This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: qfHKsOD+p+NUzRE3ZgRKW6h84gSL5jLgJfuDgQ25ceo= Subject key identifier: 0D:92:3E:B9:C6:1D:20:6B:AB:B7:42:80:AF:35:C6:26:ED:99:6D:93 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 19A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1F8D Signing time: Sat 06 Dec 2025 16:01:24 +0000 Manifest this update: Sat 06 Dec 2025 16:01:24 +0000 Manifest next update: Sat 13 Dec 2025 16:01:24 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: lG5zazkiGICH3UuxpUwVkjOWk9N+eDTwNawfR/t05M4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6566 (0x19a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Dec 6 16:01:24 2025 GMT Not After : Dec 13 16:01:24 2025 GMT Subject: CN=69345354-a618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:35:d1:5c:18:ea:b8:1d:bf:97:78:69:61:05: 95:a2:b0:e9:55:ac:cc:6e:0d:fe:6e:85:bd:74:27: d7:7e:dd:72:32:91:f1:46:04:a0:7d:9b:61:de:55: ab:31:49:d4:1b:28:59:df:fd:d9:d3:bb:0f:2e:33: 9d:95:c6:b3:f9:0f:51:6e:97:74:78:11:64:3c:a9: ee:d5:54:40:f9:27:29:9f:0f:a9:6c:4b:22:b0:fd: 0b:36:88:79:8c:42:0f:e5:51:62:9d:b3:3a:0a:ae: bd:9a:43:71:b5:f1:b1:e0:11:23:1a:b0:3c:30:66: aa:28:5e:d3:a4:6a:c0:20:63:27:3d:6e:5e:ab:93: 05:ca:6c:2f:d3:0d:c4:b4:0b:36:f5:e7:cb:18:4f: ee:c8:63:41:34:e6:d8:52:eb:31:99:6b:a8:23:cc: 0d:de:c4:97:ef:98:52:45:b6:2a:bc:0a:23:3f:02: 5e:41:07:dc:44:a1:76:b1:32:bd:11:c3:ed:01:0b: 15:1a:86:43:ac:0d:d4:3e:b3:06:69:22:0b:62:ac: ee:8f:5b:20:ed:ab:ce:27:e3:60:a4:ba:75:c8:13: d3:7d:10:0a:3b:c1:36:dd:1d:2d:93:3c:0d:28:6d: b3:64:20:03:4f:74:6e:4d:b8:de:78:6f:98:ef:6d: 86:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:92:3E:B9:C6:1D:20:6B:AB:B7:42:80:AF:35:C6:26:ED:99:6D:93 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b0:9f:05:a6:a8:02:57:76:2c:f3:6d:16:84:88:cc:a3:ee: 47:8f:56:14:e6:09:bb:47:10:40:e5:03:b1:91:2d:45:6b:fb: ff:6e:12:88:47:73:ea:bd:fa:d6:6b:77:2d:b5:7e:2d:2a:17: 00:48:68:72:a6:3a:4a:50:4c:30:ee:18:af:bb:20:e7:98:86: 7f:14:74:75:a4:d3:03:9e:a7:2a:a9:1c:ae:6c:a7:7d:b7:5e: 9d:39:76:d0:86:73:9d:83:05:69:4c:d6:c4:18:3c:f9:37:21: b3:78:84:98:0a:84:3a:ba:be:40:ae:40:4f:55:7e:ef:3a:f5: 41:ca:3a:53:de:6a:bd:0e:57:fd:ca:4b:7d:6b:4b:08:99:ce: 1f:fc:41:c7:4e:f8:9b:bb:ef:31:51:75:e6:4e:9d:e3:18:15: 51:72:bd:74:98:52:9c:5d:92:a8:25:37:f6:0e:42:c6:f9:fe: 08:b5:17:70:19:f7:09:2e:7f:78:62:a7:8f:21:84:37:f8:33: a5:d3:14:ed:67:d1:75:f5:7c:9d:ac:96:16:ef:37:ef:53:a0: 94:9b:ff:cb:fa:eb:b1:a4:56:b0:2e:a6:96:7c:e2:92:ac:19: c4:3a:d7:48:db:5d:59:cb:64:59:13:6b:f5:fe:04:31:96:a9: 9d:85:db:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjUxMjA2MTYwMTI0WhcNMjUxMjEzMTYwMTI0WjAYMRYwFAYD VQQDEw02OTM0NTM1NC1hNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jXRXBjquB2/l3hpYQWVorDpVazMbg3+boW9dCfXft1yMpHxRgSgfZth3lWr MUnUGyhZ3/3Z07sPLjOdlcaz+Q9Rbpd0eBFkPKnu1VRA+Scpnw+pbEsisP0LNoh5 jEIP5VFinbM6Cq69mkNxtfGx4BEjGrA8MGaqKF7TpGrAIGMnPW5eq5MFymwv0w3E tAs29efLGE/uyGNBNObYUusxmWuoI8wN3sSX75hSRbYqvAojPwJeQQfcRKF2sTK9 EcPtAQsVGoZDrA3UPrMGaSILYqzuj1sg7avOJ+NgpLp1yBPTfRAKO8E23R0tkzwN KG2zZCADT3RuTbjeeG+Y722GswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2SPrnG HSBrq7dCgK81xibtmW2TMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9sJ8FpqgCV3Ys820WhIjMo+5Hj1YU5gm7RxBA5QOxkS1Fa/v/bhKI R3PqvfrWa3cttX4tKhcASGhypjpKUEww7hivuyDnmIZ/FHR1pNMDnqcqqRyubKd9 t16dOXbQhnOdgwVpTNbEGDz5NyGzeISYCoQ6ur5ArkBPVX7vOvVByjpT3mq9Dlf9 ykt9a0sImc4f/EHHTvibu+8xUXXmTp3jGBVRcr10mFKcXZKoJTf2DkLG+f4ItRdw GfcJLn94YqePIYQ3+DOl0xTtZ9F19XydrJYW7zfvU6CUm//L+uuxpFawLqaWfOKS rBnEOtdI211Zy2RZE2v1/gQxlqmdhdsG -----END CERTIFICATE-----Generated at Sun Dec 7 03:38:55 2025 by rpki-client