This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: y2j7Ba4MHcbce9Bzae3MldW20kPiob4wCa3dk/EDbAY= Subject key identifier: 3A:A6:E9:0F:1F:0A:14:00:47:E8:1C:18:91:2E:F9:49:F5:DD:31:9C Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 01DD Signing time: Sun 07 Dec 2025 01:13:35 +0000 Manifest this update: Sun 07 Dec 2025 01:13:35 +0000 Manifest next update: Sun 14 Dec 2025 01:13:35 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: RpYq+zxkjU70KuSuTZqxgbLJNWcrAsWAtfoI9L5IreU=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: SdXEUbD7bDMQhTYpbl9h+rsPxGL65X2f3Ma+s3etM2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: Dec 7 01:13:35 2025 GMT Not After : Dec 14 01:13:35 2025 GMT Subject: CN=6934d4bf-9a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:16:c5:b1:d1:a4:de:4d:b5:ec:9c:fa:3a: 39:f1:98:2c:b4:0b:58:a4:73:64:38:11:69:c4:e9: b9:42:ab:83:e9:f0:68:a8:18:14:7f:15:ab:b6:b5: c1:39:59:5a:57:85:87:cf:6f:c8:53:2a:e9:4d:04: 34:3b:ad:a7:09:46:d0:59:9a:b2:9d:81:a9:ce:dc: 57:5f:89:24:e1:00:0b:a7:55:28:a4:b8:23:ae:bd: 01:d2:d6:e6:2f:e2:98:79:62:57:f2:67:30:94:bf: 51:52:d2:94:69:86:4e:a5:2e:b9:42:31:bf:59:07: 82:25:67:7f:e9:e6:1f:f6:d9:09:b1:22:bf:7b:fe: 00:15:e2:87:b2:69:ed:3b:c7:f3:68:67:e4:1d:0d: 3a:36:db:ab:87:56:61:39:00:b9:ed:4f:e7:e1:47: c0:08:00:10:c7:22:5f:b2:55:94:fc:ac:93:dd:81: b3:81:cf:70:12:86:ba:2b:12:0e:9e:55:c8:d2:e4: 12:1c:e7:3c:b1:bf:40:52:10:0b:32:ec:6b:75:4f: a5:2c:8e:5c:32:b3:78:0d:ff:9c:52:b6:81:33:bd: 18:bb:07:9b:b0:c6:db:07:bd:61:0e:58:c8:45:28: cb:82:ff:1d:3c:36:7a:dc:76:01:3c:41:84:41:d8: d0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A6:E9:0F:1F:0A:14:00:47:E8:1C:18:91:2E:F9:49:F5:DD:31:9C X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:eb:4a:c1:ef:4b:e3:7e:aa:6a:70:17:3b:66:79:24:f9:b1: be:1c:1c:c3:df:bd:39:c5:ee:78:a3:65:cf:55:e4:96:f9:38: 38:b4:86:ef:8d:a7:c5:2a:49:a1:50:50:fb:2c:cc:79:c2:43: f3:dc:ef:37:b2:3d:ac:90:cf:1e:39:5b:32:68:48:23:3b:a5: d9:f9:82:ee:a6:21:d8:3b:61:70:58:6d:a2:d5:cd:eb:ca:3a: b4:8a:bf:30:7b:8f:5b:86:c7:d7:94:20:0d:01:24:31:2d:1f: 1d:a0:52:9c:e4:66:0f:67:ee:a1:14:3e:96:50:4b:69:fb:fb: 79:01:4c:8a:d3:d1:27:90:bc:3f:ee:19:47:bc:f9:f9:bf:37: 7d:70:03:f6:d0:59:66:28:ce:9a:d3:34:f9:e7:56:1f:06:0c: ed:25:ce:02:7d:46:9b:b4:cd:55:fa:fa:f3:3a:cc:d5:9c:77: d2:95:12:2c:96:b5:ed:31:58:38:16:90:e1:9a:11:55:15:06: ad:21:22:6b:52:d4:98:39:f0:03:98:3d:dc:30:d4:ad:10:d1: 4e:94:a9:ed:e9:54:af:67:1f:5e:a9:ba:19:7f:76:d0:f6:cc: eb:f0:ee:59:50:4b:d9:e7:7d:79:31:56:d3:84:e0:c3:6f:f3: 0a:04:48:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjUxMjA3MDExMzM1WhcNMjUxMjE0MDExMzM1WjAYMRYwFAYD VQQDEw02OTM0ZDRiZi05YTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6gWxbHRpN5Nteyc+jo58ZgstAtYpHNkOBFpxOm5QquD6fBoqBgUfxWrtrXB OVlaV4WHz2/IUyrpTQQ0O62nCUbQWZqynYGpztxXX4kk4QALp1UopLgjrr0B0tbm L+KYeWJX8mcwlL9RUtKUaYZOpS65QjG/WQeCJWd/6eYf9tkJsSK/e/4AFeKHsmnt O8fzaGfkHQ06Nturh1ZhOQC57U/n4UfACAAQxyJfslWU/KyT3YGzgc9wEoa6KxIO nlXI0uQSHOc8sb9AUhALMuxrdU+lLI5cMrN4Df+cUraBM70YuwebsMbbB71hDljI RSjLgv8dPDZ63HYBPEGEQdjQmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqm6Q8f ChQAR+gcGJEu+Un13TGcMB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC460rB70vjfqpqcBc7Znkk+bG+HBzD3705xe54o2XPVeSW+Tg4tIbv jafFKkmhUFD7LMx5wkPz3O83sj2skM8eOVsyaEgjO6XZ+YLupiHYO2FwWG2i1c3r yjq0ir8we49bhsfXlCANASQxLR8doFKc5GYPZ+6hFD6WUEtp+/t5AUyK09EnkLw/ 7hlHvPn5vzd9cAP20FlmKM6a0zT551YfBgztJc4CfUabtM1V+vrzOszVnHfSlRIs lrXtMVg4FpDhmhFVFQatISJrUtSYOfADmD3cMNStENFOlKnt6VSvZx9eqboZf3bQ 9szr8O5ZUEvZ5315MVbThODDb/MKBEid -----END CERTIFICATE-----Generated at Sun Dec 7 10:06:32 2025 by rpki-client