This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: UsLaqPOqfrKGHSLX7E3rA5vUN3GULZffNNxBpFnwo/Q= Subject key identifier: C6:30:FB:C8:7A:33:E9:13:CE:72:CA:91:B5:BA:3F:19:F6:02:F7:F2 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 04A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 04A2 Signing time: Thu 04 Dec 2025 22:30:16 +0000 Manifest this update: Thu 04 Dec 2025 22:30:16 +0000 Manifest next update: Thu 11 Dec 2025 22:30:16 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: lyZaygTfk35ZnTWWHR/B2Fiyg4Rt9HP0druZ1P+BsbQ=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Dec 4 22:30:16 2025 GMT Not After : Dec 11 22:30:16 2025 GMT Subject: CN=69320b78-1489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:21:f6:8c:0e:31:c9:05:3e:1e:b0:3f:b6:27: 26:f0:05:a3:b6:34:de:79:98:63:6c:f6:2b:2d:85: 0f:fd:80:0c:4b:25:4a:11:fd:6e:f0:ae:e6:15:ee: 29:d9:c7:3b:dd:fa:32:2a:d7:ff:94:1a:91:48:e4: e9:a8:da:8e:84:ea:71:b0:d3:bf:c0:6c:48:bb:7b: c6:e5:17:09:2d:60:3f:57:c2:c6:89:c7:33:14:03: 23:b4:86:64:1e:c8:f6:2d:6a:23:00:66:cc:6b:3f: f4:e9:5f:8c:78:6c:2c:1c:a0:c5:de:ea:e3:8e:19: fa:2b:7e:ac:18:f7:a4:18:9a:72:35:e6:b5:aa:14: f0:5f:f3:68:ad:37:9a:4a:6d:7f:9a:55:b1:c7:73: 10:e1:29:aa:1b:7b:4c:ca:cd:64:29:7b:03:1a:26: 32:82:ac:c1:42:ab:84:c7:3d:4f:45:ea:b8:dd:51: c6:4e:7d:8c:84:26:ee:b8:54:5a:4c:ec:8f:d6:14: 4c:04:be:20:7c:6f:44:65:f6:45:e2:43:d7:28:42: 3b:99:b6:4c:0f:d6:a1:53:d8:44:e9:73:9d:9d:3d: 4e:be:23:f0:fe:a8:ae:1f:0a:8d:28:4f:3d:e2:57: c9:d3:58:f1:c1:a7:1c:59:6d:b1:5e:05:1e:c8:4d: 41:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:30:FB:C8:7A:33:E9:13:CE:72:CA:91:B5:BA:3F:19:F6:02:F7:F2 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:9a:26:e5:d3:56:ed:ae:b1:10:7d:ea:0f:a5:aa:4c:83:f3: 5d:4c:77:71:09:ce:89:ce:ee:ab:8f:51:61:76:6d:7b:b8:7a: 88:e6:8b:12:df:31:35:bd:6e:6c:6e:9a:69:cd:0f:4d:8e:87: a2:c2:c4:d2:87:96:f6:b5:76:35:81:4f:0f:ef:44:c2:be:31: 6d:d7:91:1c:24:42:6b:a4:78:9d:44:3a:a0:05:96:e7:7b:0e: 3e:aa:47:17:20:b4:c3:6e:50:99:3a:e4:36:a3:d9:91:35:b6: 39:c7:67:c1:27:87:21:c3:22:69:da:cf:4d:d6:01:b4:b5:90: 1f:24:2b:2a:da:d8:af:04:3b:31:c5:23:7f:eb:76:e1:24:2b: 2a:be:9a:76:bb:45:3e:b9:71:92:5c:a4:a4:cc:5c:2e:fd:e0: 8a:63:25:72:fc:1e:71:0a:3f:c1:7a:8b:88:d6:35:11:69:45: c0:a4:8a:1b:cd:a2:2c:9a:70:2f:71:c8:6c:e8:58:c9:13:f6: f8:d8:80:70:bf:aa:a8:85:d8:5a:cb:7c:6e:f1:2c:26:bd:a8: 9e:79:c5:2a:19:51:0d:a9:e0:e9:94:3a:a4:6d:4f:89:fc:58: e1:5d:f7:17:59:5e:09:5f:a2:68:a1:45:4c:40:50:d5:43:77: c4:17:53:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUxMjA0MjIzMDE2WhcNMjUxMjExMjIzMDE2WjAYMRYwFAYD VQQDEw02OTMyMGI3OC0xNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSH2jA4xyQU+HrA/ticm8AWjtjTeeZhjbPYrLYUP/YAMSyVKEf1u8K7mFe4p 2cc73foyKtf/lBqRSOTpqNqOhOpxsNO/wGxIu3vG5RcJLWA/V8LGicczFAMjtIZk Hsj2LWojAGbMaz/06V+MeGwsHKDF3urjjhn6K36sGPekGJpyNea1qhTwX/NorTea Sm1/mlWxx3MQ4SmqG3tMys1kKXsDGiYygqzBQquExz1PReq43VHGTn2MhCbuuFRa TOyP1hRMBL4gfG9EZfZF4kPXKEI7mbZMD9ahU9hE6XOdnT1OviPw/qiuHwqNKE89 4lfJ01jxwaccWW2xXgUeyE1BAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYw+8h6 M+kTznLKkbW6Pxn2AvfyMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZmibl01btrrEQfeoPpapMg/NdTHdxCc6Jzu6rj1Fhdm17uHqI5osS 3zE1vW5sbpppzQ9NjoeiwsTSh5b2tXY1gU8P70TCvjFt15EcJEJrpHidRDqgBZbn ew4+qkcXILTDblCZOuQ2o9mRNbY5x2fBJ4chwyJp2s9N1gG0tZAfJCsq2tivBDsx xSN/63bhJCsqvpp2u0U+uXGSXKSkzFwu/eCKYyVy/B5xCj/BeouI1jURaUXApIob zaIsmnAvcchs6FjJE/b42IBwv6qohdhay3xu8SwmvaieecUqGVENqeDplDqkbU+J /FjhXfcXWV4JX6JooUVMQFDVQ3fEF1Mz -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:11 2025 by rpki-client