This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: qX1EfJzA/6iXjHwD+sZJ7peBY6qEg+wKMickYOw93X8= Subject key identifier: 10:C6:6C:AA:91:38:FD:E6:5A:25:94:94:FA:A4:86:AC:FE:96:6C:25 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04E0 Signing time: Thu 04 Dec 2025 22:19:32 +0000 Manifest this update: Thu 04 Dec 2025 22:19:32 +0000 Manifest next update: Thu 11 Dec 2025 22:19:32 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: ATLnIqDPuiGtEROou88Wsinj1QiW2pZ1Z2HeJACQmNA=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: Vt6tO0X/X1UwDMUAdETQmDLxSBvUfwttK8IaifttuUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Dec 4 22:19:32 2025 GMT Not After : Dec 11 22:19:32 2025 GMT Subject: CN=693208f4-a8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:23:86:2d:d8:bd:4b:71:16:de:f9:59:aa:31: 8d:7c:02:7c:dd:19:5a:b1:ec:0b:25:90:ff:ae:75: 8b:10:46:d3:47:f3:a3:59:bb:b7:11:f8:c5:ad:d9: ea:66:4e:12:6b:0e:b6:f1:f8:9b:35:49:82:79:d8: 0c:cd:ec:24:66:d3:be:5d:1e:aa:88:3c:77:4b:40: 1f:2e:54:ca:dc:32:cd:ce:8e:7e:fe:37:43:dd:8b: 60:46:34:d7:37:0b:5f:72:c0:16:6a:a8:3c:f0:58: f7:c8:3d:43:d8:ea:ea:f6:a5:7a:6a:af:81:10:e6: fd:24:b6:df:c6:04:0b:67:f0:ee:d6:f6:e5:23:33: 61:e8:20:a3:05:a1:63:f4:a0:63:9d:2c:9b:38:05: 11:ac:c0:9d:7f:51:b1:19:e1:ec:93:20:ba:99:6c: b7:5f:8f:c0:46:8c:61:e1:d8:c6:7c:a0:ca:78:5b: 9d:9e:d3:e2:48:5b:ef:1f:8d:19:87:27:a3:94:47: d1:34:1e:30:3b:26:87:fa:e2:50:2a:c8:ba:7e:8a: 0e:12:af:e8:84:61:4a:c0:45:d3:49:94:f1:57:af: 4a:01:2c:79:d0:20:59:5b:cd:b9:b3:97:c6:4c:02: d8:92:47:26:ab:2d:a7:11:fc:36:3d:18:2c:84:bd: ba:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C6:6C:AA:91:38:FD:E6:5A:25:94:94:FA:A4:86:AC:FE:96:6C:25 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c2:27:e1:2d:09:9a:f9:80:05:24:c4:d8:2c:9b:60:92:f1: 0b:02:27:46:a4:2c:b3:d9:c5:26:cf:19:0d:da:bd:d3:c7:da: 5e:b2:3e:bf:d1:f8:ee:28:2d:83:06:5a:94:8a:42:19:93:15: 2b:52:86:20:89:c1:ba:9a:ff:16:86:7a:55:4e:a9:17:88:6d: ae:61:04:7b:72:2b:2a:ce:e2:39:27:2d:8e:6e:d1:3b:ac:be: 73:1e:aa:f6:01:11:42:08:77:b5:fb:cb:e8:26:44:cf:2c:9b: 89:ac:ae:27:13:50:01:51:f1:75:65:cf:2a:2f:31:d5:df:87: d8:b0:46:2d:f0:58:25:0f:7c:aa:d6:f2:e9:41:e3:12:4f:fd: e7:ef:c4:69:90:52:0c:92:19:4b:8b:1f:02:41:23:eb:90:3c: 9b:00:fb:55:53:1b:b5:3e:5c:3f:18:53:94:58:cd:1d:c2:a0: 85:25:bf:76:02:66:bf:0a:83:ef:94:35:b3:a7:12:2d:8c:d9: 36:fa:a4:23:8d:7b:14:86:48:08:b8:aa:27:30:db:dc:1d:b6: 60:b1:3a:4d:55:cc:c0:46:04:b3:7b:6b:22:11:a7:c1:c0:3d: f7:ce:b3:ea:23:2b:fa:0e:73:56:55:c9:fc:8f:f8:54:b8:ab: b5:40:45:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUxMjA0MjIxOTMyWhcNMjUxMjExMjIxOTMyWjAYMRYwFAYD VQQDEw02OTMyMDhmNC1hOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCOGLdi9S3EW3vlZqjGNfAJ83RlasewLJZD/rnWLEEbTR/OjWbu3EfjFrdnq Zk4Saw628fibNUmCedgMzewkZtO+XR6qiDx3S0AfLlTK3DLNzo5+/jdD3YtgRjTX NwtfcsAWaqg88Fj3yD1D2Orq9qV6aq+BEOb9JLbfxgQLZ/Du1vblIzNh6CCjBaFj 9KBjnSybOAURrMCdf1GxGeHskyC6mWy3X4/ARoxh4djGfKDKeFudntPiSFvvH40Z hyejlEfRNB4wOyaH+uJQKsi6fooOEq/ohGFKwEXTSZTxV69KASx50CBZW825s5fG TALYkkcmqy2nEfw2PRgshL26mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDGbKqR OP3mWiWUlPqkhqz+lmwlMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAawifhLQma+YAFJMTYLJtgkvELAidGpCyz2cUmzxkN2r3Tx9pesj6/ 0fjuKC2DBlqUikIZkxUrUoYgicG6mv8WhnpVTqkXiG2uYQR7cisqzuI5Jy2ObtE7 rL5zHqr2ARFCCHe1+8voJkTPLJuJrK4nE1ABUfF1Zc8qLzHV34fYsEYt8FglD3yq 1vLpQeMST/3n78RpkFIMkhlLix8CQSPrkDybAPtVUxu1Plw/GFOUWM0dwqCFJb92 Ama/CoPvlDWzpxItjNk2+qQjjXsUhkgIuKonMNvcHbZgsTpNVczARgSze2siEafB wD33zrPqIyv6DnNWVcn8j/hUuKu1QEU+ -----END CERTIFICATE-----Generated at Sat Dec 6 16:21:01 2025 by rpki-client