This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft File: b3tF49x2JsN_igHgq46krwVfSYo.mft (raw, json) Hash identifier: kfBz1b+UwsgxX2/VUz+DWOvs3/YhE3ZXRXF6Nl6Lp8c= Subject key identifier: 5F:55:7D:67:90:72:06:BA:44:EE:77:72:AB:40:EE:F1:81:10:A2:D3 Authority key identifier: 6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A Certificate issuer: /CN=A91F0AF0/serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Certificate serial: 1182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft Manifest number: 1E42 Signing time: Sat 06 Dec 2025 16:44:07 +0000 Manifest this update: Sat 06 Dec 2025 16:44:07 +0000 Manifest next update: Sat 13 Dec 2025 16:44:07 +0000 Files and hashes: 1: b3tF49x2JsN_igHgq46krwVfSYo.crl (hash: 5zBvwtLkJb9TYe2jcCFhqaTU+DKxZ3haj8J96yntkOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4482 (0x1182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=6F7B45E3DC7626C37F8A01E0AB8EA4AF055F498A Validity Not Before: Dec 6 16:44:07 2025 GMT Not After : Dec 13 16:44:07 2025 GMT Subject: CN=69345d57-17b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:65:e7:e6:86:c9:60:92:6b:3e:82:b7:1e:40: 2c:17:e3:43:f8:9e:e2:ab:4d:60:e9:48:9d:68:54: 86:23:06:e1:79:88:12:5b:f9:11:c2:5d:5a:30:32: 80:0e:54:61:99:b3:57:32:8e:f5:ae:55:a0:73:41: 5c:e8:2b:7c:a0:00:60:fe:67:00:d4:db:09:bd:28: 79:9a:2c:c4:f0:ac:6c:d4:3a:58:78:85:4f:51:55: 89:f3:72:db:be:f6:86:00:4b:b5:60:3e:f4:0f:4a: eb:21:81:ff:0d:16:6d:15:65:3a:83:d8:96:69:93: 72:75:ce:e8:72:a3:a0:c8:76:77:48:57:bc:e5:6d: 6b:d3:bb:e5:26:5d:6f:04:4f:e8:86:80:45:b1:f0: 48:42:86:d7:52:8d:9b:39:20:27:ba:18:0e:37:6f: a8:81:25:a6:68:fe:d4:37:3a:1d:39:c9:b8:3b:0f: b5:95:14:b9:28:f0:60:4c:f9:67:ed:e5:18:c0:b6: 8c:f1:49:27:39:e8:c3:60:96:47:e4:19:67:eb:b2: b8:af:61:90:4d:fa:da:d9:53:74:52:73:9e:c4:d2: fd:29:13:2e:bd:f6:72:a8:9c:d0:64:d1:9b:55:3c: fa:f7:42:79:03:0e:a6:52:3e:80:02:b3:14:07:69: 99:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:55:7D:67:90:72:06:BA:44:EE:77:72:AB:40:EE:F1:81:10:A2:D3 X509v3 Authority Key Identifier: keyid:6F:7B:45:E3:DC:76:26:C3:7F:8A:01:E0:AB:8E:A4:AF:05:5F:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b3tF49x2JsN_igHgq46krwVfSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/b3tF49x2JsN_igHgq46krwVfSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:70:c8:7c:42:fe:38:74:04:48:d7:f9:69:05:bf:97:7a:dd: df:78:89:12:c1:58:02:48:0c:0c:c8:ad:fa:aa:f7:57:07:65: 4f:00:ee:b1:51:26:0e:e5:f7:e6:eb:07:b7:17:bd:b5:54:65: fd:fc:2b:21:59:07:3c:16:9d:0b:eb:16:c0:c8:27:b1:11:a3: 1a:66:01:26:d9:4a:db:89:10:19:db:eb:c4:06:98:9c:e4:52: 35:a9:ca:5e:98:b2:12:62:01:1a:41:d8:0f:ea:c2:94:48:65: ca:b7:84:25:57:2c:b1:fd:cd:de:49:bf:8d:ef:87:d3:eb:85: ae:7f:c1:b0:97:3b:33:b2:ef:d6:6e:48:cf:d5:11:34:96:14: 09:b0:c1:85:09:c5:09:37:ce:1b:aa:fc:ce:7d:09:31:35:40: 50:64:f3:e9:a1:c6:e9:90:4c:54:bd:08:ae:6d:7d:16:18:d3: b4:03:4b:dc:5e:61:d7:3b:b5:d6:45:9e:be:2e:df:21:c9:99: ae:18:d7:c7:ac:e2:36:e7:b7:41:4e:38:d3:25:70:4a:2b:3b: 45:0a:cd:60:ed:c4:68:a4:2e:73:b6:c9:53:4f:15:0c:52:41: e5:6b:48:1b:30:0e:54:8c:3d:72:4c:6a:8d:9e:5c:90:ab:6d: 27:5e:3e:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKDZGN0I0NUUzREM3NjI2QzM3RjhBMDFFMEFCOEVBNEFG MDU1RjQ5OEEwHhcNMjUxMjA2MTY0NDA3WhcNMjUxMjEzMTY0NDA3WjAYMRYwFAYD VQQDEw02OTM0NWQ1Ny0xN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomXn5obJYJJrPoK3HkAsF+ND+J7iq01g6UidaFSGIwbheYgSW/kRwl1aMDKA DlRhmbNXMo71rlWgc0Fc6Ct8oABg/mcA1NsJvSh5mizE8Kxs1DpYeIVPUVWJ83Lb vvaGAEu1YD70D0rrIYH/DRZtFWU6g9iWaZNydc7ocqOgyHZ3SFe85W1r07vlJl1v BE/ohoBFsfBIQobXUo2bOSAnuhgON2+ogSWmaP7UNzodOcm4Ow+1lRS5KPBgTPln 7eUYwLaM8UknOejDYJZH5Bln67K4r2GQTfra2VN0UnOexNL9KRMuvfZyqJzQZNGb VTz690J5Aw6mUj6AArMUB2mZhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9VfWeQ cga6RO53cqtA7vGBEKLTMB8GA1UdIwQYMBaAFG97RePcdibDf4oB4KuOpK8FX0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4MkpzTl9pZ0hncTQ2a3J3VmZT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzdEY0OXgySnNOX2lnSGdxNDZrcndWZlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi9iM3RGNDl4Mkpz Tl9pZ0hncTQ2a3J3VmZTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBycMh8Qv44dARI1/lpBb+Xet3feIkSwVgCSAwMyK36qvdXB2VPAO6x USYO5ffm6we3F721VGX9/CshWQc8Fp0L6xbAyCexEaMaZgEm2UrbiRAZ2+vEBpic 5FI1qcpemLISYgEaQdgP6sKUSGXKt4QlVyyx/c3eSb+N74fT64Wuf8Gwlzszsu/W bkjP1RE0lhQJsMGFCcUJN84bqvzOfQkxNUBQZPPpocbpkExUvQiubX0WGNO0A0vc XmHXO7XWRZ6+Lt8hyZmuGNfHrOI257dBTjjTJXBKKztFCs1g7cRopC5ztslTTxUM UkHla0gbMA5UjD1yTGqNnlyQq20nXj63 -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:33 2025 by rpki-client