This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: qY4ihe0JJZkA0NnIafFdtu3PjuikrHoeSIheW5PsxzE= Subject key identifier: D5:53:AC:A7:57:74:2D:CB:D0:65:59:A0:C5:B4:C1:BB:A2:77:5B:9F Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1CAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C9F Signing time: Sat 06 Dec 2025 15:50:56 +0000 Manifest this update: Sat 06 Dec 2025 15:50:55 +0000 Manifest next update: Sat 13 Dec 2025 15:50:55 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: kyZDd4TWLzuce3N0VxWsyCgFCerHSlkNJ20BSJcCg8k=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7343 (0x1caf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Dec 6 15:50:55 2025 GMT Not After : Dec 13 15:50:55 2025 GMT Subject: CN=693450df-1d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:00:58:e2:47:f3:50:ab:bd:ff:7a:f2:d4:f4: 1e:c1:7b:72:c2:6f:bc:c1:6e:62:3e:9b:55:fb:6c: 42:53:e9:13:d6:95:de:e7:68:26:2c:f0:6f:26:d6: e0:a2:c1:9d:63:9b:54:8b:59:42:78:d4:19:d1:e8: c7:50:b1:09:4d:72:03:c5:f6:51:ea:f7:ee:1f:4e: 9e:ff:ed:af:51:f5:19:10:77:cc:e6:ff:18:3d:b9: 06:bc:af:2a:6a:05:f1:29:33:fb:63:ec:c2:e0:ad: ab:34:4d:cb:32:2e:74:a5:b5:80:bb:1c:30:6a:3a: ec:ec:93:ca:ae:d1:67:c8:64:9b:74:68:40:a7:b9: e4:89:e3:c1:67:4c:c4:af:40:86:d8:87:40:d1:82: a7:42:22:59:74:18:18:06:3f:88:c3:ae:a9:1e:2f: d2:b6:0c:2c:d1:b1:88:4a:51:de:8b:a1:99:66:73: 95:8c:37:1d:7c:ad:63:df:5f:ff:1c:fd:16:da:78: 48:2a:55:83:a6:20:22:cd:98:1f:9f:fc:66:b0:2e: d5:52:03:27:9e:a2:ff:1a:ba:53:8d:00:20:9e:b7: cf:64:5a:e1:fb:9b:73:ac:4d:c3:ea:30:71:78:b7: 1e:00:fd:ae:a1:74:ce:d7:5a:8c:3f:6b:fa:41:ad: 80:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:53:AC:A7:57:74:2D:CB:D0:65:59:A0:C5:B4:C1:BB:A2:77:5B:9F X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:41:6c:fb:d6:bf:c5:1f:29:8d:41:68:e0:1d:ee:69:af:fe: 16:03:37:0b:29:15:1c:3a:a4:0c:99:df:95:0d:bc:f1:e8:67: c7:70:25:1e:f7:05:63:71:9b:f2:05:7a:df:76:57:95:30:40: ca:fb:6b:97:4e:87:25:20:7e:18:80:d2:9d:f3:ab:c3:95:ac: 7e:18:a5:b7:46:55:7f:a6:67:28:3f:45:0e:48:b0:a1:35:10: 2f:0e:79:3a:2e:8c:6b:a8:d1:23:a2:3d:d2:4b:6e:1e:8b:a2: 35:6c:40:53:cc:84:40:61:95:3d:94:b2:c8:31:62:c2:73:34: c0:a1:3a:d7:8d:1c:0c:1d:7a:ab:37:4e:13:2a:98:9d:30:c2: 8c:94:a7:d7:f1:0f:17:a5:18:3a:46:f8:d8:13:83:ac:b0:40: a6:72:03:6b:4f:e3:9a:81:d0:fe:d8:6a:10:e5:c2:4f:1c:2c: 20:6d:ad:a4:ff:8e:67:89:6d:b4:8f:8f:3b:ee:49:6f:5a:cd: a3:1c:cb:9b:ea:56:05:b7:e0:e7:70:7f:a8:fe:fe:38:b4:e7: 16:6d:1d:65:a7:e1:18:d0:74:12:6c:21:11:31:ce:d1:60:65: 02:3f:1c:8c:4a:d8:fd:3f:e4:76:af:bd:77:1b:1d:54:c7:93: 37:43:1b:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUxMjA2MTU1MDU1WhcNMjUxMjEzMTU1MDU1WjAYMRYwFAYD VQQDEw02OTM0NTBkZi0xZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQBY4kfzUKu9/3ry1PQewXtywm+8wW5iPptV+2xCU+kT1pXe52gmLPBvJtbg osGdY5tUi1lCeNQZ0ejHULEJTXIDxfZR6vfuH06e/+2vUfUZEHfM5v8YPbkGvK8q agXxKTP7Y+zC4K2rNE3LMi50pbWAuxwwajrs7JPKrtFnyGSbdGhAp7nkiePBZ0zE r0CG2IdA0YKnQiJZdBgYBj+Iw66pHi/Stgws0bGISlHei6GZZnOVjDcdfK1j31// HP0W2nhIKlWDpiAizZgfn/xmsC7VUgMnnqL/GrpTjQAgnrfPZFrh+5tzrE3D6jBx eLceAP2uoXTO11qMP2v6Qa2AmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVTrKdX dC3L0GVZoMW0wbuid1ufMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6QWz71r/FHymNQWjgHe5pr/4WAzcLKRUcOqQMmd+VDbzx6GfHcCUe 9wVjcZvyBXrfdleVMEDK+2uXToclIH4YgNKd86vDlax+GKW3RlV/pmcoP0UOSLCh NRAvDnk6LoxrqNEjoj3SS24ei6I1bEBTzIRAYZU9lLLIMWLCczTAoTrXjRwMHXqr N04TKpidMMKMlKfX8Q8XpRg6RvjYE4OssECmcgNrT+OagdD+2GoQ5cJPHCwgba2k /45niW20j4877klvWs2jHMub6lYFt+DncH+o/v44tOcWbR1lp+EY0HQSbCERMc7R YGUCPxyMStj9P+R2r713Gx1Ux5M3QxsF -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:35 2025 by rpki-client