This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft File: u3-5V71tGEoIkjFpTPg4nbaI_lM.mft (raw, json) Hash identifier: oke8V89snf9J0O/7OowoqshnY5hscGRM5YXGj2qH2So= Subject key identifier: 9C:C1:18:31:16:E6:70:E4:0D:01:F7:6F:84:77:8B:6F:18:EF:FE:5D Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft Manifest number: 04B2 Signing time: Sat 06 Dec 2025 22:38:49 +0000 Manifest this update: Sat 06 Dec 2025 22:38:49 +0000 Manifest next update: Sat 13 Dec 2025 22:38:49 +0000 Files and hashes: 1: u3-5V71tGEoIkjFpTPg4nbaI_lM.crl (hash: nK4bx9Xx0I/XZK+KyuVPzys0YbUkGeEm16wH2GsqPQM=) 2: 12702794577711ECB7FD0C6FC4F9AE02.roa (hash: 7OgpQvkBU6+tUiHR/xeuBjYzt4Evz4MreUzB4Ql4bWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Dec 6 22:38:49 2025 GMT Not After : Dec 13 22:38:49 2025 GMT Subject: CN=6934b079-f84f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2b:31:55:43:f8:fd:81:d3:a0:38:0d:6a:0d: 35:33:72:f8:cc:fc:da:f7:06:cc:ad:79:95:cc:f4: c3:76:d0:75:d9:bc:ab:35:83:dd:b8:a7:b5:7c:8f: 89:e0:50:fb:68:89:ce:e6:d9:2f:49:f2:1b:41:65: 10:6f:53:72:90:0b:17:d7:58:4c:fc:62:e1:f4:30: 02:03:31:c0:a7:8b:4b:f7:30:65:83:1c:d3:02:1d: 0d:dc:9d:fd:15:33:2f:ac:b9:45:fd:94:8b:fa:e7: 60:12:96:f4:43:f7:b7:ae:97:e9:8c:4b:fb:ce:06: 7d:36:ff:82:57:9d:20:af:ab:2d:86:88:8a:24:e1: 6f:d0:f2:9a:8b:f9:c3:43:f2:d7:cb:3a:16:0e:49: 0d:c7:92:cb:a2:c4:d2:db:b4:a0:1a:85:3b:2a:40: cc:37:00:f7:01:bf:35:3f:cd:b5:16:31:f8:6c:8d: f7:26:c3:1e:c4:5d:8f:66:7c:65:84:2e:f2:25:39: b4:bb:b5:7f:be:7e:d5:a1:21:ee:21:ad:71:11:b7: fb:a4:9d:85:47:66:26:3d:25:d9:a5:d6:5c:62:99: 79:49:1a:c9:f4:35:09:66:7b:23:f1:c0:99:c5:a3: 76:b1:bd:29:15:4f:42:dc:7e:50:4f:33:ba:2a:45: 24:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C1:18:31:16:E6:70:E4:0D:01:F7:6F:84:77:8B:6F:18:EF:FE:5D X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e1:61:c6:69:f0:fa:71:2b:ba:d7:d4:80:79:f6:6a:03:1a: 4e:45:1d:97:cd:f0:48:f9:52:c3:c8:6a:d5:3f:ca:ed:5b:c8: 3e:ec:8a:21:25:8b:9f:1a:3b:b4:5d:6b:eb:fb:34:bf:01:5e: e7:da:56:e2:93:e9:99:5b:11:d8:8b:b4:f7:7a:2c:89:b5:08: 48:b2:1b:32:29:21:30:91:1b:8d:ae:f8:6b:d4:02:9f:ce:4a: 67:53:cb:d7:d8:5c:28:18:6c:c8:6a:63:37:c9:bd:6f:07:a4: b6:7a:1f:53:7e:0a:61:d4:9a:fa:c6:d9:98:76:fd:e7:1b:2b: 4e:02:5a:e3:b4:36:f5:11:71:11:84:98:22:dc:b2:5e:8b:8a: f2:ae:cc:53:55:15:a9:fa:29:30:da:ce:a9:26:de:5f:2d:69: 56:d6:75:81:d4:6b:b0:3a:a5:66:15:51:6c:3c:3d:cd:3f:28: 73:04:48:19:86:ee:fb:0f:7f:2d:14:c2:7f:ce:e9:03:06:aa: a7:1f:40:1e:4a:a3:ff:26:7d:99:3d:a6:7e:db:c7:dc:59:4c: ca:69:93:68:8b:8f:26:3c:15:f6:2c:16:50:93:14:df:bc:22: d5:87:60:91:41:e2:f4:e6:21:e4:09:a3:39:f0:65:e2:68:0d: c0:6e:11:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUxMjA2MjIzODQ5WhcNMjUxMjEzMjIzODQ5WjAYMRYwFAYD VQQDEw02OTM0YjA3OS1mODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3isxVUP4/YHToDgNag01M3L4zPza9wbMrXmVzPTDdtB12byrNYPduKe1fI+J 4FD7aInO5tkvSfIbQWUQb1NykAsX11hM/GLh9DACAzHAp4tL9zBlgxzTAh0N3J39 FTMvrLlF/ZSL+udgEpb0Q/e3rpfpjEv7zgZ9Nv+CV50gr6sthoiKJOFv0PKai/nD Q/LXyzoWDkkNx5LLosTS27SgGoU7KkDMNwD3Ab81P821FjH4bI33JsMexF2PZnxl hC7yJTm0u7V/vn7VoSHuIa1xEbf7pJ2FR2YmPSXZpdZcYpl5SRrJ9DUJZnsj8cCZ xaN2sb0pFU9C3H5QTzO6KkUkPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzBGDEW 5nDkDQH3b4R3i28Y7/5dMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlBOS81MjU0ODZCODU2NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdF b0lrakZwVFBnNG5iYUlfbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA14WHGafD6cSu619SAefZqAxpORR2XzfBI+VLDyGrVP8rtW8g+7Ioh JYufGju0XWvr+zS/AV7n2lbik+mZWxHYi7T3eiyJtQhIshsyKSEwkRuNrvhr1AKf zkpnU8vX2FwoGGzIamM3yb1vB6S2eh9Tfgph1Jr6xtmYdv3nGytOAlrjtDb1EXER hJgi3LJei4ryrsxTVRWp+ikw2s6pJt5fLWlW1nWB1GuwOqVmFVFsPD3NPyhzBEgZ hu77D38tFMJ/zukDBqqnH0AeSqP/Jn2ZPaZ+28fcWUzKaZNoi48mPBX2LBZQkxTf vCLVh2CRQeL05iHkCaM58GXiaA3AbhEJ -----END CERTIFICATE-----Generated at Sun Dec 7 12:59:23 2025 by rpki-client