This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: 39GKd3h0WhBGUFnqCjp2qJIotB0yDMQjkfo39d0Fu8o= Subject key identifier: 45:BF:B4:C3:FB:26:63:AC:BB:0B:11:CB:FC:96:A8:C3:2C:D5:1C:6D Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: EC Signing time: Tue 23 Dec 2025 04:20:17 +0000 Manifest this update: Tue 23 Dec 2025 04:20:17 +0000 Manifest next update: Tue 30 Dec 2025 04:20:17 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: uxZ49SRox1ssNjZ5a5ETstOMh98i27LRAgdOlb7Q0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Dec 23 04:20:17 2025 GMT Not After : Dec 30 04:20:17 2025 GMT Subject: CN=694a1881-9934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:df:95:1d:c0:9e:75:dd:83:71:f4:f1:db:4b: a3:92:b4:95:f4:20:c4:1f:cf:6a:0d:0d:07:6b:46: b4:b4:7d:9b:e6:5e:3c:4e:e8:c1:f8:24:83:3d:9d: e0:5b:1a:74:a0:d5:f3:28:0a:49:72:98:3b:a4:86: 5d:eb:85:4c:f5:0a:a0:d8:f6:34:9c:a5:fe:b6:c7: 2f:48:e7:a3:75:fd:38:ed:1d:e1:8b:d9:c8:08:00: f1:86:47:a7:99:1a:f9:5a:1c:84:e1:6a:dc:91:d5: 80:af:5e:1b:8f:c2:9a:c5:b7:c6:88:8b:d7:3c:7c: 31:73:6f:93:b7:9f:6b:8f:fb:3d:0f:fb:0c:99:7e: d2:4d:b6:28:5f:2e:ab:85:fd:b5:6e:7c:1c:c0:4d: 83:1d:f5:f5:dd:e2:8e:5c:d4:14:df:d9:cb:7a:77: 75:a3:0b:a1:3d:92:b2:bb:20:b2:14:62:7d:b3:ed: ca:80:13:3f:eb:24:e5:7a:a0:94:12:48:6b:51:4b: c6:0c:d1:79:f1:6b:34:a6:be:25:aa:2d:50:d0:5c: be:04:10:12:a2:35:b2:f5:c7:0d:f1:eb:2c:48:c3: 1e:ba:7d:41:23:d1:05:81:fc:ee:e2:9d:93:7a:a1: 0a:32:22:4d:e0:7d:6b:27:17:c4:d5:14:c7:04:27: 2f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BF:B4:C3:FB:26:63:AC:BB:0B:11:CB:FC:96:A8:C3:2C:D5:1C:6D X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b0:90:7c:45:9c:cb:60:e4:3a:bd:51:b2:e6:6a:7f:f9:09: 15:46:9f:f1:6e:1e:a0:ba:43:41:f3:aa:b5:65:b9:80:65:10: 31:2f:17:24:b8:98:0d:a0:0f:de:3a:4f:a2:3f:b2:ba:1b:4c: ed:7b:64:08:d6:4d:ca:83:93:f3:0f:aa:c5:d2:fb:80:21:95: 6c:fa:71:b7:75:86:e3:02:82:4a:2e:aa:8b:ef:37:29:4e:a4: af:ca:87:6b:bd:c4:11:c0:f7:19:47:6f:a7:d2:4e:53:f3:5c: 20:40:52:0b:0f:85:54:69:70:96:ef:b4:2e:fb:28:73:6c:4a: 55:16:3f:6f:ff:0b:4a:63:82:d0:5a:54:33:a0:77:ce:8c:6d: 7c:91:fc:dd:32:85:40:c0:58:74:98:09:95:9e:0e:d2:b3:94: 1d:ce:fc:3e:34:d7:a8:c1:28:2c:17:b4:5d:b3:fc:34:45:ee: f0:36:98:d1:36:54:6d:f5:f8:49:7a:9d:e0:a0:ec:68:85:b0: 69:50:9b:dc:57:b1:68:af:fd:38:e5:24:f2:86:e3:82:ec:bd: d5:33:ac:92:6e:4e:5f:f1:08:42:d8:de:2d:4d:62:4a:b3:49: 0f:37:8e:60:57:ee:28:5c:ad:b3:74:b8:12:87:a3:03:b5:96: 5e:cd:b1:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDBBMDg4QTE5QkJEQjYxREVEMTkxNkM4NjBBQjJCOEJF RTE4NkVEQ0QwHhcNMjUxMjIzMDQyMDE3WhcNMjUxMjMwMDQyMDE3WjAYMRYwFAYD VQQDDA02OTRhMTg4MS05OTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArd+VHcCedd2DcfTx20ujkrSV9CDEH89qDQ0Ha0a0tH2b5l48TujB+CSDPZ3g Wxp0oNXzKApJcpg7pIZd64VM9Qqg2PY0nKX+tscvSOejdf047R3hi9nICADxhken mRr5WhyE4WrckdWAr14bj8KaxbfGiIvXPHwxc2+Tt59rj/s9D/sMmX7STbYoXy6r hf21bnwcwE2DHfX13eKOXNQU39nLend1owuhPZKyuyCyFGJ9s+3KgBM/6yTleqCU EkhrUUvGDNF58Ws0pr4lqi1Q0Fy+BBASojWy9ccN8essSMMeun1BI9EFgfzu4p2T eqEKMiJN4H1rJxfE1RTHBCcvAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW/tMP7 JmOsuwsRy/yWqMMs1RxtMB8GA1UdIwQYMBaAFAoIihm722He0ZFshgqyuL7hhu3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EQjUxN0IwODc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2YllkN1JrV3lHQ3JLNHZ1R0c3 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EQjUxN0IwODc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2Yllk N1JrV3lHQ3JLNHZ1R0c3YzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBisJB8RZzLYOQ6vVGy5mp/+QkVRp/xbh6gukNB86q1ZbmAZRAxLxck uJgNoA/eOk+iP7K6G0zte2QI1k3Kg5PzD6rF0vuAIZVs+nG3dYbjAoJKLqqL7zcp TqSvyodrvcQRwPcZR2+n0k5T81wgQFILD4VUaXCW77Qu+yhzbEpVFj9v/wtKY4LQ WlQzoHfOjG18kfzdMoVAwFh0mAmVng7Ss5Qdzvw+NNeowSgsF7Rds/w0Re7wNpjR NlRt9fhJep3goOxohbBpUJvcV7For/045STyhuOC7L3VM6ySbk5f8QhC2N4tTWJK s0kPN45gV+4oXK2zdLgSh6MDtZZezbHW -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:41 2025 by rpki-client