SNUGJ0XFpHl JAwmgJu0/+2UNXJcbNQUmQVTn7l7skGN -----END CERTIFICATE-----Generated at Sat Dec 6 19:32:04 2025 by rpki-client