This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: sahIFedfa/99H5FmhDcS7UrM1SfGhZhzjDkBRWvS1mU= Subject key identifier: 22:ED:D7:43:DC:22:5F:21:C1:5F:7F:78:5D:D9:89:D3:25:7C:F9:E1 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DF0 Signing time: Sat 06 Dec 2025 17:17:01 +0000 Manifest this update: Sat 06 Dec 2025 17:17:01 +0000 Manifest next update: Sat 13 Dec 2025 17:17:01 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: siWRr7aew4DFKrDHlp13sThnWeaQBhB7mcmS9yV/VSU=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: Pt5AOEwwZxq7lVNTYxsL3f5FIIGV0LQiKBFU4Ct/fFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3578 (0xdfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Dec 6 17:17:01 2025 GMT Not After : Dec 13 17:17:01 2025 GMT Subject: CN=6934650d-fe9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:1b:e6:cc:80:7a:d6:3b:bd:63:30:af:e6: d7:c2:fa:92:08:80:5f:7c:8f:fc:cf:16:91:01:d0: 6b:52:22:fc:41:df:63:8f:8b:95:82:59:e3:65:43: c4:ca:52:b3:e6:f8:be:86:bf:d6:70:75:6e:28:05: d6:cd:9b:a3:e0:58:89:f5:41:8a:83:e0:d3:9b:1f: bd:c6:aa:6a:fd:bb:1c:6b:6b:4a:90:ac:8e:07:39: 3f:e1:9b:18:26:b6:a4:89:c2:2d:c1:dd:d9:40:48: 76:d8:a3:ae:80:42:84:c3:e7:5a:40:6a:2d:48:09: 57:04:13:13:88:13:15:be:2e:eb:08:2b:92:af:8e: 53:b7:56:38:bd:c9:78:76:74:54:c3:60:8c:d8:c6: 35:a2:a3:95:0c:57:38:c6:e6:f3:19:fb:65:b6:e2: 70:0c:50:b1:4b:9b:81:2a:74:f4:95:ed:e2:63:59: 6a:d7:93:9e:88:36:e4:9e:08:11:11:aa:fe:5a:fd: 45:36:e2:3e:5d:bb:be:64:6c:14:30:81:2b:00:24: 21:44:f3:eb:ef:e3:6a:43:7a:ab:8d:3c:5f:97:7b: c1:84:2a:d6:65:29:e0:6e:80:7f:5b:fb:33:b4:2b: a0:18:0e:a9:60:0a:54:3c:b5:e5:b9:3b:c6:b3:0e: 2c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:ED:D7:43:DC:22:5F:21:C1:5F:7F:78:5D:D9:89:D3:25:7C:F9:E1 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:dd:5c:10:32:96:55:21:bd:d0:0c:0e:23:05:8d:92:6a:76: d5:87:7f:d6:96:cd:ec:ef:6c:20:2a:e7:4a:68:ee:8d:a0:68: 2d:c7:ab:b4:b1:c2:a8:f4:85:fc:ef:e2:1d:e0:56:7b:70:ee: 3f:81:7a:54:91:1c:e1:de:2f:cf:f8:f0:ce:00:9c:ba:5e:39: 0e:ee:7f:b9:3e:0b:f1:a5:96:64:fc:df:9f:16:2e:2f:6d:05: 0c:17:c6:05:11:04:c5:98:a9:e8:9e:f8:bb:e2:20:05:da:b6: c2:78:55:aa:10:e8:92:9d:43:5c:33:b7:3d:43:c1:e0:54:b9: fd:65:9b:db:c1:f5:3a:4a:76:b3:77:9f:1a:87:be:52:6f:67: 27:b9:5d:d7:03:66:c5:ad:06:f0:e0:61:b5:45:e1:a5:b2:af: 1b:dd:d1:17:34:ad:0c:a2:ba:c7:cf:48:0a:32:88:c8:20:2f: 51:ba:10:15:46:57:6d:27:15:4c:1c:ea:cc:6c:86:a1:b8:47: 4f:d1:8e:29:3b:0b:b6:de:a3:b2:35:54:34:fc:1d:e0:8b:18: 68:c0:60:14:8f:c6:34:2e:1d:7a:90:32:be:1f:86:da:31:af: e9:43:09:54:14:44:76:95:79:6a:8a:d9:76:36:f5:e1:4a:fd: 0e:c4:ae:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUxMjA2MTcxNzAxWhcNMjUxMjEzMTcxNzAxWjAYMRYwFAYD VQQDEw02OTM0NjUwZC1mZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5wb5syAetY7vWMwr+bXwvqSCIBffI/8zxaRAdBrUiL8Qd9jj4uVglnjZUPE ylKz5vi+hr/WcHVuKAXWzZuj4FiJ9UGKg+DTmx+9xqpq/bsca2tKkKyOBzk/4ZsY JrakicItwd3ZQEh22KOugEKEw+daQGotSAlXBBMTiBMVvi7rCCuSr45Tt1Y4vcl4 dnRUw2CM2MY1oqOVDFc4xubzGftltuJwDFCxS5uBKnT0le3iY1lq15OeiDbknggR Ear+Wv1FNuI+Xbu+ZGwUMIErACQhRPPr7+NqQ3qrjTxfl3vBhCrWZSngboB/W/sz tCugGA6pYApUPLXluTvGsw4snwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLt10Pc Il8hwV9/eF3ZidMlfPnhMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDM3VwQMpZVIb3QDA4jBY2SanbVh3/Wls3s72wgKudKaO6NoGgtx6u0 scKo9IX87+Id4FZ7cO4/gXpUkRzh3i/P+PDOAJy6XjkO7n+5PgvxpZZk/N+fFi4v bQUMF8YFEQTFmKnonvi74iAF2rbCeFWqEOiSnUNcM7c9Q8HgVLn9ZZvbwfU6Snaz d58ah75Sb2cnuV3XA2bFrQbw4GG1ReGlsq8b3dEXNK0MorrHz0gKMojIIC9RuhAV RldtJxVMHOrMbIahuEdP0Y4pOwu23qOyNVQ0/B3gixhowGAUj8Y0Lh16kDK+H4ba Ma/pQwlUFER2lXlqitl2NvXhSv0OxK5c -----END CERTIFICATE-----Generated at Sun Dec 7 06:22:29 2025 by rpki-client