This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft File: gHwED6kB5dhpWmU03mbD1qC_vMU.mft (raw, json) Hash identifier: sEbbSHnj4PYI3RAie+4xi0vik11ZNajmkuWmdnJJQP0= Subject key identifier: 36:C6:3F:4C:6E:A0:5B:13:3E:DF:D5:67:39:5A:08:5D:BB:1C:9D:8C Authority key identifier: 80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 Certificate issuer: /CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft Manifest number: 0128 Signing time: Fri 05 Dec 2025 02:45:46 +0000 Manifest this update: Fri 05 Dec 2025 02:45:46 +0000 Manifest next update: Fri 12 Dec 2025 02:45:46 +0000 Files and hashes: 1: gHwED6kB5dhpWmU03mbD1qC_vMU.crl (hash: gjnHBhPg3L6bkGo0UXv9Xe2u8tH+D2Ze/myxjo498pE=) 2: 7D9F83FE10FA11EFADBBC431C4F9AE02.roa (hash: kRUKk6YhznpQLf70+sbW+4rHruxwNLVLHD+xyjgrv/8=) 3: A697738410FA11EF9A068536C4F9AE02.roa (hash: GgKSSa0DZkr/DMOZ+SWiE+267xJNKIhRXUimhakcIXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3F1, serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Validity Not Before: Dec 5 02:45:46 2025 GMT Not After : Dec 12 02:45:46 2025 GMT Subject: CN=6932475a-1dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:9c:5a:16:f8:bb:6f:ff:67:99:e2:99:90: 7f:f2:e5:36:cf:73:14:ab:c3:fd:83:aa:d7:42:2a: 0e:5f:a2:08:e3:62:64:2a:6c:ed:e1:1d:b6:48:94: 51:12:a8:e3:c7:19:02:89:d7:7d:f1:bf:91:29:5d: b1:b3:f6:64:8b:eb:df:82:a0:aa:fe:d2:8c:e4:29: 7a:f0:75:99:7a:7b:e2:2f:3c:19:99:d0:1a:81:6b: b7:ed:4c:63:0f:4d:e0:a3:fd:eb:42:0f:e3:5e:73: f9:56:7d:96:c7:dc:4b:71:86:11:91:e6:33:08:30: 0f:bc:64:77:ee:01:89:cd:24:5b:df:e7:26:93:8e: 77:c3:3e:fc:47:bc:92:98:3e:6d:5e:60:f2:54:36: cf:75:a4:4f:a2:83:02:9b:78:91:d9:cb:5c:9f:68: 13:29:a0:43:84:40:6f:7b:28:1e:ea:84:a9:ed:59: c5:37:15:1a:5f:7d:0a:e8:7e:21:d5:40:5e:da:df: 60:33:52:f0:e9:d8:27:ab:e7:bb:5e:8b:25:b2:87: 15:9e:6d:19:8f:85:6a:c6:6c:8e:d7:2f:01:7c:74: 60:90:56:bc:5b:c0:5d:c8:d9:be:01:bd:67:15:05: 16:50:ac:1a:cc:2e:9b:c8:c6:73:0a:22:45:02:d9: cb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C6:3F:4C:6E:A0:5B:13:3E:DF:D5:67:39:5A:08:5D:BB:1C:9D:8C X509v3 Authority Key Identifier: keyid:80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:c9:cd:ae:41:90:33:6a:53:ce:df:98:3a:e9:cf:b8:4e:ac: cc:14:67:05:99:08:be:a9:15:7c:c7:d3:f3:fc:59:74:2a:cb: e9:0f:46:3b:b0:d5:60:49:d0:18:dc:0d:a5:3a:e4:e0:c5:90: 5d:40:d8:da:1f:bd:cc:8a:04:dc:58:a6:46:56:09:0e:89:ba: 8f:94:1e:5a:f9:5b:de:d4:0d:59:ee:35:9a:c9:71:2d:26:74: d5:77:8a:3b:98:6a:3a:76:d8:5d:71:60:7c:6c:ae:27:f9:07: dc:79:2d:f8:c7:0e:f8:eb:95:61:3b:cb:d1:0f:0d:34:96:a3: 66:7b:5e:50:54:52:75:04:2a:55:71:ee:a6:e3:7c:e4:e5:1b: 57:d0:0e:f1:c2:27:f9:eb:a3:ad:7c:bf:5c:0a:6a:90:67:7c: 34:dd:4e:4e:f7:47:b9:40:3d:40:be:ac:ff:28:00:1f:7f:22: 58:6c:cc:ed:1b:16:1d:3e:89:e4:4b:3d:59:e8:fe:5a:8a:a6: 99:f6:f1:e9:31:82:b4:0b:7e:56:f3:a5:bf:6b:8f:90:6f:87: 50:91:dc:b3:ae:80:d3:33:ae:5a:a1:50:92:10:cc:d9:76:1d: 2b:ef:2b:dd:5a:1d:d2:60:74:bf:51:c6:84:44:59:30:2b:a0: 04:10:15:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMzRjExMTAvBgNVBAUTKDgwN0MwNDBGQTkwMUU1RDg2OTVBNjUzNERFNjZDM0Q2 QTBCRkJDQzUwHhcNMjUxMjA1MDI0NTQ2WhcNMjUxMjEyMDI0NTQ2WjAYMRYwFAYD VQQDEw02OTMyNDc1YS0xZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVScWhb4u2//Z5nimZB/8uU2z3MUq8P9g6rXQioOX6II42JkKmzt4R22SJRR EqjjxxkCidd98b+RKV2xs/Zki+vfgqCq/tKM5Cl68HWZenviLzwZmdAagWu37Uxj D03go/3rQg/jXnP5Vn2Wx9xLcYYRkeYzCDAPvGR37gGJzSRb3+cmk453wz78R7yS mD5tXmDyVDbPdaRPooMCm3iR2ctcn2gTKaBDhEBveyge6oSp7VnFNxUaX30K6H4h 1UBe2t9gM1Lw6dgnq+e7XoslsocVnm0Zj4VqxmyO1y8BfHRgkFa8W8BdyNm+Ab1n FQUWUKwazC6byMZzCiJFAtnLQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbGP0xu oFsTPt/VZzlaCF27HJ2MMB8GA1UdIwQYMBaAFIB8BA+pAeXYaVplNN5mw9agv7zF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzNGMS85NUI3MTFDNDEw RjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVkaHBXbVUwM21iRDFxQ192 TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dId0VENmtCNWRocFdtVTAzbWJEMXFDX3ZNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzNGMS85NUI3MTFDNDEwRjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVk aHBXbVUwM21iRDFxQ192TVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAyc2uQZAzalPO35g66c+4TqzMFGcFmQi+qRV8x9Pz/Fl0KsvpD0Y7 sNVgSdAY3A2lOuTgxZBdQNjaH73MigTcWKZGVgkOibqPlB5a+Vve1A1Z7jWayXEt JnTVd4o7mGo6dthdcWB8bK4n+QfceS34xw7465VhO8vRDw00lqNme15QVFJ1BCpV ce6m43zk5RtX0A7xwif566OtfL9cCmqQZ3w03U5O90e5QD1Avqz/KAAffyJYbMzt GxYdPonkSz1Z6P5aiqaZ9vHpMYK0C35W86W/a4+Qb4dQkdyzroDTM65aoVCSEMzZ dh0r7yvdWh3SYHS/UcaERFkwK6AEEBXS -----END CERTIFICATE-----Generated at Sat Dec 6 22:19:08 2025 by rpki-client