This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: YNKmGe3cmJAJIVR1NUmaGKRpu53qSFmQMe7j5DlDF7o= Subject key identifier: A2:CC:5D:B2:51:D8:75:24:B8:9A:E3:19:67:B6:47:E1:0A:44:FF:62 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B7F Signing time: Thu 04 Dec 2025 18:25:54 +0000 Manifest this update: Thu 04 Dec 2025 18:25:54 +0000 Manifest next update: Thu 11 Dec 2025 18:25:54 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: Ir78q8hXWMFfq6jPxHsAV9WeyS9Dr/CGFp8zmCmiFjQ=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Dec 4 18:25:54 2025 GMT Not After : Dec 11 18:25:54 2025 GMT Subject: CN=6931d232-b045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bc:ef:54:31:0d:96:eb:57:94:7a:ed:55:66: 73:cf:69:d8:06:d7:fc:79:4c:e1:77:58:71:03:2e: 3a:a5:18:86:03:fd:f9:64:23:67:56:39:0b:4b:48: 92:5c:6b:cf:29:8c:ae:60:e3:15:b4:93:e4:2c:1a: 65:e7:df:ce:e4:a6:de:17:18:ea:2c:6f:1c:0f:cf: 8e:a8:4e:bf:2a:24:57:1c:a7:2a:5c:51:5e:1c:d9: 74:81:65:c7:0e:f3:73:09:63:74:ac:b9:e1:1d:7c: c6:9f:2b:58:9e:07:0d:c6:fb:f5:11:1f:71:71:f9: 78:fb:b8:44:8f:59:62:60:17:34:7c:9f:75:89:c1: a3:7b:3e:9a:9a:3c:e0:b5:33:57:f0:54:86:75:c2: 8b:5f:ee:73:91:a5:68:80:e3:d4:67:85:2a:b6:f5: db:a1:88:e8:69:59:cb:19:88:50:48:f0:e4:a5:8a: 99:92:cf:35:48:d3:38:96:fd:ff:0a:19:a9:d4:2f: 6c:f6:81:bf:46:85:ed:c2:1d:9f:a8:44:ac:ff:32: 3e:be:a4:bf:e0:24:02:a0:46:c4:53:07:c2:c5:d8: cd:fc:9a:ce:7e:57:fb:13:61:78:85:a4:49:53:15: 61:23:25:b2:5a:f8:5c:d4:9a:96:da:1e:4e:f1:3c: 78:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CC:5D:B2:51:D8:75:24:B8:9A:E3:19:67:B6:47:E1:0A:44:FF:62 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:04:a7:fd:18:15:e6:1b:d3:47:04:6a:63:13:78:48:f8:cb: 1d:71:ff:92:84:10:52:d2:5f:f1:d3:f9:94:e7:b5:fa:3d:1b: 52:2b:e6:b1:e3:39:57:b4:fb:af:aa:e5:ba:06:da:7a:aa:08: 75:c6:6c:64:7d:84:20:74:65:78:e1:51:c0:65:11:0c:9d:d7: 88:7c:57:92:66:73:de:9d:ce:f9:10:2a:b9:32:7c:1c:ae:11: ae:aa:b1:3f:78:45:f9:0a:d9:e4:6f:3a:a6:52:92:ef:06:0e: ee:1a:89:bb:76:33:31:a9:8f:e6:9a:43:2c:5c:5e:a4:a8:d4: 03:89:d0:62:e8:b8:85:c6:a6:7a:87:35:41:6d:5f:d8:f1:0e: d4:2b:aa:25:b7:35:a3:6f:47:4f:a9:c8:3d:af:3b:c6:3f:a9: 5e:b7:1d:2b:83:82:1e:b5:6d:2a:7c:44:1e:e6:41:dc:f8:9f: 94:3b:0b:6e:af:4c:ab:9d:1e:fc:04:5f:75:b4:f6:08:43:73: 5b:bc:5f:b0:fa:bb:10:79:eb:a0:d5:c4:bc:2e:78:b1:d0:71: 51:a7:cc:b8:e7:59:bb:0f:bb:96:58:b7:40:b7:bd:32:10:04: d4:41:89:9e:e4:59:6f:f4:d7:6f:d9:79:5d:6f:34:6f:00:97: 26:18:49:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUxMjA0MTgyNTU0WhcNMjUxMjExMTgyNTU0WjAYMRYwFAYD VQQDEw02OTMxZDIzMi1iMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLzvVDENlutXlHrtVWZzz2nYBtf8eUzhd1hxAy46pRiGA/35ZCNnVjkLS0iS XGvPKYyuYOMVtJPkLBpl59/O5KbeFxjqLG8cD8+OqE6/KiRXHKcqXFFeHNl0gWXH DvNzCWN0rLnhHXzGnytYngcNxvv1ER9xcfl4+7hEj1liYBc0fJ91icGjez6amjzg tTNX8FSGdcKLX+5zkaVogOPUZ4UqtvXboYjoaVnLGYhQSPDkpYqZks81SNM4lv3/ Chmp1C9s9oG/RoXtwh2fqESs/zI+vqS/4CQCoEbEUwfCxdjN/JrOflf7E2F4haRJ UxVhIyWyWvhc1JqW2h5O8Tx4DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLMXbJR 2HUkuJrjGWe2R+EKRP9iMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDBKf9GBXmG9NHBGpjE3hI+Msdcf+ShBBS0l/x0/mU57X6PRtSK+ax 4zlXtPuvquW6Btp6qgh1xmxkfYQgdGV44VHAZREMndeIfFeSZnPenc75ECq5Mnwc rhGuqrE/eEX5CtnkbzqmUpLvBg7uGom7djMxqY/mmkMsXF6kqNQDidBi6LiFxqZ6 hzVBbV/Y8Q7UK6oltzWjb0dPqcg9rzvGP6letx0rg4IetW0qfEQe5kHc+J+UOwtu r0yrnR78BF91tPYIQ3NbvF+w+rsQeeug1cS8Lnix0HFRp8y451m7D7uWWLdAt70y EATUQYme5Flv9Ndv2XldbzRvAJcmGElp -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:37 2025 by rpki-client