This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: BTu815OYZkXWLH4iz3mmuweqSOKtfZ9lkIaDXOppdOg= Subject key identifier: 75:91:F8:2C:82:D9:9D:81:0E:F3:5E:DE:8F:D7:11:8A:71:E4:B7:0E Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 86 Signing time: Fri 05 Dec 2025 04:36:41 +0000 Manifest this update: Fri 05 Dec 2025 04:36:40 +0000 Manifest next update: Fri 12 Dec 2025 04:36:40 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: e7VGvEsSMbLYE5mq0Xmf3e//6jGtSDkOHx3S2OG6a9o=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Dec 5 04:36:40 2025 GMT Not After : Dec 12 04:36:40 2025 GMT Subject: CN=69326159-b503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:fd:41:46:2c:06:b9:b1:bd:49:9e:8a:58: d4:91:da:1d:de:fb:84:9f:04:ff:2d:6b:9e:05:d8: a5:ea:3f:65:77:e5:bf:ed:cf:b4:a5:54:f0:ff:9f: 16:42:89:53:2f:1f:10:53:bf:a8:ec:28:c7:91:4f: 3b:61:c3:d2:1d:81:ee:8b:e8:1b:1e:a9:3a:27:68: 86:4f:c1:3f:76:96:68:4e:fd:80:56:41:c3:e8:c4: 62:7c:45:a1:e7:60:7d:90:6c:c6:49:7a:28:5b:36: 8e:73:7f:67:be:8c:41:06:d8:17:59:1f:66:b8:89: 45:6c:cc:86:f2:76:c3:f9:cc:06:05:01:b7:6d:38: 8b:87:b3:c0:0a:15:4b:c2:ab:2a:65:ce:6f:fc:3c: a8:c8:19:06:d5:7b:88:8c:d7:a3:c6:1c:51:41:2f: 3d:89:48:d7:cf:e4:19:34:f2:e4:3f:de:01:7c:42: e3:db:17:ed:e5:48:fd:49:e2:33:3b:8a:f8:35:e0: 6e:db:a3:2c:53:c6:be:e6:3b:79:74:1f:36:91:f6: 92:fc:f6:e1:bc:29:9a:0a:2e:50:8a:7c:03:4b:fe: 48:bc:48:14:ad:99:6e:ce:1a:5a:0c:7d:31:42:8b: cf:2e:15:08:bf:05:bb:63:b5:50:8e:d1:92:98:2f: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:91:F8:2C:82:D9:9D:81:0E:F3:5E:DE:8F:D7:11:8A:71:E4:B7:0E X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:cb:56:28:0c:0b:cf:76:d2:8a:f9:cb:00:d2:00:b1:68:60: c6:72:7a:75:20:bf:1b:a0:04:18:84:db:23:80:82:93:e3:31: 8c:ff:21:33:b8:ea:3a:26:8f:5d:88:50:43:89:04:68:dc:dc: 0e:3c:3d:51:df:81:9e:b9:57:2b:41:25:f7:4b:f0:e8:94:e6: 3e:39:25:05:9c:c8:8f:06:2b:32:48:67:ec:1f:d3:2e:b3:d9: d0:27:7c:53:11:ab:5c:94:a0:e2:61:72:a8:fa:e6:3d:37:f5: d6:70:38:ba:a9:a5:ce:fb:7a:d6:29:5a:0e:45:7e:46:85:5b: ba:02:73:61:88:c6:4a:3e:39:e4:40:94:82:31:c2:b7:cd:4c: 3f:75:b6:27:b6:84:7b:81:59:4d:8b:a9:0a:65:3c:de:b9:89: 78:f1:a2:5b:7d:c4:77:69:e9:3b:7a:42:07:78:64:a8:97:08: 24:9d:1e:82:de:f3:55:55:78:28:7b:35:72:cb:d9:90:ad:60: 9b:1d:02:7f:15:59:0e:23:bf:89:83:ec:62:5c:6e:aa:5a:65: 09:c0:06:e9:01:48:6c:cc:1a:d2:8e:c3:1d:ab:0c:b6:fd:62: 77:2e:92:fd:db:4a:a1:58:d0:be:c6:a7:1b:17:87:b7:de:44: 91:62:4e:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5Q0ExMTAvBgNVBAUTKDFCQjRFMTcxQ0FDNDE5RTYxNjdCQTNBN0Q3MjUzQzc2 MTYzMUEyOEQwHhcNMjUxMjA1MDQzNjQwWhcNMjUxMjEyMDQzNjQwWjAYMRYwFAYD VQQDEw02OTMyNjE1OS1iNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrH9QUYsBrmxvUmeiljUkdod3vuEnwT/LWueBdil6j9ld+W/7c+0pVTw/58W QolTLx8QU7+o7CjHkU87YcPSHYHui+gbHqk6J2iGT8E/dpZoTv2AVkHD6MRifEWh 52B9kGzGSXooWzaOc39nvoxBBtgXWR9muIlFbMyG8nbD+cwGBQG3bTiLh7PAChVL wqsqZc5v/DyoyBkG1XuIjNejxhxRQS89iUjXz+QZNPLkP94BfELj2xft5Uj9SeIz O4r4NeBu26MsU8a+5jt5dB82kfaS/PbhvCmaCi5QinwDS/5IvEgUrZluzhpaDH0x QovPLhUIvwW7Y7VQjtGSmC9dyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWR+CyC 2Z2BDvNe3o/XEYpx5LcOMB8GA1UdIwQYMBaAFBu04XHKxBnmFnujp9clPHYWMaKN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTlDQS9BOUYyNzIyRTA4 QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdlWVdlNk9uMXlVOGRoWXhv bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTlDQS9BOUYyNzIyRTA4QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdl WVdlNk9uMXlVOGRoWXhvbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAly1YoDAvPdtKK+csA0gCxaGDGcnp1IL8boAQYhNsjgIKT4zGM/yEz uOo6Jo9diFBDiQRo3NwOPD1R34GeuVcrQSX3S/DolOY+OSUFnMiPBisySGfsH9Mu s9nQJ3xTEatclKDiYXKo+uY9N/XWcDi6qaXO+3rWKVoORX5GhVu6AnNhiMZKPjnk QJSCMcK3zUw/dbYntoR7gVlNi6kKZTzeuYl48aJbfcR3aek7ekIHeGSolwgknR6C 3vNVVXgoezVyy9mQrWCbHQJ/FVkOI7+Jg+xiXG6qWmUJwAbpAUhszBrSjsMdqwy2 /WJ3LpL920qhWNC+xqcbF4e33kSRYk5o -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:17 2025 by rpki-client