This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: fV9tsS+uRb9LOP955EEMa9v81taD+HV0fFzPBeMVpdU= Subject key identifier: 74:67:66:CE:D6:C5:22:A7:E6:CD:23:ED:68:17:19:E8:14:1A:78:18 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: A2 Signing time: Fri 05 Dec 2025 04:15:42 +0000 Manifest this update: Fri 05 Dec 2025 04:15:41 +0000 Manifest next update: Fri 12 Dec 2025 04:15:41 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: vFcOgL3fu+QLSbduLna+8E2KcL1Sk4LqBvGJ5iYWdYE=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Dec 5 04:15:41 2025 GMT Not After : Dec 12 04:15:41 2025 GMT Subject: CN=69325c6e-247d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:51:21:97:dc:3e:e0:c3:9a:51:76:f7:ce:89: 59:94:54:d5:d1:45:18:71:49:09:65:61:07:12:59: 05:c3:db:fc:7c:8c:09:30:0d:64:23:bf:bd:6c:ff: 1f:dd:eb:37:2c:1a:f7:c1:67:d2:c3:3c:e7:3a:29: d8:8f:c5:93:16:4a:d3:a2:8e:4c:71:8b:f5:12:db: a1:5a:f4:b9:8b:5e:5e:9b:13:0e:82:cb:47:18:aa: 59:53:1c:47:e2:89:7a:78:cc:2e:f9:4b:1f:24:80: c1:f0:68:0c:a4:0a:e0:26:fb:b6:97:ff:98:be:73: dc:d9:51:3f:a6:b8:0f:02:12:47:eb:77:03:89:f2: 96:09:0d:87:28:4b:aa:25:e8:ca:e1:9f:9f:db:bc: 9e:7c:e7:68:86:65:73:4d:07:7e:48:5c:42:83:9f: 57:30:4b:d1:3d:b0:19:92:35:ee:e7:53:d8:ec:eb: b1:89:a4:65:11:65:32:bb:91:f4:ec:d2:8e:84:e1: cc:f4:45:fe:a9:40:af:74:73:de:0b:e3:90:53:a9: f6:88:a1:1c:a8:f9:5c:1a:e3:7c:1c:81:90:26:fe: 5e:87:03:fe:e8:79:93:b9:44:88:b8:ee:02:b4:41: 0f:a8:24:24:04:42:a2:9e:13:30:5d:5a:eb:f2:45: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:67:66:CE:D6:C5:22:A7:E6:CD:23:ED:68:17:19:E8:14:1A:78:18 X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:53:66:38:03:7d:eb:30:2a:4c:e1:f3:37:29:98:96:36:0e: a7:86:72:23:6c:76:76:2e:65:34:3e:b0:2f:8a:42:24:05:95: 92:cf:65:e2:a3:d9:4d:26:c9:8c:b6:a1:29:f5:ea:87:bd:bc: 7a:70:bd:9a:41:57:6f:c1:be:c2:97:0b:03:e9:d6:24:58:92: 5d:45:59:61:50:b3:d9:1a:82:2c:08:36:84:9e:8d:1a:2b:2b: 47:62:38:31:c1:bb:f4:4d:e9:20:8a:1a:6d:81:91:68:69:45: 11:76:ce:41:a3:b8:77:ab:20:f8:2d:02:5b:95:e0:01:c2:1a: c6:35:40:f2:0d:dc:04:02:6b:58:a5:55:87:0b:b4:76:f3:fa: 82:e5:6e:d5:3d:37:f9:41:ae:f6:4c:ee:c5:65:62:e0:ed:1e: 0d:e6:06:09:03:69:c3:2d:ce:6a:f6:e7:e9:6c:05:04:08:5e: de:b2:80:da:c3:54:86:4d:a3:e0:2c:74:32:d2:47:47:a7:eb: 21:04:f3:68:e5:01:0d:69:f9:9c:b0:28:09:da:37:89:e8:68: e7:e7:c5:03:76:7f:2e:1c:8d:26:7b:1c:22:9d:9c:50:a6:ae: 0e:9f:1c:1a:e6:c5:25:1a:55:3b:59:87:66:ca:1a:22:53:0b: 20:21:40:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NzYxMTAvBgNVBAUTKDE4OTFENTRDRUY2QTkwQzIzMkZDQTg5MUUzOTlGOTc4 Mzg2NzExRUUwHhcNMjUxMjA1MDQxNTQxWhcNMjUxMjEyMDQxNTQxWjAYMRYwFAYD VQQDEw02OTMyNWM2ZS0yNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VEhl9w+4MOaUXb3zolZlFTV0UUYcUkJZWEHElkFw9v8fIwJMA1kI7+9bP8f 3es3LBr3wWfSwzznOinYj8WTFkrToo5McYv1EtuhWvS5i15emxMOgstHGKpZUxxH 4ol6eMwu+UsfJIDB8GgMpArgJvu2l/+YvnPc2VE/prgPAhJH63cDifKWCQ2HKEuq JejK4Z+f27yefOdohmVzTQd+SFxCg59XMEvRPbAZkjXu51PY7OuxiaRlEWUyu5H0 7NKOhOHM9EX+qUCvdHPeC+OQU6n2iKEcqPlcGuN8HIGQJv5ehwP+6HmTuUSIuO4C tEEPqCQkBEKinhMwXVrr8kVriwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRnZs7W xSKn5s0j7WgXGegUGngYMB8GA1UdIwQYMBaAFBiR1UzvapDCMvyokeOZ+Xg4ZxHu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU3Ni8yREU5NEE5QUQ3 QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtNSXlfS2lSNDVuNWVEaG5F ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU3Ni8yREU5NEE5QUQ3QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtN SXlfS2lSNDVuNWVEaG5FZTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgU2Y4A33rMCpM4fM3KZiWNg6nhnIjbHZ2LmU0PrAvikIkBZWSz2Xi o9lNJsmMtqEp9eqHvbx6cL2aQVdvwb7ClwsD6dYkWJJdRVlhULPZGoIsCDaEno0a KytHYjgxwbv0TekgihptgZFoaUURds5Bo7h3qyD4LQJbleABwhrGNUDyDdwEAmtY pVWHC7R28/qC5W7VPTf5Qa72TO7FZWLg7R4N5gYJA2nDLc5q9ufpbAUECF7esoDa w1SGTaPgLHQy0kdHp+shBPNo5QENafmcsCgJ2jeJ6Gjn58UDdn8uHI0mexwinZxQ pq4Onxwa5sUlGlU7WYdmyhoiUwsgIUA8 -----END CERTIFICATE-----Generated at Sun Dec 7 02:37:11 2025 by rpki-client