This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: D0EdWXfDbno3i70AqEiW/5lnCUMzJ2nweaxWk/m+ips= Subject key identifier: C1:CA:5C:91:40:85:2A:D0:27:A5:54:10:0C:B0:E8:7C:F6:E3:AD:8D Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0180 Signing time: Fri 05 Dec 2025 01:54:03 +0000 Manifest this update: Fri 05 Dec 2025 01:54:03 +0000 Manifest next update: Fri 12 Dec 2025 01:54:03 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: 4PkzI2Iy4l5/8cY2CktGubRIZNeabfA/z5MoRRSooCE=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:54:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Dec 5 01:54:03 2025 GMT Not After : Dec 12 01:54:03 2025 GMT Subject: CN=69323b3b-561c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:58:f3:75:41:07:8f:61:5d:90:12:4e:32:58: c2:29:e0:e7:18:e3:1a:80:57:d6:54:88:89:17:f1: 81:4e:74:74:68:e6:77:7d:c0:8a:bc:e8:f7:d7:df: 8c:0b:b0:f3:3b:6e:17:5e:e6:9c:64:52:35:f0:8b: ba:1c:64:2d:6f:7e:25:d9:d0:27:2c:ae:11:93:05: 37:b3:57:0c:11:09:42:28:ce:0b:53:70:6c:23:f9: f4:bf:38:df:1b:eb:d8:2b:ac:43:2c:1f:bf:9d:6e: dc:5b:95:91:5d:08:14:61:5e:97:d6:91:b8:c2:b6: 31:46:93:83:8e:52:16:9b:df:84:cc:fe:58:a5:44: c5:6f:68:f4:b9:57:e2:26:3e:65:db:3f:5f:f8:b1: eb:3e:55:c0:99:49:50:e1:04:19:d7:a1:fc:31:eb: 0c:22:ef:6d:88:e6:33:93:49:d0:cd:4d:d4:2e:b0: 32:14:ba:a5:2a:b2:42:a2:a3:fb:ca:a2:d1:5c:74: 7e:65:87:b2:52:ad:aa:53:06:46:bc:bb:13:f8:55: a2:00:84:4b:51:9c:0f:9a:97:66:48:a2:73:c0:af: 0f:c7:ba:4e:e8:b1:f9:ff:11:b7:e4:ea:57:b9:63: 76:0b:f7:e2:ab:24:5f:03:24:85:e3:7d:c0:7d:16: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CA:5C:91:40:85:2A:D0:27:A5:54:10:0C:B0:E8:7C:F6:E3:AD:8D X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:0c:b4:ac:d0:00:2f:d8:67:b7:78:f4:9c:b4:8a:bb:44:ca: b2:cd:1c:64:d0:5f:4c:c2:10:ab:11:04:cb:4e:7e:45:a0:72: e4:ec:22:62:74:19:2e:eb:d0:1a:24:b8:95:6f:16:68:7b:8f: e5:29:7a:d8:0d:e2:ab:54:d7:f6:39:e4:54:17:a9:80:4e:31: d7:2a:70:c1:49:91:2c:50:bf:b3:3a:15:bb:6a:bb:4b:1e:51: 72:bc:e5:53:43:19:f0:3e:cc:97:17:f0:6a:16:ae:69:22:c0: 4d:7f:9a:35:4d:88:3e:d1:d4:bf:5b:60:70:24:07:b4:32:27: 81:f9:01:95:2f:c5:09:3d:c7:e4:27:b7:40:4b:da:50:17:e8: 1e:cf:79:b4:64:d0:4c:ae:e8:a8:ce:a2:5c:3b:ee:96:c8:70: a9:62:76:cd:ec:fb:49:0e:86:ab:c9:bd:4e:71:52:a0:52:d9: 65:a9:24:ad:14:e7:b0:35:0e:46:b0:57:4e:8c:36:8e:f3:9e: 4a:75:9e:5f:91:2e:b3:b3:ce:46:39:a2:af:eb:12:66:6f:43: cf:46:4f:7e:bd:9e:ea:03:a4:be:94:ea:7f:2e:03:42:d1:a1: 42:0f:17:be:0f:c4:6d:a6:01:76:71:e4:f4:e0:35:7b:25:4d: 72:1a:d0:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMjA1MDE1NDAzWhcNMjUxMjEyMDE1NDAzWjAYMRYwFAYD VQQDEw02OTMyM2IzYi01NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVjzdUEHj2FdkBJOMljCKeDnGOMagFfWVIiJF/GBTnR0aOZ3fcCKvOj319+M C7DzO24XXuacZFI18Iu6HGQtb34l2dAnLK4RkwU3s1cMEQlCKM4LU3BsI/n0vzjf G+vYK6xDLB+/nW7cW5WRXQgUYV6X1pG4wrYxRpODjlIWm9+EzP5YpUTFb2j0uVfi Jj5l2z9f+LHrPlXAmUlQ4QQZ16H8MesMIu9tiOYzk0nQzU3ULrAyFLqlKrJCoqP7 yqLRXHR+ZYeyUq2qUwZGvLsT+FWiAIRLUZwPmpdmSKJzwK8Px7pO6LH5/xG35OpX uWN2C/fiqyRfAySF433AfRZMpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHKXJFA hSrQJ6VUEAyw6Hz2462NMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDDLSs0AAv2Ge3ePSctIq7RMqyzRxk0F9MwhCrEQTLTn5FoHLk7CJi dBku69AaJLiVbxZoe4/lKXrYDeKrVNf2OeRUF6mATjHXKnDBSZEsUL+zOhW7artL HlFyvOVTQxnwPsyXF/BqFq5pIsBNf5o1TYg+0dS/W2BwJAe0MieB+QGVL8UJPcfk J7dAS9pQF+gez3m0ZNBMruiozqJcO+6WyHCpYnbN7PtJDoaryb1OcVKgUtllqSSt FOewNQ5GsFdOjDaO855KdZ5fkS6zs85GOaKv6xJmb0PPRk9+vZ7qA6S+lOp/LgNC 0aFCDxe+D8RtpgF2ceT04DV7JU1yGtAj -----END CERTIFICATE-----Generated at Sun Dec 7 00:57:57 2025 by rpki-client