This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft File: 3yKppXt9OorrEk1pDHkXBmtNtZ4.mft (raw, json) Hash identifier: LeT2Zmnjcf3j/ln26HibxF1RHQNhRl89+1cvtA4wqec= Subject key identifier: 3B:34:48:65:A0:C8:5B:CD:F3:75:A8:CC:19:DF:E7:45:F3:06:A1:A2 Authority key identifier: DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E Certificate issuer: /CN=A91DE19B/serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft Manifest number: 28 Signing time: Fri 05 Dec 2025 05:35:51 +0000 Manifest this update: Fri 05 Dec 2025 05:35:50 +0000 Manifest next update: Fri 12 Dec 2025 05:35:50 +0000 Files and hashes: 1: 3yKppXt9OorrEk1pDHkXBmtNtZ4.crl (hash: 8n7OfXyPImCsCXKyPF2AQ1KzXYXhldHPTBS0BW5TNT0=) 2: DA06E7EAA37511F09017D760C4F9AE02.roa (hash: wpQC06DiQ+xzlEL7d1LfcmEUWMK/NDUMBZdyTADqLL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE19B, serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Validity Not Before: Dec 5 05:35:50 2025 GMT Not After : Dec 12 05:35:50 2025 GMT Subject: CN=69326f37-934b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:a3:4a:52:2b:38:2b:d5:95:95:11:ba:16: 2d:93:0f:b0:42:bd:2e:4b:6f:40:5c:32:60:75:f8: ca:10:2c:1d:c9:2d:5e:42:a9:ed:3a:dd:a0:63:d2: 3c:12:d8:89:e9:fd:5c:8b:07:57:43:a1:06:39:cb: af:66:c6:1b:9f:d2:83:e7:2c:5a:cf:22:4c:fc:0f: de:7a:3b:c7:df:5f:8b:97:10:52:e6:e2:26:8e:59: dd:d8:bd:70:b2:56:62:bf:1a:fa:a3:a3:12:b5:3b: 27:2c:dc:4f:ca:37:57:88:88:a7:8c:30:25:a2:af: f9:49:17:eb:ef:3f:cb:6e:40:cd:40:ba:8b:fe:dd: ca:4d:33:3b:fd:63:f3:1c:0b:58:60:95:b3:0c:2a: 76:69:19:c2:6f:9c:0f:53:a2:78:e0:30:a3:d0:00: 85:84:b5:dc:47:1e:df:ce:e0:4f:d4:26:28:76:7c: 89:02:65:43:f1:be:4b:f4:56:e6:9d:aa:f4:97:4f: 0a:29:65:c4:78:15:89:41:27:c6:c2:35:b7:e2:5e: cf:1d:cb:e0:5f:d5:9a:70:f0:e0:19:36:05:65:db: f3:29:16:10:84:45:85:7f:e5:af:76:ae:9d:3a:99: b8:d7:2a:19:a7:3e:9e:bc:f6:c6:7a:f1:4b:2b:03: 6f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:34:48:65:A0:C8:5B:CD:F3:75:A8:CC:19:DF:E7:45:F3:06:A1:A2 X509v3 Authority Key Identifier: keyid:DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:2a:7e:51:c2:1b:4b:46:83:ab:2a:05:3c:64:62:c0:0d:c9: 33:00:46:33:ba:e7:ae:fc:e3:bb:3c:58:d5:38:8c:42:1b:b0: 1c:2a:a3:55:d1:ab:78:f2:cb:85:af:bb:1f:cc:53:1d:69:df: a7:cd:4b:2d:72:3d:35:58:9a:4a:6f:c4:0c:85:57:9c:c6:80: 33:c4:54:17:e3:30:98:50:2a:79:4c:22:a1:e7:95:13:c2:75: 61:6c:4f:0d:aa:48:dc:e3:02:b7:bc:c0:57:21:fa:a3:31:f8: 02:97:0c:38:e8:6c:40:c0:1e:04:b7:b5:17:01:1c:c6:91:2e: 5f:3e:09:e2:df:f0:1b:6e:e6:96:4d:17:99:b1:2f:5c:98:ae: ab:95:e7:c3:ac:6b:bd:f2:c5:06:65:47:1a:09:23:09:ac:be: 90:9c:86:d5:d8:44:d9:57:54:8b:63:ae:7f:01:48:6e:ec:ec: cb:fd:b1:88:e6:da:9e:ea:57:a8:de:95:ef:5d:80:9d:ad:ae: 23:61:00:68:5e:1f:f8:75:52:05:d6:12:d3:13:cd:03:9e:40: 15:4a:5d:4e:dd:b2:57:fb:5d:eb:7e:a7:bc:3f:b0:36:e3:d3: f5:9d:fa:76:ed:ee:70:e3:93:73:af:4c:02:ce:22:89:71:40: 91:8d:21:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTE5QjExMC8GA1UEBRMoREYyMkE5QTU3QjdEM0E4QUVCMTI0RDY5MEM3OTE3MDY2 QjREQjU5RTAeFw0yNTEyMDUwNTM1NTBaFw0yNTEyMTIwNTM1NTBaMBgxFjAUBgNV BAMTDTY5MzI2ZjM3LTkzNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2IKNKUis4K9WVlRG6Fi2TD7BCvS5Lb0BcMmB1+MoQLB3JLV5Cqe063aBj0jwS 2Inp/VyLB1dDoQY5y69mxhuf0oPnLFrPIkz8D956O8ffX4uXEFLm4iaOWd3YvXCy VmK/GvqjoxK1Oycs3E/KN1eIiKeMMCWir/lJF+vvP8tuQM1Auov+3cpNMzv9Y/Mc C1hglbMMKnZpGcJvnA9TonjgMKPQAIWEtdxHHt/O4E/UJih2fIkCZUPxvkv0Vuad qvSXTwopZcR4FYlBJ8bCNbfiXs8dy+Bf1Zpw8OAZNgVl2/MpFhCERYV/5a92rp06 mbjXKhmnPp689sZ68UsrA28XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOzRIZaDI W83zdajMGd/nRfMGoaIwHwYDVR0jBBgwFoAU3yKppXt9OorrEk1pDHkXBmtNtZ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMTlCL0RBQjg1RTI4QTM3 MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29yckVrMXBESGtYQm10TnRa NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3lLcHBYdDlPb3JyRWsxcERIa1hCbXROdFo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MTlCL0RBQjg1RTI4QTM3MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29y ckVrMXBESGtYQm10TnRaNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFAqflHCG0tGg6sqBTxkYsANyTMARjO6567847s8WNU4jEIbsBwqo1XR q3jyy4Wvux/MUx1p36fNSy1yPTVYmkpvxAyFV5zGgDPEVBfjMJhQKnlMIqHnlRPC dWFsTw2qSNzjAre8wFch+qMx+AKXDDjobEDAHgS3tRcBHMaRLl8+CeLf8Btu5pZN F5mxL1yYrquV58Osa73yxQZlRxoJIwmsvpCchtXYRNlXVItjrn8BSG7s7Mv9sYjm 2p7qV6jele9dgJ2triNhAGheH/h1UgXWEtMTzQOeQBVKXU7dslf7Xet+p7w/sDbj 0/Wd+nbt7nDjk3OvTALOIolxQJGNIaU= -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:54 2025 by rpki-client