This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: k5d5KlxTXClP1bKnRPWsE3HrrQBs2B7bVRFPJdQETyI= Subject key identifier: BA:C3:46:F8:EC:63:0A:56:54:52:DA:73:16:64:D3:77:D6:CB:1F:DD Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0829 Signing time: Sat 06 Dec 2025 19:57:05 +0000 Manifest this update: Sat 06 Dec 2025 19:57:04 +0000 Manifest next update: Sat 13 Dec 2025 19:57:04 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: 44e6xTG38LKTjHQPD052racaRkRqQTdDf9P6YZMxEEw=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: 6xP14nks32sgSCrxZSRCROaUVIGpujX9KfbjfXlu4Sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Dec 6 19:57:04 2025 GMT Not After : Dec 13 19:57:04 2025 GMT Subject: CN=69348a91-1a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:17:50:e7:4b:85:2f:75:75:73:3e:c7:dd:80: 03:0d:a6:50:a5:68:f2:c4:d4:93:10:97:7d:03:93: 68:9e:d3:35:f6:b1:f6:86:0a:ac:4a:93:ba:d6:c3: 20:e6:33:4e:1c:32:c6:33:a4:37:fd:ff:58:3f:58: 2d:6a:28:3a:3b:69:8a:8e:bc:08:8d:bc:e5:73:32: 36:a5:a0:69:67:30:89:bb:bf:c3:9b:63:17:05:cc: a2:11:f0:8b:b4:d1:64:a7:23:ab:22:d5:af:b5:8c: 73:0d:80:60:38:23:4c:2d:d0:bb:d3:fc:4d:73:56: ff:c6:11:a0:f5:4c:51:9d:c3:0b:24:1e:0c:88:2c: 82:1d:f0:89:23:61:e1:8e:d3:c4:f0:c5:52:f7:0a: d6:a4:bf:43:5c:c8:10:d6:96:bd:e1:da:d5:16:46: 66:10:d1:cc:a7:23:08:c3:72:03:36:73:35:4c:06: 16:a3:35:84:5f:1d:c2:12:14:27:e3:f8:2f:72:f0: 61:3c:ba:29:f4:a0:86:be:5b:18:19:cf:07:8a:48: 1a:21:c7:e7:1f:2d:11:4e:67:55:ed:ca:49:e2:6d: 00:8b:0b:65:a0:21:cd:a8:4d:49:f6:24:20:f2:47: 5f:f1:9c:42:d6:6a:e2:a7:90:cc:d3:e4:7b:b2:cb: f4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C3:46:F8:EC:63:0A:56:54:52:DA:73:16:64:D3:77:D6:CB:1F:DD X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:39:c6:fd:0f:d3:ad:10:59:86:d4:fd:a1:62:f9:04:c6:6e: 19:91:57:a0:e9:ec:40:08:ec:26:ae:17:8c:0b:4b:12:40:48: 8b:f9:f3:00:51:7c:7f:d1:c0:5a:ed:43:f9:6a:8b:e4:c7:49: 9e:10:f8:93:f6:2d:83:ca:93:28:50:8a:42:f9:35:e9:21:ec: f2:9d:4b:79:16:57:ad:fd:35:37:42:fe:f3:98:1d:2c:2c:c9: 7a:88:28:54:ea:97:12:8c:71:37:fc:de:17:84:18:3f:a9:db: d5:08:cf:27:ac:e9:41:7c:33:56:10:ca:ce:fa:20:05:17:09: a8:fb:ef:ef:35:d3:f8:03:07:e8:fe:e9:98:08:85:a7:a9:37: ff:51:81:d5:42:e5:a1:5d:6b:87:a5:f0:ce:b6:c4:5d:65:9f: 4e:98:3b:b1:c2:3a:bb:f5:d9:bd:cc:3a:01:a2:7f:c4:fd:62: ee:dd:56:a1:23:63:dc:8e:62:a5:32:a8:f4:3a:14:cf:d1:b8: a5:d8:e2:cf:5f:f1:76:f5:02:83:83:d5:23:77:08:e6:44:3d: 44:64:a4:4d:e7:58:05:34:7d:ac:80:6a:da:8f:e1:53:dc:ed: ab:67:ab:76:b0:b3:82:d4:dc:95:c4:a3:ed:83:89:dc:de:43: 4f:fb:d4:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUxMjA2MTk1NzA0WhcNMjUxMjEzMTk1NzA0WjAYMRYwFAYD VQQDEw02OTM0OGE5MS0xYTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBdQ50uFL3V1cz7H3YADDaZQpWjyxNSTEJd9A5NontM19rH2hgqsSpO61sMg 5jNOHDLGM6Q3/f9YP1gtaig6O2mKjrwIjbzlczI2paBpZzCJu7/Dm2MXBcyiEfCL tNFkpyOrItWvtYxzDYBgOCNMLdC70/xNc1b/xhGg9UxRncMLJB4MiCyCHfCJI2Hh jtPE8MVS9wrWpL9DXMgQ1pa94drVFkZmENHMpyMIw3IDNnM1TAYWozWEXx3CEhQn 4/gvcvBhPLop9KCGvlsYGc8HikgaIcfnHy0RTmdV7cpJ4m0AiwtloCHNqE1J9iQg 8kdf8ZxC1mrip5DM0+R7ssv0kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrDRvjs YwpWVFLacxZk03fWyx/dMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiOcb9D9OtEFmG1P2hYvkExm4ZkVeg6exACOwmrheMC0sSQEiL+fMA UXx/0cBa7UP5aovkx0meEPiT9i2DypMoUIpC+TXpIezynUt5Flet/TU3Qv7zmB0s LMl6iChU6pcSjHE3/N4XhBg/qdvVCM8nrOlBfDNWEMrO+iAFFwmo++/vNdP4Awfo /umYCIWnqTf/UYHVQuWhXWuHpfDOtsRdZZ9OmDuxwjq79dm9zDoBon/E/WLu3Vah I2PcjmKlMqj0OhTP0bil2OLPX/F29QKDg9UjdwjmRD1EZKRN51gFNH2sgGraj+FT 3O2rZ6t2sLOC1NyVxKPtg4nc3kNP+9Q7 -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:56 2025 by rpki-client