This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: cLMg2qbFDzOCnE0ognSgo8YDSXF8koa8XHbVnjfDIbA= Subject key identifier: 7F:ED:6C:A6:54:1A:72:13:1F:26:D9:12:AB:96:CE:F5:FF:E6:50:9C Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 04E1 Signing time: Sat 06 Dec 2025 22:57:16 +0000 Manifest this update: Sat 06 Dec 2025 22:57:15 +0000 Manifest next update: Sat 13 Dec 2025 22:57:15 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: P6iEw19kaBZ9QfZw0+RwMSN7yOFR2Xv+IC3dKIDHSwc=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: O1MkwGdKDfVHdsOhHQrlU/aFTqc21EnEwMBW12Asebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Dec 6 22:57:15 2025 GMT Not After : Dec 13 22:57:15 2025 GMT Subject: CN=6934b4cc-f2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:ec:09:8d:e7:e2:5e:8f:50:cb:43:54:5a: 6a:f6:cd:7a:fb:1b:fb:4b:11:0b:f1:0f:11:03:f5: fc:0a:c2:05:e3:e6:c9:1f:5e:eb:6a:79:71:65:67: 2e:14:06:12:57:92:7e:18:0f:d6:51:c2:73:76:64: c7:5a:89:a0:ae:7f:b5:92:07:26:94:da:45:fb:f2: 85:39:43:a1:1a:b9:02:b5:32:1a:41:7e:51:2a:5b: 38:9d:0c:15:ee:ad:f8:6b:cf:eb:a5:64:f8:9b:89: e4:07:a2:97:24:1b:5f:b5:93:c4:28:8d:1d:46:f4: ab:53:ae:71:55:38:e1:9f:3e:88:88:56:be:b0:8d: 55:67:b2:34:17:a1:63:e2:a8:25:00:18:ae:e6:8b: 71:a4:b7:9d:38:88:c5:3f:c7:a0:ef:ae:34:5e:1e: e2:eb:4c:30:6d:83:f4:cb:eb:37:01:79:e3:f4:ed: 64:97:b3:9d:e1:f0:19:7c:d5:0c:54:dd:91:db:55: c1:fe:30:a6:b0:03:0a:93:e1:e7:6b:87:40:fb:45: ce:b8:d1:00:1a:e4:f2:1b:d8:0f:ed:a0:dd:dc:2c: 9e:2a:2f:2e:d4:bf:d9:31:59:39:09:18:9a:6c:e8: 16:bb:d3:93:d2:db:49:d4:17:28:16:26:16:23:90: 49:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:ED:6C:A6:54:1A:72:13:1F:26:D9:12:AB:96:CE:F5:FF:E6:50:9C X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4e:ad:3e:8a:0c:6b:31:f9:4c:28:18:bd:6f:25:b1:6c:8e: e8:d3:06:c4:1a:14:65:6c:cc:41:7f:22:63:71:4c:a9:69:95: a0:43:92:ee:8c:58:4a:7d:e3:a4:50:23:2d:12:bf:e0:49:bc: fd:3a:71:b6:78:c7:6c:cd:98:9b:31:59:00:ec:40:f6:71:8e: 6b:ea:a1:f9:8b:86:a8:64:46:ee:19:7f:73:4a:3e:44:af:ae: 04:11:bd:05:5d:c3:22:d6:1e:c8:ac:a4:91:b2:8d:b2:4b:0d: 0f:67:23:3e:cf:98:1b:e9:bd:57:a5:f4:de:c1:31:21:09:20: 83:92:cb:8e:45:b8:68:c9:e2:95:3f:51:38:6a:71:20:dd:86: 88:b4:a7:76:a8:13:e5:41:f5:0e:bc:5e:fc:2a:e8:6b:35:e9: 7e:9c:3b:de:18:f6:d0:e8:86:d3:a1:84:9c:57:d8:64:90:fa: 65:8a:dd:57:57:76:a1:62:d2:1f:0b:09:06:5b:df:c7:79:8b: 4f:72:5a:d8:fe:52:3a:4b:6b:ef:3c:3b:f1:a9:bf:5e:e1:5b: 67:3a:71:a9:5c:7d:81:1d:22:f5:30:88:53:3f:a7:24:b9:86: 79:32:67:11:f1:73:db:8a:a8:ab:66:18:65:cd:30:74:ce:d0: 9c:a6:0f:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKDgyRDgxODg2MURENEE3MEY3NzA4RDIwNUU0Qjg5RTg1 MTRDQTFGNkMwHhcNMjUxMjA2MjI1NzE1WhcNMjUxMjEzMjI1NzE1WjAYMRYwFAYD VQQDEw02OTM0YjRjYy1mMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOjsCY3n4l6PUMtDVFpq9s16+xv7SxEL8Q8RA/X8CsIF4+bJH17ranlxZWcu FAYSV5J+GA/WUcJzdmTHWomgrn+1kgcmlNpF+/KFOUOhGrkCtTIaQX5RKls4nQwV 7q34a8/rpWT4m4nkB6KXJBtftZPEKI0dRvSrU65xVTjhnz6IiFa+sI1VZ7I0F6Fj 4qglABiu5otxpLedOIjFP8eg7640Xh7i60wwbYP0y+s3AXnj9O1kl7Od4fAZfNUM VN2R21XB/jCmsAMKk+Hna4dA+0XOuNEAGuTyG9gP7aDd3CyeKi8u1L/ZMVk5CRia bOgWu9OT0ttJ1BcoFiYWI5BJqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/tbKZU GnITHybZEquWzvX/5lCcMB8GA1UdIwQYMBaAFILYGIYd1KcPdwjSBeS4noUUyh9s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3OTNDTklGNUxpZWhSVEtI MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3 OTNDTklGNUxpZWhSVEtIMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeTq0+igxrMflMKBi9byWxbI7o0wbEGhRlbMxBfyJjcUypaZWgQ5Lu jFhKfeOkUCMtEr/gSbz9OnG2eMdszZibMVkA7ED2cY5r6qH5i4aoZEbuGX9zSj5E r64EEb0FXcMi1h7IrKSRso2ySw0PZyM+z5gb6b1XpfTewTEhCSCDksuORbhoyeKV P1E4anEg3YaItKd2qBPlQfUOvF78KuhrNel+nDveGPbQ6IbToYScV9hkkPplit1X V3ahYtIfCwkGW9/HeYtPclrY/lI6S2vvPDvxqb9e4VtnOnGpXH2BHSL1MIhTP6ck uYZ5MmcR8XPbiqirZhhlzTB0ztCcpg9f -----END CERTIFICATE-----Generated at Sun Dec 7 04:14:01 2025 by rpki-client