This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: RATce2JgT6sha8oOLwkopvwpkA0vtfEWDeAYDrT2xUE= Subject key identifier: D1:C0:C0:F8:92:22:21:77:40:19:64:1C:6A:AD:88:F1:21:ED:24:85 Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: 78 Signing time: Fri 19 Dec 2025 05:48:08 +0000 Manifest this update: Fri 19 Dec 2025 05:48:08 +0000 Manifest next update: Fri 26 Dec 2025 05:48:08 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: NIlnDnqUuaHiYWM3AzAFoZIgdr+tylk0c2kAmDniXKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Dec 19 05:48:08 2025 GMT Not After : Dec 26 05:48:08 2025 GMT Subject: CN=6944e718-81c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:51:38:a6:b2:34:32:e6:42:b1:ad:b4:b4: b0:22:f3:d1:28:29:ab:07:50:2e:af:77:79:18:18: cc:d8:b2:ab:4a:f7:dc:43:3d:fd:f9:07:50:28:65: e6:bf:a3:47:37:7e:2f:c0:07:cf:18:b7:96:19:81: db:46:a2:40:03:99:6e:a5:92:b9:a6:18:c9:e6:5d: 2b:c4:db:b8:43:fc:2a:40:99:94:15:e7:8a:6d:f3: a6:59:69:67:70:db:30:03:b4:56:97:6d:7d:18:14: 14:f9:09:22:32:d4:d8:11:e2:c1:59:46:6d:e7:eb: cd:7b:42:bd:c4:af:58:f2:5e:fa:38:19:06:b2:b8: 42:a0:7c:85:98:96:ca:3d:12:14:63:fe:75:af:8d: 80:a2:9a:16:12:a3:37:87:bd:b7:0b:bb:2e:11:b7: 0e:14:a2:8e:99:0f:8c:af:1a:7e:a0:2d:f9:68:01: 27:21:73:9c:25:2e:3d:95:bd:02:02:92:ac:92:06: c4:e2:b7:9c:b5:02:3a:b7:3d:3d:b7:27:a6:32:73: 3a:1e:71:ac:a9:0e:92:f8:4e:8d:ab:59:9c:ca:90: 2f:c1:d4:d0:ca:30:c0:83:da:44:6b:c3:df:06:24: 97:37:20:33:d0:b4:52:6b:4b:1b:dc:d6:c1:71:09: 0b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C0:C0:F8:92:22:21:77:40:19:64:1C:6A:AD:88:F1:21:ED:24:85 X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7e:a5:d3:5f:1f:45:db:14:3d:d5:83:c9:ee:9f:c5:89:a4: 48:7e:4d:30:c4:e5:fc:65:10:89:f1:6f:34:79:a9:70:23:f1: bb:d0:67:89:a0:23:43:6e:19:76:e4:42:9c:40:cf:d4:46:6b: 03:2a:8c:ac:fd:da:d6:a7:3b:3e:fe:7a:a5:62:ab:12:69:b1: 16:2f:ce:07:86:e0:8d:c9:02:e2:d1:12:27:08:eb:f2:b1:29: 74:50:c7:aa:c4:a3:1d:e7:e8:85:92:f4:f7:e8:ae:dd:c2:d4: 37:cb:e5:de:7c:5a:9c:9d:5f:77:34:33:ca:fc:c9:96:21:e2: 76:09:f0:5f:f6:d2:cb:5a:3b:75:34:6d:d8:ac:22:61:d2:cd: 9c:21:5c:71:6f:32:a4:64:8d:12:66:08:ba:62:4e:25:d7:32: b7:19:a8:4d:b5:54:e4:45:19:fb:a7:0f:cd:3e:72:bc:e9:2b: 7b:57:d4:22:db:c8:50:0d:47:9d:93:e2:6b:1f:44:d8:84:07: 96:2d:34:0c:41:1b:92:fc:e8:2e:b1:75:60:21:5d:04:9d:70: 66:6e:19:39:59:0e:15:48:88:82:c0:6b:2e:51:9c:0e:ec:7e: 1f:1e:2c:b1:f8:91:c8:2d:c2:d5:b1:74:9d:bb:ad:bb:24:3f: 06:aa:cf:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NThBQTExMC8GA1UEBRMoMjM3NDM0NEI3MUIyOUYwRTM4MzUyMENBRkM2Qzg4MzUw QzM1NjE2ODAeFw0yNTEyMTkwNTQ4MDhaFw0yNTEyMjYwNTQ4MDhaMBgxFjAUBgNV BAMMDTY5NDRlNzE4LTgxYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe51E4prI0MuZCsa20tLAi89EoKasHUC6vd3kYGMzYsqtK99xDPf35B1AoZea/ o0c3fi/AB88Yt5YZgdtGokADmW6lkrmmGMnmXSvE27hD/CpAmZQV54pt86ZZaWdw 2zADtFaXbX0YFBT5CSIy1NgR4sFZRm3n6817Qr3Er1jyXvo4GQayuEKgfIWYlso9 EhRj/nWvjYCimhYSozeHvbcLuy4Rtw4Uoo6ZD4yvGn6gLfloASchc5wlLj2VvQIC kqySBsTit5y1Ajq3PT23J6YyczoecaypDpL4To2rWZzKkC/B1NDKMMCD2kRrw98G JJc3IDPQtFJrSxvc1sFxCQuBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0cDA+JIi IXdAGWQcaq2I8SHtJIUwHwYDVR0jBBgwFoAUI3Q0S3Gynw44NSDK/GyINQw1YWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1OEFBL0NBNTBDOTI2MjQw MjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSTNRMFMzR3ludzQ0TlNES19HeUlOUXcxWVdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 OEFBL0NBNTBDOTI2MjQwMjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0 NE5TREtfR3lJTlF3MVlXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIx+pdNfH0XbFD3Vg8nun8WJpEh+TTDE5fxlEInxbzR5qXAj8bvQZ4mg I0NuGXbkQpxAz9RGawMqjKz92tanOz7+eqViqxJpsRYvzgeG4I3JAuLREicI6/Kx KXRQx6rEox3n6IWS9Pfort3C1DfL5d58WpydX3c0M8r8yZYh4nYJ8F/20staO3U0 bdisImHSzZwhXHFvMqRkjRJmCLpiTiXXMrcZqE21VORFGfunD80+crzpK3tX1CLb yFANR52T4msfRNiEB5YtNAxBG5L86C6xdWAhXQSdcGZuGTlZDhVIiILAay5RnA7s fh8eLLH4kcgtwtWxdJ27rbskPwaqz6Q= -----END CERTIFICATE-----Generated at Sun Dec 21 00:17:21 2025 by rpki-client