This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: 2Eadv2RHIaH8ly8uFq5yAbswDO12gH+lEATLDSiwllg= Subject key identifier: 26:B3:B3:90:8B:83:8D:B6:31:B3:42:DF:8F:36:6B:E3:F7:33:2E:82 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0DCF Signing time: Thu 04 Dec 2025 17:27:17 +0000 Manifest this update: Thu 04 Dec 2025 17:27:16 +0000 Manifest next update: Thu 11 Dec 2025 17:27:16 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: FBg+JopXp96sh4Cgaxk/sgiHTIgNNIxCYwzOkc47dJ0=) 2: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: DtVrkChmZWRD5+fP2Qn5fAqp1kmHQeghAdi18ignO50=) 3: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 4: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Dec 4 17:27:16 2025 GMT Not After : Dec 11 17:27:16 2025 GMT Subject: CN=6931c475-5395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d6:38:8c:78:47:da:7f:d0:f2:7b:0e:58:3c: 0e:20:6d:39:d9:43:0d:b5:ab:26:2b:ac:18:40:0c: 6a:ab:4d:47:db:e2:ff:cf:b6:cc:cf:16:2e:d2:4e: cc:ee:66:b3:9d:f8:14:24:7e:5a:40:d7:fd:a7:74: b5:ed:62:7f:88:2b:01:a7:74:16:86:4b:98:ea:d4: 22:bb:80:3c:61:0b:be:6c:ad:c7:84:5f:35:05:63: 8c:fa:8c:d0:56:6b:05:b1:d8:83:97:a9:2c:0b:4a: 5b:4a:b7:be:39:35:ad:56:e2:13:42:9f:fc:23:f3: 63:38:e7:84:9f:1a:1a:e5:59:4f:85:17:af:af:7b: 1d:0b:ca:15:f9:1e:0f:38:f3:40:9e:6b:3e:5f:75: 46:7d:10:a7:a6:fc:a2:0b:83:04:16:9d:0f:fa:de: a8:e3:cc:fc:97:e9:45:71:d2:9a:e7:ed:02:b3:a0: de:29:f7:ef:72:60:0d:5b:74:d8:c4:bb:38:72:7d: c7:46:97:33:2d:c3:46:44:f6:cf:8c:5c:a7:3e:b1: ce:38:b3:b5:60:f2:a9:c0:a5:ac:b4:85:3c:e1:80: 89:66:d8:28:50:33:ce:72:81:19:0c:32:90:e8:d5: 13:aa:12:25:d8:90:af:38:60:37:f5:cf:87:5d:40: 82:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B3:B3:90:8B:83:8D:B6:31:B3:42:DF:8F:36:6B:E3:F7:33:2E:82 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:6e:93:93:26:c4:5b:73:28:e9:fd:5c:3d:8d:c1:55:9f:2c: 98:6b:3f:d3:27:c1:37:06:29:1a:e7:73:b5:34:fc:e9:aa:4f: a2:79:59:aa:9a:31:80:05:95:02:04:09:91:ab:4f:24:8c:60: 14:64:e3:03:7c:04:bb:5a:60:6c:d8:e6:8c:06:34:ef:49:3d: c6:00:32:76:b8:15:33:8b:b3:8f:b9:c2:1b:b8:a4:e8:64:83: 3d:2b:38:0f:71:08:17:11:fd:9f:f9:9a:ed:4b:e0:89:be:79: 89:e5:d3:01:10:4e:35:df:c7:9e:b6:03:5d:76:c1:98:fc:b2: dc:bc:86:ae:87:6e:38:e2:38:3e:48:94:21:c2:8d:4e:3c:bf: 3b:ec:3d:7a:58:c5:11:35:83:6e:3f:d2:93:ce:ec:0d:73:a2: 0f:35:1e:4d:54:72:c2:78:af:20:f1:2a:26:1a:1e:fe:a0:28: ed:bf:c6:7c:a0:4a:f5:d9:28:90:b3:03:01:2f:f9:ea:47:63: 94:f3:ed:29:30:9c:c2:18:f7:95:d7:bf:15:d5:8b:52:ff:8f: 4f:f9:c6:2a:a0:e5:b0:37:60:a6:df:65:67:c9:c5:21:69:a0: 68:4e:4d:62:23:87:81:67:d1:4e:80:fb:fb:59:47:2a:77:29: 57:95:12:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUxMjA0MTcyNzE2WhcNMjUxMjExMTcyNzE2WjAYMRYwFAYD VQQDEw02OTMxYzQ3NS01Mzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dY4jHhH2n/Q8nsOWDwOIG052UMNtasmK6wYQAxqq01H2+L/z7bMzxYu0k7M 7maznfgUJH5aQNf9p3S17WJ/iCsBp3QWhkuY6tQiu4A8YQu+bK3HhF81BWOM+ozQ VmsFsdiDl6ksC0pbSre+OTWtVuITQp/8I/NjOOeEnxoa5VlPhRevr3sdC8oV+R4P OPNAnms+X3VGfRCnpvyiC4MEFp0P+t6o48z8l+lFcdKa5+0Cs6DeKffvcmANW3TY xLs4cn3HRpczLcNGRPbPjFynPrHOOLO1YPKpwKWstIU84YCJZtgoUDPOcoEZDDKQ 6NUTqhIl2JCvOGA39c+HXUCCUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCazs5CL g422MbNC3482a+P3My6CMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbbpOTJsRbcyjp/Vw9jcFVnyyYaz/TJ8E3Bika53O1NPzpqk+ieVmq mjGABZUCBAmRq08kjGAUZOMDfAS7WmBs2OaMBjTvST3GADJ2uBUzi7OPucIbuKTo ZIM9KzgPcQgXEf2f+ZrtS+CJvnmJ5dMBEE4138eetgNddsGY/LLcvIauh2444jg+ SJQhwo1OPL877D16WMURNYNuP9KTzuwNc6IPNR5NVHLCeK8g8SomGh7+oCjtv8Z8 oEr12SiQswMBL/nqR2OU8+0pMJzCGPeV178V1YtS/49P+cYqoOWwN2Cm32VnycUh aaBoTk1iI4eBZ9FOgPv7WUcqdylXlRJi -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:50 2025 by rpki-client