This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: gvCywmVjDw+xrrzsfziz/XpJ9XSdLdkRdC4QLZabvx0= Subject key identifier: D9:38:1A:E0:09:5F:B8:BD:4C:61:74:BC:DD:D0:8A:27:5B:9A:A6:89 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B87 Signing time: Sat 20 Dec 2025 18:37:06 +0000 Manifest this update: Sat 20 Dec 2025 18:37:05 +0000 Manifest next update: Sat 27 Dec 2025 18:37:05 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: DnOes03l4p3RKR+Bbjuo/TebgO8qKbsS24VdHCRCn4g=) 2: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) 3: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2964 (0xb94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Dec 20 18:37:05 2025 GMT Not After : Dec 27 18:37:05 2025 GMT Subject: CN=6946ecd1-ca79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:53:8b:02:a6:c4:3c:1f:71:45:16:e9:ed:21: 7b:54:a5:b1:d0:e5:5a:0a:63:a0:9d:c2:0a:42:4e: 3a:2d:c4:5f:04:8c:8f:67:da:b7:29:a8:7d:fc:ff: 13:30:5b:4c:13:e0:bb:16:cc:16:a2:1e:0d:ea:c1: 00:4d:46:94:28:7a:27:9b:f4:c2:22:5b:43:67:4e: ac:74:7b:9c:ec:61:81:1c:57:c0:a2:bb:13:8f:58: e7:12:32:67:f4:0c:94:2b:5b:09:47:88:a7:47:b0: 58:8f:36:8d:b9:51:7f:4d:3e:f6:7f:b5:28:61:10: 1d:ff:42:e0:4f:7b:ce:ae:e6:75:63:b2:e4:b1:ef: a2:6f:62:b3:18:68:da:45:fe:71:69:42:1c:08:11: 7e:b1:08:9b:49:f0:46:a6:7d:8d:8c:88:4b:9e:20: 63:18:3b:6f:07:9a:27:1f:c9:b7:cb:e4:99:d6:c5: 7e:2a:6d:f5:ff:10:87:38:ad:4f:7a:19:62:1c:37: d6:e8:5a:c0:e1:10:fa:b9:a7:ca:5e:8b:dc:51:0b: ec:0f:09:ec:b9:8e:eb:ee:e1:04:4d:4b:3e:88:21: f5:93:a8:c5:8f:23:e7:24:07:58:cf:54:85:a6:83: 8e:89:19:60:42:9a:bc:c9:3e:52:32:98:da:83:de: 50:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:38:1A:E0:09:5F:B8:BD:4C:61:74:BC:DD:D0:8A:27:5B:9A:A6:89 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:23:49:24:1f:0e:26:4d:a0:3c:66:80:be:ac:24:4f:8e:b9: b1:4a:28:0d:75:18:e5:dd:42:d7:ad:73:95:f4:0f:c7:c4:cd: 13:a8:46:aa:92:de:37:e0:71:b0:cf:a6:93:89:01:22:86:81: 58:99:c7:8a:78:ca:19:ec:e8:3b:88:40:b4:67:c0:32:8d:27: 77:6f:8f:e5:bc:67:6c:24:fe:66:cb:f6:17:89:66:46:d2:4d: 54:63:44:56:a1:b4:5f:a6:1c:8f:df:b7:26:a2:73:04:3b:a4: 85:72:5f:1c:bb:55:03:3a:f3:de:53:cc:e0:43:53:f7:d9:32: 2d:2a:a9:9c:97:69:e2:87:4f:0a:2b:1e:52:f0:02:ee:26:07: 48:af:7f:89:94:45:61:c6:d5:3b:f3:40:36:37:7f:cc:bc:dc: bc:35:26:0a:80:b9:d1:21:ff:83:cd:29:84:fc:49:72:a6:42: 8f:95:bd:c1:86:cf:de:f9:34:69:d6:18:0a:45:6c:b0:ab:5f: 73:e1:42:72:a1:cd:b7:22:bd:f6:73:f1:d6:97:e5:8a:b9:1e: 8f:77:13:1b:de:c2:12:3c:87:10:21:78:75:73:48:61:e6:df: 2d:ba:ca:88:94:ac:81:49:c7:0e:b1:49:6f:df:3d:bf:9d:98: a2:12:aa:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUxMjIwMTgzNzA1WhcNMjUxMjI3MTgzNzA1WjAYMRYwFAYD VQQDDA02OTQ2ZWNkMS1jYTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1OLAqbEPB9xRRbp7SF7VKWx0OVaCmOgncIKQk46LcRfBIyPZ9q3Kah9/P8T MFtME+C7FswWoh4N6sEATUaUKHonm/TCIltDZ06sdHuc7GGBHFfAorsTj1jnEjJn 9AyUK1sJR4inR7BYjzaNuVF/TT72f7UoYRAd/0LgT3vOruZ1Y7Lkse+ib2KzGGja Rf5xaUIcCBF+sQibSfBGpn2NjIhLniBjGDtvB5onH8m3y+SZ1sV+Km31/xCHOK1P ehliHDfW6FrA4RD6uafKXovcUQvsDwnsuY7r7uEETUs+iCH1k6jFjyPnJAdYz1SF poOOiRlgQpq8yT5SMpjag95QlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNk4GuAJ X7i9TGF0vN3QiidbmqaJMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKI0kkHw4mTaA8ZoC+rCRPjrmxSigNdRjl3ULXrXOV9A/HxM0TqEaq kt434HGwz6aTiQEihoFYmceKeMoZ7Og7iEC0Z8AyjSd3b4/lvGdsJP5my/YXiWZG 0k1UY0RWobRfphyP37cmonMEO6SFcl8cu1UDOvPeU8zgQ1P32TItKqmcl2nih08K Kx5S8ALuJgdIr3+JlEVhxtU780A2N3/MvNy8NSYKgLnRIf+DzSmE/ElypkKPlb3B hs/e+TRp1hgKRWywq19z4UJyoc23Ir32c/HWl+WKuR6PdxMb3sISPIcQIXh1c0hh 5t8tusqIlKyBSccOsUlv3z2/nZiiEqo2 -----END CERTIFICATE-----Generated at Sat Dec 20 22:15:03 2025 by rpki-client