This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: 9Xybk5XUdisXznQgmeTBV1P/mTSKstrCBcOo5sTylDo= Subject key identifier: 74:C2:77:CB:DF:4D:1A:22:2D:75:22:52:A7:18:57:1D:70:16:CF:1F Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 0A1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 0A16 Signing time: Sat 06 Dec 2025 19:02:12 +0000 Manifest this update: Sat 06 Dec 2025 19:02:11 +0000 Manifest next update: Sat 13 Dec 2025 19:02:11 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: cYyt9MYhbQ4V0X9ddCRjZdQsQ2B3kORmkeUzYVVpryw=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2590 (0xa1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Dec 6 19:02:11 2025 GMT Not After : Dec 13 19:02:11 2025 GMT Subject: CN=69347db4-555b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:24:d3:2a:85:08:97:48:37:cd:e8:e0:8a:46: 07:a4:a8:a2:85:c1:9e:aa:db:58:8b:7f:27:fa:a6: 92:62:fe:b0:92:ce:89:28:3d:76:06:e4:d5:22:4d: 73:e1:31:f1:85:c4:8c:8c:44:99:85:8f:06:2d:2e: b3:35:0e:ab:fc:01:d3:ec:6d:35:49:e1:c9:fb:e6: fe:d5:8e:12:e1:5e:a9:c6:68:a7:ea:7c:72:a1:c8: 71:10:95:a2:1d:19:ba:7d:ec:7a:06:6a:54:46:82: 88:4b:c3:d7:86:91:06:c4:bf:f9:5b:64:f9:47:4a: e3:5c:db:24:3e:f6:0e:1e:54:29:26:fc:5d:bf:46: 27:5b:e2:e4:fd:c1:67:51:8e:69:76:05:bb:be:85: 8f:2c:4a:b4:e7:34:b9:5f:ed:c2:8d:64:a0:cf:a2: 2e:56:10:9d:63:47:d9:e9:b0:29:42:21:3c:76:89: b4:52:3a:7d:dd:0a:02:83:28:b3:6a:b8:85:72:5e: ea:0c:31:27:25:76:9f:0a:39:43:60:c0:a5:bd:fd: 60:64:65:fd:11:74:fe:d0:af:db:fb:95:65:c1:35: aa:c6:ff:6b:07:d5:1d:4d:bf:8b:5d:4f:3c:c1:9e: 1b:a6:39:95:18:51:ff:4e:22:14:ca:b9:e8:ee:14: 32:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C2:77:CB:DF:4D:1A:22:2D:75:22:52:A7:18:57:1D:70:16:CF:1F X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:d9:98:e4:93:10:3f:9e:45:7b:7a:8f:14:d8:ad:99:82:51: 4e:f2:46:9e:4a:84:fd:5b:89:f4:03:0e:b9:53:24:f0:7d:9f: 6a:d8:94:2c:51:72:cc:a4:bb:5a:c0:f8:39:98:dc:3c:3d:a1: 1b:b2:21:dc:cf:b7:f8:1c:3d:aa:21:ac:45:3e:a7:36:b5:e6: 67:06:06:52:6a:b5:a3:92:e7:33:7a:10:31:f0:83:7e:cf:1e: b1:5d:c9:57:ce:b0:d8:1b:76:74:6c:b2:70:48:c7:b9:38:37: 70:df:ef:5c:45:36:08:c5:a1:64:0a:77:45:b9:10:f2:d5:d4: a5:a3:83:7b:40:44:44:25:6d:00:ca:ef:46:bd:15:b5:0f:59: ff:55:1f:4e:6f:5b:07:2d:76:39:3e:a7:44:bb:2a:81:5b:e1: 24:1f:ac:aa:d3:69:2a:71:e6:14:2b:be:68:f7:66:30:f8:87: da:39:a2:f0:98:de:4b:cb:1f:6c:1c:45:87:38:b4:33:de:11: a5:3e:e7:6b:04:c1:16:6f:0b:d7:f0:5c:e7:12:ea:d4:a2:12: ee:2a:32:f5:2c:1a:1b:e6:42:1a:e2:92:cb:f7:cc:82:b4:c4: 4f:7d:7b:0a:50:1b:a0:bf:52:31:75:12:43:a8:c6:aa:41:92: af:87:2a:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUxMjA2MTkwMjExWhcNMjUxMjEzMTkwMjExWjAYMRYwFAYD VQQDEw02OTM0N2RiNC01NTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyTTKoUIl0g3zejgikYHpKiihcGeqttYi38n+qaSYv6wks6JKD12BuTVIk1z 4THxhcSMjESZhY8GLS6zNQ6r/AHT7G01SeHJ++b+1Y4S4V6pxmin6nxyochxEJWi HRm6fex6BmpURoKIS8PXhpEGxL/5W2T5R0rjXNskPvYOHlQpJvxdv0YnW+Lk/cFn UY5pdgW7voWPLEq05zS5X+3CjWSgz6IuVhCdY0fZ6bApQiE8dom0Ujp93QoCgyiz ariFcl7qDDEnJXafCjlDYMClvf1gZGX9EXT+0K/b+5VlwTWqxv9rB9UdTb+LXU88 wZ4bpjmVGFH/TiIUyrno7hQyEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTCd8vf TRoiLXUiUqcYVx1wFs8fMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi2ZjkkxA/nkV7eo8U2K2ZglFO8kaeSoT9W4n0Aw65UyTwfZ9q2JQs UXLMpLtawPg5mNw8PaEbsiHcz7f4HD2qIaxFPqc2teZnBgZSarWjkuczehAx8IN+ zx6xXclXzrDYG3Z0bLJwSMe5ODdw3+9cRTYIxaFkCndFuRDy1dSlo4N7QEREJW0A yu9GvRW1D1n/VR9Ob1sHLXY5PqdEuyqBW+EkH6yq02kqceYUK75o92Yw+IfaOaLw mN5Lyx9sHEWHOLQz3hGlPudrBMEWbwvX8FznEurUohLuKjL1LBob5kIa4pLL98yC tMRPfXsKUBugv1IxdRJDqMaqQZKvhyq9 -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:43 2025 by rpki-client