This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: 8uz+zknrQgoVcrxXUvOlQjDggY/vtT04qJ0BoxnMA1E= Subject key identifier: 90:7E:69:4B:E7:DD:3D:95:2F:3A:34:36:F4:7E:60:2C:9A:E2:CA:80 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 0823 Signing time: Thu 04 Dec 2025 19:56:37 +0000 Manifest this update: Thu 04 Dec 2025 19:56:37 +0000 Manifest next update: Thu 11 Dec 2025 19:56:37 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: G6GXixHd2t884UGb7SCgvIvKN89QIkMhAbxZnfLiTdg=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: EgzF4RdbUeBvjesKc59wR9UVO4rx0k2Sq5JHzQFu9tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Dec 4 19:56:37 2025 GMT Not After : Dec 11 19:56:37 2025 GMT Subject: CN=6931e775-1ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:73:7f:af:3d:e8:f4:5b:83:b4:79:d7:cf:30: 4f:7f:57:72:4c:38:b5:96:db:fb:b2:d9:02:92:27: b4:36:cd:0f:b2:63:f2:b7:42:cc:e0:34:2d:f7:a2: 0a:f6:d9:91:fa:81:b9:7f:b2:4c:bd:68:01:d0:bf: ed:d9:ca:2e:21:c3:25:6d:e5:ca:bd:79:88:1d:4e: b3:1c:e1:26:83:aa:3d:8e:98:14:72:f0:2f:bd:00: 7c:d0:d4:45:76:12:74:ae:3d:d3:cf:4a:10:8f:72: bf:c5:df:8d:69:f7:7f:01:f8:c9:26:3a:5e:14:8e: 74:1c:88:f8:69:f6:b9:d7:e3:7d:ef:61:78:96:1b: 71:44:cd:4c:05:98:e6:b3:b4:21:28:26:2f:57:cb: 9c:84:e5:52:56:dc:08:4a:4a:23:b6:56:be:63:bf: 32:6b:6d:b3:f1:f7:f1:ba:4a:78:e4:dc:7e:21:2f: bd:fe:5b:b2:d9:01:b4:0f:5c:44:9b:69:ce:3f:9a: e0:5d:35:c5:b9:0e:1d:93:a2:eb:6e:07:21:4c:74: 19:f7:3c:80:e6:a0:4e:ce:57:ad:b4:ae:89:b9:0a: 8e:e4:e9:42:17:17:60:45:96:e1:86:a4:35:3f:a6: 66:bb:c2:60:22:7c:30:ed:ca:a3:87:c7:58:e2:38: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7E:69:4B:E7:DD:3D:95:2F:3A:34:36:F4:7E:60:2C:9A:E2:CA:80 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:75:78:73:16:46:5c:32:ac:95:eb:bb:f9:fb:46:37:39:d6: 8c:29:d2:90:11:f5:1a:08:47:b2:e7:04:7b:54:00:d9:34:50: 98:37:f4:0c:61:8d:4c:85:f1:ab:13:d0:7e:ad:59:17:3f:a2: db:7c:a6:ec:f6:a2:4e:86:e9:c8:4e:fe:ac:16:de:ff:54:8e: eb:4d:fc:25:73:95:c3:fc:2e:ff:0b:fc:c4:cd:96:8e:c8:e5: 3a:18:68:ca:91:92:aa:02:7b:a3:ea:fe:82:84:c9:26:f7:3d: 92:03:9f:0d:cc:f2:54:6a:fd:19:4f:26:9c:a1:82:3b:4a:64: 29:9a:8c:3d:e7:76:90:35:08:2d:a9:0e:2d:7f:84:bc:8e:4b: ef:8c:b4:48:e3:3c:99:81:5c:a0:8c:61:e5:46:61:0e:43:2e: 16:fc:ba:6d:c8:4b:a4:f5:f1:fa:86:db:30:17:55:11:5c:95: e5:16:ee:08:17:c5:80:e0:3d:19:f4:29:12:e5:c2:75:ac:d8: 9a:3a:b1:a2:05:a2:9f:2a:c0:39:6b:b1:8a:b4:0f:1c:30:13: bb:e8:2c:4d:64:3e:5f:ea:d3:18:87:8e:57:6e:31:4a:90:41: da:d9:f3:a0:b2:69:74:54:23:ea:72:d1:89:d1:09:6d:ed:df: 8a:07:13:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUxMjA0MTk1NjM3WhcNMjUxMjExMTk1NjM3WjAYMRYwFAYD VQQDEw02OTMxZTc3NS0xZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHN/rz3o9FuDtHnXzzBPf1dyTDi1ltv7stkCkie0Ns0PsmPyt0LM4DQt96IK 9tmR+oG5f7JMvWgB0L/t2couIcMlbeXKvXmIHU6zHOEmg6o9jpgUcvAvvQB80NRF dhJ0rj3Tz0oQj3K/xd+Nafd/AfjJJjpeFI50HIj4afa51+N972F4lhtxRM1MBZjm s7QhKCYvV8uchOVSVtwISkojtla+Y78ya22z8ffxukp45Nx+IS+9/luy2QG0D1xE m2nOP5rgXTXFuQ4dk6LrbgchTHQZ9zyA5qBOzlettK6JuQqO5OlCFxdgRZbhhqQ1 P6Zmu8JgInww7cqjh8dY4jhZHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJB+aUvn 3T2VLzo0NvR+YCya4sqAMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9dXhzFkZcMqyV67v5+0Y3OdaMKdKQEfUaCEey5wR7VADZNFCYN/QM YY1MhfGrE9B+rVkXP6LbfKbs9qJOhunITv6sFt7/VI7rTfwlc5XD/C7/C/zEzZaO yOU6GGjKkZKqAnuj6v6ChMkm9z2SA58NzPJUav0ZTyacoYI7SmQpmow953aQNQgt qQ4tf4S8jkvvjLRI4zyZgVygjGHlRmEOQy4W/LptyEuk9fH6htswF1URXJXlFu4I F8WA4D0Z9CkS5cJ1rNiaOrGiBaKfKsA5a7GKtA8cMBO76CxNZD5f6tMYh45XbjFK kEHa2fOgsml0VCPqctGJ0Qlt7d+KBxM4 -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:26 2025 by rpki-client