This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: ZGiMhkQcYA0SV6RoupkEFP3fPNHZdgkdflFtWsGpgkE= Subject key identifier: A6:8D:BA:37:1F:2E:8F:47:2E:6F:EF:F9:6A:73:5D:65:F5:62:75:CA Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0188 Signing time: Sun 21 Dec 2025 02:51:13 +0000 Manifest this update: Sun 21 Dec 2025 02:51:13 +0000 Manifest next update: Sun 28 Dec 2025 02:51:13 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: L8FpOCDnO8IJ54rGmlfmjh2ml2TDEhVSLcB7jW1bonE=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Dec 21 02:51:13 2025 GMT Not After : Dec 28 02:51:13 2025 GMT Subject: CN=694760a1-dd36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:34:80:d6:5c:93:d6:e6:95:8b:5e:cf:ec: 3d:69:6f:95:9b:21:09:09:fa:e9:48:84:00:a5:1e: d7:6e:ee:25:62:e6:1c:b4:44:c0:9b:c3:38:33:f1: 41:69:59:c1:4c:05:22:ab:0c:f2:cc:18:7a:89:51: c6:a7:4d:31:8b:72:96:32:59:3d:41:82:64:71:0f: 1d:5e:4c:d9:ef:1b:19:85:03:e8:d0:62:f8:0c:49: ba:08:ac:44:e0:fa:b0:37:33:cb:5e:d1:9c:fc:b8: 47:b4:6c:82:86:ae:e2:e3:46:2a:23:0f:d8:4f:db: 2c:54:dc:2a:96:d8:4e:b8:f5:f3:64:da:75:64:c3: 74:01:b5:f5:c8:38:49:25:f7:7a:b4:8d:e2:ce:f7: 0c:c8:64:0d:13:5c:74:c2:ad:eb:9f:1a:35:9f:21: 52:b5:5e:94:db:6a:3f:01:65:f5:a2:94:96:1f:1d: 4d:8c:d3:c4:a6:c5:6b:bd:e2:bb:21:e5:46:fe:25: c5:14:8e:46:dc:35:7f:7a:06:25:91:07:4f:73:82: e5:7b:e6:e5:13:fc:51:a4:ca:4a:d0:d5:e1:95:6f: 65:a0:8b:7e:72:a9:10:57:f4:3e:61:4c:ea:b8:5f: 25:b3:aa:f8:e9:29:d7:53:95:d1:22:e6:a8:3a:c6: 01:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8D:BA:37:1F:2E:8F:47:2E:6F:EF:F9:6A:73:5D:65:F5:62:75:CA X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b7:47:2f:b3:f8:b8:37:50:a7:d6:09:da:c6:f2:15:28:77: b6:16:30:62:99:fb:94:af:6c:68:8e:05:99:27:7e:a2:4d:53: ab:15:e0:35:21:8a:34:3e:a2:db:7e:75:71:1c:27:24:3d:61: 54:b3:8c:ff:2f:86:89:12:97:5e:ab:0e:64:5e:40:d5:e3:ef: 9b:c3:da:a2:60:b7:b5:c3:9d:92:25:18:d9:34:3f:22:29:38: e4:4c:03:9b:7b:d2:b9:77:b8:cd:1c:a6:c4:53:aa:1e:dc:2b: 5f:46:3f:06:6d:1f:01:d7:e2:19:96:c9:fa:8f:69:20:e0:2d: e3:d5:fc:99:d2:02:fa:15:bd:40:3c:71:a9:e0:79:90:07:89: 45:cf:3b:a7:61:27:a7:00:20:44:9e:3b:27:7b:51:36:c0:6d: 74:5a:80:af:cb:49:91:e4:a3:87:f2:dd:58:91:6a:15:de:9e: 8f:49:7c:74:d4:da:ac:67:eb:9c:8c:15:5f:d8:e6:51:cd:0b: b5:25:0b:05:ce:52:be:cc:e9:61:ee:9d:ef:61:da:bc:f9:4c: 3f:d4:8a:cb:3c:3d:76:00:ab:14:ea:af:59:4a:0e:38:e5:05: 64:ac:bf:10:12:4e:9d:5f:4e:f9:d2:35:cc:01:58:63:e4:44: 3e:9b:38:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMjIxMDI1MTEzWhcNMjUxMjI4MDI1MTEzWjAYMRYwFAYD VQQDDA02OTQ3NjBhMS1kZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HU0gNZck9bmlYtez+w9aW+VmyEJCfrpSIQApR7Xbu4lYuYctETAm8M4M/FB aVnBTAUiqwzyzBh6iVHGp00xi3KWMlk9QYJkcQ8dXkzZ7xsZhQPo0GL4DEm6CKxE 4PqwNzPLXtGc/LhHtGyChq7i40YqIw/YT9ssVNwqlthOuPXzZNp1ZMN0AbX1yDhJ Jfd6tI3izvcMyGQNE1x0wq3rnxo1nyFStV6U22o/AWX1opSWHx1NjNPEpsVrveK7 IeVG/iXFFI5G3DV/egYlkQdPc4Lle+blE/xRpMpK0NXhlW9loIt+cqkQV/Q+YUzq uF8ls6r46SnXU5XRIuaoOsYBUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaNujcf Lo9HLm/v+WpzXWX1YnXKMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmt0cvs/i4N1Cn1gnaxvIVKHe2FjBimfuUr2xojgWZJ36iTVOrFeA1 IYo0PqLbfnVxHCckPWFUs4z/L4aJEpdeqw5kXkDV4++bw9qiYLe1w52SJRjZND8i KTjkTAObe9K5d7jNHKbEU6oe3CtfRj8GbR8B1+IZlsn6j2kg4C3j1fyZ0gL6Fb1A PHGp4HmQB4lFzzunYSenACBEnjsne1E2wG10WoCvy0mR5KOH8t1YkWoV3p6PSXx0 1NqsZ+ucjBVf2OZRzQu1JQsFzlK+zOlh7p3vYdq8+Uw/1IrLPD12AKsU6q9ZSg44 5QVkrL8QEk6dX0750jXMAVhj5EQ+mzhZ -----END CERTIFICATE-----Generated at Mon Dec 22 01:04:40 2025 by rpki-client