This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: gnzmxs35Naxf2936WEuUwKPGzf9aqtH9np0a0KcKbC0= Subject key identifier: C8:7F:7A:A3:95:BE:D4:0C:41:03:C2:D6:9B:35:FD:5B:8D:76:74:05 Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 0A09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 09FD Signing time: Sat 06 Dec 2025 19:05:53 +0000 Manifest this update: Sat 06 Dec 2025 19:05:52 +0000 Manifest next update: Sat 13 Dec 2025 19:05:52 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: i1iOYvIKWwJ/mdNPf38C5xQ23/bVB6gJ/NI1WKVv5jk=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2569 (0xa09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Dec 6 19:05:52 2025 GMT Not After : Dec 13 19:05:52 2025 GMT Subject: CN=69347e91-82c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e8:7f:cb:74:32:91:03:97:c2:f4:ff:ee:36: a6:e4:6c:ca:36:18:60:f2:a3:ab:03:90:56:79:a8: 51:b7:07:cb:0c:d3:a6:98:ee:b6:62:ee:6c:4a:f0: aa:e0:cc:01:45:f8:9f:38:61:26:a3:10:bf:e5:0d: 0f:b2:36:36:68:ec:da:e7:33:22:77:f6:6e:ca:8c: 8d:a0:2e:a4:4e:03:96:ba:2c:d5:2e:05:44:90:4d: c3:b1:cc:a7:2f:12:cd:fa:bc:49:8c:58:ae:80:af: e5:bc:7c:5b:78:c7:e8:8d:21:89:aa:3f:a6:56:47: ef:a5:8c:ed:6f:ff:05:e2:b0:0c:fa:f1:d2:80:23: fc:e8:b0:6d:96:00:f2:19:1f:1e:98:dd:f7:63:ec: 28:dc:bd:80:e4:61:a6:53:ad:49:d7:7c:02:ad:f4: a4:33:08:34:b9:15:e6:96:fe:62:94:9d:f8:e0:70: ae:b1:ae:d1:88:6e:06:aa:2b:78:13:33:11:97:75: 1d:1e:1e:22:c9:b6:5c:fd:c9:a8:e5:72:00:4b:3a: f1:55:61:19:d4:8d:03:39:43:64:8d:a6:0b:ea:c0: 34:ca:d6:78:27:32:70:70:27:f8:9f:af:8b:60:f5: 5a:a8:91:06:e9:82:db:2d:d9:f9:c9:7e:b9:9f:35: e3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:7F:7A:A3:95:BE:D4:0C:41:03:C2:D6:9B:35:FD:5B:8D:76:74:05 X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:3c:09:ac:85:af:d7:63:13:e7:62:15:2f:da:19:91:fe:4c: ca:c4:e4:70:86:e7:bc:e5:15:1c:85:80:3f:e2:2f:09:08:3d: 7a:05:35:34:8c:b3:c9:5d:26:93:e7:07:49:f3:b3:c1:dd:11: 8f:a0:9e:df:1b:dd:ec:80:cc:85:93:da:27:47:9a:7e:16:00: f0:38:8e:14:c6:4b:fb:27:e9:d2:19:31:1e:64:eb:0e:1f:04: 1f:7d:d9:c3:ae:e9:79:3f:5a:ab:d8:bc:fe:c1:2f:67:ed:ef: 1a:fd:04:7b:eb:94:7f:44:3a:c7:3a:6b:bf:04:a8:5a:34:99: db:ee:b3:96:e9:9f:30:fb:0c:d9:33:55:f4:28:d2:1c:26:50: 2a:19:ef:9f:09:c9:8c:eb:39:c3:34:3a:10:02:de:8f:c8:74: 50:49:a5:11:6d:fb:fe:fb:ec:ff:ea:2b:ac:7c:54:36:29:cf: d4:5e:e1:87:3d:ed:ea:14:08:4e:e9:90:e4:5d:7f:25:eb:c9: 4f:a4:ff:d9:e1:e1:18:56:91:b9:05:4c:cc:a8:3f:2a:f2:8a: 8e:08:8a:8f:ae:8f:1e:cc:1a:4d:b1:43:f0:e7:e5:6b:c7:05: fd:55:51:49:23:10:65:09:fb:41:84:96:8e:e7:cb:70:e2:41: 90:62:26:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUxMjA2MTkwNTUyWhcNMjUxMjEzMTkwNTUyWjAYMRYwFAYD VQQDEw02OTM0N2U5MS04MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+h/y3QykQOXwvT/7jam5GzKNhhg8qOrA5BWeahRtwfLDNOmmO62Yu5sSvCq 4MwBRfifOGEmoxC/5Q0PsjY2aOza5zMid/ZuyoyNoC6kTgOWuizVLgVEkE3Dscyn LxLN+rxJjFiugK/lvHxbeMfojSGJqj+mVkfvpYztb/8F4rAM+vHSgCP86LBtlgDy GR8emN33Y+wo3L2A5GGmU61J13wCrfSkMwg0uRXmlv5ilJ344HCusa7RiG4Gqit4 EzMRl3UdHh4iybZc/cmo5XIASzrxVWEZ1I0DOUNkjaYL6sA0ytZ4JzJwcCf4n6+L YPVaqJEG6YLbLdn5yX65nzXj6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMh/eqOV vtQMQQPC1ps1/VuNdnQFMB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsPAmsha/XYxPnYhUv2hmR/kzKxORwhue85RUchYA/4i8JCD16BTU0 jLPJXSaT5wdJ87PB3RGPoJ7fG93sgMyFk9onR5p+FgDwOI4Uxkv7J+nSGTEeZOsO HwQffdnDrul5P1qr2Lz+wS9n7e8a/QR765R/RDrHOmu/BKhaNJnb7rOW6Z8w+wzZ M1X0KNIcJlAqGe+fCcmM6znDNDoQAt6PyHRQSaURbfv+++z/6iusfFQ2Kc/UXuGH Pe3qFAhO6ZDkXX8l68lPpP/Z4eEYVpG5BUzMqD8q8oqOCIqPro8ezBpNsUPw5+Vr xwX9VVFJIxBlCftBhJaO58tw4kGQYiZG -----END CERTIFICATE-----Generated at Sun Dec 7 01:11:06 2025 by rpki-client