This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: KwAR542jVgggLW6l5y5/Yef7CfVDqmUrU6Phs8Lk4Fc= Subject key identifier: 7D:CB:B1:96:19:BC:53:48:91:CA:00:9B:EF:04:65:89:9A:B7:E1:0F Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: 81 Signing time: Fri 05 Dec 2025 04:40:35 +0000 Manifest this update: Fri 05 Dec 2025 04:40:35 +0000 Manifest next update: Fri 12 Dec 2025 04:40:35 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: FbnUOqrz7FJSZP0bXrXCGXLA2qPhuiNDTq9pgPNCJWs=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: XP45MNkBJDvMP4szABAjNLFk+96NCHIDa9eitTmeLLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Dec 5 04:40:35 2025 GMT Not After : Dec 12 04:40:35 2025 GMT Subject: CN=69326243-22a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:8e:69:51:c6:48:dd:13:81:11:2a:74:3d: 17:84:ff:f8:a4:d0:d7:d4:da:51:cb:ce:de:38:9b: 32:09:f8:cb:cb:41:a0:72:62:e5:d1:63:ab:c2:3c: de:ca:51:0d:0d:48:50:0a:6e:cc:9d:b2:90:9c:45: 23:d6:9c:29:d7:37:cc:ea:a8:04:97:66:2e:68:62: 98:fd:f6:cd:e0:fc:7e:cc:6e:36:6e:cc:4d:81:e1: 8f:be:a5:77:67:4b:fd:3f:4b:55:ba:96:75:01:08: 2c:8e:f4:41:f4:cf:f8:08:a8:90:cd:18:1e:db:b2: 94:0b:4f:89:b2:43:97:02:1c:49:d0:36:24:a7:4c: a3:0a:7f:df:ff:60:5f:4f:73:8f:df:2c:27:57:fe: af:38:d3:c7:0d:66:68:2e:e5:c9:f0:88:dd:99:b7: c8:23:21:c8:af:67:07:3d:2b:74:7e:7c:03:43:82: b2:ff:95:53:8e:33:7d:91:4a:b4:02:01:03:53:54: f7:2d:46:c1:a6:5b:94:4d:9e:0a:5e:f8:02:fa:1f: 6a:5f:e8:5c:b1:78:5c:c0:79:2a:21:6c:dd:b1:63: 04:93:e4:34:54:0d:f3:67:e0:11:76:04:72:64:c1: 32:e9:82:7a:4b:f4:f7:75:88:fd:c4:62:f9:3c:7d: cd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CB:B1:96:19:BC:53:48:91:CA:00:9B:EF:04:65:89:9A:B7:E1:0F X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:df:f2:7f:0d:5b:ce:9f:ce:40:92:3e:16:5f:28:fa:28:99: de:ba:17:7d:a1:cd:ef:f0:4b:d6:87:a9:2b:d5:2a:a5:85:49: d7:34:79:4f:54:25:bf:ea:66:10:6d:ca:67:bf:0a:89:f1:f4: 07:e3:b6:0b:3e:9d:a4:fa:e7:bf:9f:69:32:04:5d:86:f6:e8: 79:8d:e4:ea:f5:e7:bc:a3:a8:57:56:08:a0:4a:de:c7:47:ad: f2:99:60:67:75:ae:76:23:dc:19:4e:f7:93:d7:64:25:82:07: 87:5c:97:fb:11:86:a1:7a:f5:2a:7a:0c:65:78:15:0e:a5:8e: d4:77:ef:86:00:22:69:13:0b:e2:1d:6a:a2:4b:b4:d5:c1:92: 94:e0:74:d8:fe:4a:1d:7d:16:5e:63:17:2f:2c:cd:23:cf:ac: 43:b3:24:35:87:fc:ae:7e:de:92:07:50:ae:54:f2:46:8b:84: 9c:bd:dd:dd:18:67:81:36:64:36:03:0a:06:08:0d:85:e1:e6: 57:88:3b:aa:34:36:c0:50:0a:89:f4:3d:93:b6:a5:a1:f2:87: ff:03:8a:f0:e5:94:5d:20:0a:db:44:f2:1a:22:6a:31:22:4d: bf:94:67:3f:2f:81:65:26:ca:fd:39:eb:de:2b:ea:81:b3:ad: 29:f2:f4:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjUxMjA1MDQ0MDM1WhcNMjUxMjEyMDQ0MDM1WjAYMRYwFAYD VQQDEw02OTMyNjI0My0yMmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZKOaVHGSN0TgREqdD0XhP/4pNDX1NpRy87eOJsyCfjLy0GgcmLl0WOrwjze ylENDUhQCm7MnbKQnEUj1pwp1zfM6qgEl2YuaGKY/fbN4Px+zG42bsxNgeGPvqV3 Z0v9P0tVupZ1AQgsjvRB9M/4CKiQzRge27KUC0+JskOXAhxJ0DYkp0yjCn/f/2Bf T3OP3ywnV/6vONPHDWZoLuXJ8IjdmbfIIyHIr2cHPSt0fnwDQ4Ky/5VTjjN9kUq0 AgEDU1T3LUbBpluUTZ4KXvgC+h9qX+hcsXhcwHkqIWzdsWMEk+Q0VA3zZ+ARdgRy ZMEy6YJ6S/T3dYj9xGL5PH3NiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3LsZYZ vFNIkcoAm+8EZYmat+EPMB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB83/J/DVvOn85Akj4WXyj6KJneuhd9oc3v8EvWh6kr1SqlhUnXNHlP VCW/6mYQbcpnvwqJ8fQH47YLPp2k+ue/n2kyBF2G9uh5jeTq9ee8o6hXVgigSt7H R63ymWBnda52I9wZTveT12QlggeHXJf7EYahevUqegxleBUOpY7Ud++GACJpEwvi HWqiS7TVwZKU4HTY/kodfRZeYxcvLM0jz6xDsyQ1h/yuft6SB1CuVPJGi4Scvd3d GGeBNmQ2AwoGCA2F4eZXiDuqNDbAUAqJ9D2TtqWh8of/A4rw5ZRdIArbRPIaImox Ik2/lGc/L4FlJsr9OeveK+qBs60p8vSo -----END CERTIFICATE-----Generated at Sat Dec 6 21:26:50 2025 by rpki-client