This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: 8JxTi3BoIVY/DP4BEY360CjO2KkUvhx8UfAZ2LqrBAg= Subject key identifier: DD:12:28:0E:A9:CE:F7:97:40:2D:45:7C:EC:04:1C:08:C3:D9:A8:94 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 0604 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05F3 Signing time: Thu 04 Dec 2025 21:40:13 +0000 Manifest this update: Thu 04 Dec 2025 21:40:13 +0000 Manifest next update: Thu 11 Dec 2025 21:40:12 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: 1AmMTog+5Gfa5Uu9fFjWv4DSelz34f/2KWxwDiQFrPo=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Dec 4 21:40:13 2025 GMT Not After : Dec 11 21:40:12 2025 GMT Subject: CN=6931ffbd-a487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:7f:f7:15:af:c9:9f:83:7d:b2:64:82:a4: 09:61:c9:9f:5a:53:dd:86:ac:31:14:12:6a:d8:d4: f3:4a:2d:aa:ab:72:3a:f6:ac:21:50:6b:de:e1:4d: ef:ef:8c:e8:52:c7:6a:38:b9:29:44:f0:93:60:a0: c1:5e:59:21:bf:90:b5:cc:eb:5a:26:97:f0:ee:3b: b9:cf:08:35:7e:9c:c2:15:07:ef:09:a5:c5:c3:6a: 30:9d:ff:ab:98:db:85:f6:d1:f1:c8:66:c5:28:2c: db:15:63:b9:21:5b:00:52:6e:e7:a4:b0:36:6c:40: 2e:68:57:e3:bf:e4:cf:c0:9b:34:0a:3d:a5:f8:d6: 4d:71:c9:4c:f0:ec:ea:3a:da:db:4a:32:1d:d3:06: 7c:ae:ef:74:39:dc:ea:32:a2:60:97:7b:5e:37:c5: 96:16:4c:6a:4a:90:41:b2:f1:a8:6c:c5:de:fb:0a: 08:7d:75:54:2e:ca:6a:40:80:51:54:5f:cc:c8:33: db:b4:de:6b:3f:9f:02:50:9c:58:db:f5:23:2f:93: 52:23:19:67:a6:be:d8:3d:ff:d3:56:b2:06:01:f8: 85:0a:3e:2b:a4:be:4a:ec:00:33:c8:dd:50:02:cc: b5:85:59:11:d1:5a:89:f5:24:01:7f:99:85:e1:03: 01:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:12:28:0E:A9:CE:F7:97:40:2D:45:7C:EC:04:1C:08:C3:D9:A8:94 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:63:f6:94:40:2d:1b:d5:c9:4e:53:20:42:5f:f5:ea:0f:53: 0c:65:a8:23:47:4a:66:14:05:9c:e7:90:ca:56:18:06:6d:28: 9f:bf:ee:55:69:05:42:ef:c7:66:67:b4:0a:83:7f:84:38:90: 7b:b3:a4:57:c8:25:c7:43:40:95:c2:48:9b:a4:09:5e:b1:cf: 51:b8:69:99:65:22:2a:4e:83:bf:88:30:fd:c1:76:75:32:30: 26:84:24:b6:b1:4c:8e:17:2d:3b:52:53:62:28:df:9b:4f:fc: 2d:85:06:bb:a6:18:42:5c:a1:d8:2b:7b:af:46:5c:1e:9b:22: 48:95:54:24:12:1c:d0:d1:f8:e1:12:ad:03:c8:b8:bf:9a:2b: 44:7c:1c:4b:f6:5a:90:13:40:84:dd:ea:53:8d:57:a7:d4:0a: cf:8c:da:28:38:b1:3f:63:a9:1d:03:3f:9a:0c:e9:8f:9c:ce: af:c8:b0:b0:39:cb:13:d2:53:9b:a8:dc:57:c8:e0:37:08:17: 8f:37:e4:e9:b8:7f:0e:9c:de:75:d0:de:83:44:a0:21:db:58: 18:da:b0:4d:cd:ea:52:b1:e7:80:1e:7e:d5:53:ba:67:11:e9: c6:23:f1:56:21:f3:b3:c9:ff:f5:8e:59:62:4c:9d:17:c9:2a: 19:d8:b4:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUxMjA0MjE0MDEzWhcNMjUxMjExMjE0MDEyWjAYMRYwFAYD VQQDEw02OTMxZmZiZC1hNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbZ/9xWvyZ+DfbJkgqQJYcmfWlPdhqwxFBJq2NTzSi2qq3I69qwhUGve4U3v 74zoUsdqOLkpRPCTYKDBXlkhv5C1zOtaJpfw7ju5zwg1fpzCFQfvCaXFw2ownf+r mNuF9tHxyGbFKCzbFWO5IVsAUm7npLA2bEAuaFfjv+TPwJs0Cj2l+NZNcclM8Ozq OtrbSjId0wZ8ru90OdzqMqJgl3teN8WWFkxqSpBBsvGobMXe+woIfXVULspqQIBR VF/MyDPbtN5rP58CUJxY2/UjL5NSIxlnpr7YPf/TVrIGAfiFCj4rpL5K7AAzyN1Q Asy1hVkR0VqJ9SQBf5mF4QMBrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0SKA6p zveXQC1FfOwEHAjD2aiUMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIY/aUQC0b1clOUyBCX/XqD1MMZagjR0pmFAWc55DKVhgGbSifv+5V aQVC78dmZ7QKg3+EOJB7s6RXyCXHQ0CVwkibpAlesc9RuGmZZSIqToO/iDD9wXZ1 MjAmhCS2sUyOFy07UlNiKN+bT/wthQa7phhCXKHYK3uvRlwemyJIlVQkEhzQ0fjh Eq0DyLi/mitEfBxL9lqQE0CE3epTjVen1ArPjNooOLE/Y6kdAz+aDOmPnM6vyLCw OcsT0lObqNxXyOA3CBePN+TpuH8OnN510N6DRKAh21gY2rBNzepSseeAHn7VU7pn EenGI/FWIfOzyf/1jlliTJ0XySoZ2LRG -----END CERTIFICATE-----Generated at Sat Dec 6 16:57:04 2025 by rpki-client