This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: vPUw5BX+7rLrljTSELRKixFsgODocDB2tdz1MftReoQ= Subject key identifier: 23:C3:40:85:9F:FD:2D:53:27:BD:EB:58:73:0C:B2:5A:75:C0:EF:DA Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 9E Signing time: Fri 05 Dec 2025 04:18:29 +0000 Manifest this update: Fri 05 Dec 2025 04:18:29 +0000 Manifest next update: Fri 12 Dec 2025 04:18:29 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: NTUCgg4UgrPWPzN8wu1J+iDNigWPWrqjcIMFZNqOEEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Dec 5 04:18:29 2025 GMT Not After : Dec 12 04:18:29 2025 GMT Subject: CN=69325d15-de5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a0:f1:4e:b9:7f:3e:61:67:4f:e6:07:f2:bd: a2:26:11:81:8b:c1:a5:83:7d:82:9e:58:a4:e9:0f: 40:59:3d:21:96:ee:68:17:ef:6a:e9:10:e9:7d:c6: 7e:f1:98:00:74:f8:fd:b4:d5:9f:fd:69:32:e3:50: 52:ff:a9:5f:90:1f:12:24:6c:17:c4:d0:a2:b8:ec: 01:e7:53:17:51:1e:8f:40:bd:ac:3e:5c:ff:41:2a: cb:05:a0:ce:ec:78:31:c8:4f:5b:bc:fe:5b:e6:83: a1:1b:c6:70:6b:94:e1:8c:cc:b9:69:d7:91:34:45: 3b:18:1d:54:f9:32:15:cb:07:cc:3d:cd:23:f2:6d: f3:9d:2d:1e:9d:61:61:16:72:b6:e1:d3:0b:41:57: 71:33:24:d8:01:86:59:c7:98:45:28:e7:f2:16:6f: 3e:31:20:66:0a:db:ce:ea:a3:05:19:9d:ce:97:62: f8:f7:8f:fb:78:41:9e:90:b8:b3:69:c8:6d:a7:7f: 0e:69:9a:8a:ac:c2:61:7c:2c:5e:b8:fe:21:7d:d4: f0:14:7a:f6:2c:35:e9:07:f9:93:da:ae:b9:be:6d: d6:aa:c3:81:d0:f5:6f:20:e5:fd:ca:0c:45:a1:41: 45:71:a9:20:bf:b3:57:7a:9e:ff:84:80:1a:14:57: 0b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C3:40:85:9F:FD:2D:53:27:BD:EB:58:73:0C:B2:5A:75:C0:EF:DA X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:04:ac:a0:c6:54:f2:e5:b9:fd:9e:a3:bf:59:20:f1:f5:ee: c1:db:0a:40:4f:5d:c9:1b:54:81:10:2e:ef:82:df:d4:20:33: 14:94:e7:3b:db:81:6f:95:f6:fb:78:30:b8:26:a4:a6:b2:49: 37:3b:69:14:ef:79:45:f7:7e:c6:a7:60:45:d3:ab:9d:25:28: a9:17:79:86:43:4d:32:f4:08:2b:11:f2:58:67:84:3b:80:82: c7:fd:5b:58:9e:59:05:28:0a:d8:97:f4:c3:1b:80:64:86:f2: dc:40:87:89:96:5c:27:ae:5a:e1:e8:a7:56:b7:df:bb:c3:5b: 2f:c4:b5:cb:a4:48:32:2c:09:c3:b1:f8:d0:a9:21:c5:10:fb: d3:d7:b6:35:18:c3:b6:37:af:71:bd:37:88:a2:5f:c2:cf:bd: 57:67:dc:8e:b3:de:8f:b5:04:f2:6b:fa:5f:0a:a9:d5:0c:61: e0:a4:c4:82:df:1c:6c:8d:7b:e1:f3:48:6c:eb:84:a8:4d:94: 87:f1:43:54:03:e6:fb:69:a8:9f:6a:34:46:ac:43:71:44:54: 19:b8:94:f1:e8:9e:ee:77:88:c5:b5:28:cd:f2:0c:c0:69:79: 6a:cf:0d:54:45:04:84:0c:33:64:b0:3c:d3:47:3a:a5:c0:1e: 56:94:59:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDE4MEEzNTIyRTIwNTBDNUYxRTA4NzM1MzlCMTJENkQy MzEyQTIwMUEwHhcNMjUxMjA1MDQxODI5WhcNMjUxMjEyMDQxODI5WjAYMRYwFAYD VQQDEw02OTMyNWQxNS1kZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqDxTrl/PmFnT+YH8r2iJhGBi8Glg32Cnlik6Q9AWT0hlu5oF+9q6RDpfcZ+ 8ZgAdPj9tNWf/Wky41BS/6lfkB8SJGwXxNCiuOwB51MXUR6PQL2sPlz/QSrLBaDO 7HgxyE9bvP5b5oOhG8Zwa5ThjMy5adeRNEU7GB1U+TIVywfMPc0j8m3znS0enWFh FnK24dMLQVdxMyTYAYZZx5hFKOfyFm8+MSBmCtvO6qMFGZ3Ol2L494/7eEGekLiz achtp38OaZqKrMJhfCxeuP4hfdTwFHr2LDXpB/mT2q65vm3WqsOB0PVvIOX9ygxF oUFFcakgv7NXep7/hIAaFFcLlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPDQIWf /S1TJ73rWHMMslp1wO/aMB8GA1UdIwQYMBaAFBgKNSLiBQxfHghzU5sS1tIxKiAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xREE1Q0M1NkRG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRGOGVDSE5UbXhMVzBqRXFJ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xREE1Q0M1NkRGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRG OGVDSE5UbXhMVzBqRXFJQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBKygxlTy5bn9nqO/WSDx9e7B2wpAT13JG1SBEC7vgt/UIDMUlOc7 24Fvlfb7eDC4JqSmskk3O2kU73lF937Gp2BF06udJSipF3mGQ00y9AgrEfJYZ4Q7 gILH/VtYnlkFKArYl/TDG4BkhvLcQIeJllwnrlrh6KdWt9+7w1svxLXLpEgyLAnD sfjQqSHFEPvT17Y1GMO2N69xvTeIol/Cz71XZ9yOs96PtQTya/pfCqnVDGHgpMSC 3xxsjXvh80hs64SoTZSH8UNUA+b7aaifajRGrENxRFQZuJTx6J7ud4jFtSjN8gzA aXlqzw1URQSEDDNksDzTRzqlwB5WlFkf -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:48 2025 by rpki-client