This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: 7cdtbPN0RcRbJ5PgymveBEZH3ZQIyp15TVGNDWswosw= Subject key identifier: 1D:44:58:CA:56:73:7B:E4:52:CC:FF:D1:53:7D:B5:2C:DE:CB:2A:67 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 1546 Signing time: Mon 22 Dec 2025 16:31:51 +0000 Manifest this update: Mon 22 Dec 2025 16:31:50 +0000 Manifest next update: Mon 29 Dec 2025 16:31:50 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: YWQdHWrVtdGXfkbR8PYTC5lbK0MOlbm38zmt0OZvz+U=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5457 (0x1551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Dec 22 16:31:50 2025 GMT Not After : Dec 29 16:31:50 2025 GMT Subject: CN=69497276-6cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d6:e4:ea:7b:6d:97:de:d2:cb:68:9a:13:87: d5:94:81:13:3a:27:9b:98:a9:f4:f1:6f:bd:8f:a4: 2b:a7:1c:d7:aa:5a:6a:84:11:fe:00:34:f0:4d:9e: a4:c3:2a:3b:83:72:21:5f:e4:55:97:a6:08:ab:b6: 37:32:37:e6:9f:7a:c6:9a:85:e1:85:0a:c3:81:bc: ca:9b:c3:11:c1:61:3a:da:05:80:9d:7f:9e:fd:9e: 0e:14:93:62:d8:46:7b:fa:7a:4b:57:7b:41:ee:78: a5:9a:57:69:7b:96:e6:5c:aa:1d:63:a6:b9:83:5c: 8b:f5:05:66:37:b9:7c:47:f2:fe:a1:c8:48:31:ae: f6:2f:96:11:7c:03:a2:5a:0f:5c:76:b0:2d:97:57: ef:c7:ac:96:58:64:e9:4d:57:76:c9:35:05:6e:42: dd:b7:ea:a1:19:8c:b4:47:b2:8c:28:55:6b:11:04: c9:0b:7f:77:e1:ef:93:9e:62:a7:c6:f7:d7:3a:b1: f2:e8:14:eb:10:47:54:90:e2:10:ba:76:cc:34:60: 07:fd:83:7a:de:ae:de:95:eb:9b:c4:4b:a1:66:6c: 7c:18:46:2a:82:ae:35:0f:86:bb:29:57:8b:20:a4: a1:0d:6d:64:36:5b:2f:ea:cf:35:3f:5c:58:e3:c8: a7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:44:58:CA:56:73:7B:E4:52:CC:FF:D1:53:7D:B5:2C:DE:CB:2A:67 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:18:e7:8d:56:26:89:51:e4:a9:2d:d1:d4:8d:96:06:40:11: b9:7d:3a:aa:50:41:a4:90:79:76:60:4d:84:07:8b:a4:9f:bf: 88:97:e2:77:63:9f:6c:b3:fb:89:5f:6e:20:13:63:92:89:18: 17:32:ec:b5:ec:e2:ee:a2:89:8f:0b:dc:0b:46:de:67:2f:3c: 27:f9:82:80:b0:c9:4d:e0:f9:18:ef:13:21:15:b8:bb:e0:50: 19:bc:bd:44:4b:d5:e0:9e:17:5f:08:91:76:f8:b3:d3:d1:c4: f2:0f:63:f7:35:a7:f9:85:9d:e5:a2:07:3f:7b:47:fe:f9:2f: 7f:13:44:1f:98:b9:7b:2d:69:57:d9:71:74:52:18:75:41:bd: 28:3c:45:3d:fe:e5:df:f9:60:1b:8d:ad:dc:5d:27:e9:7b:c1: 6f:dd:2e:1a:46:4b:88:c2:73:6a:8b:92:a1:31:19:9f:b5:62: 8a:fd:92:ae:5b:8c:84:fa:d0:ae:4b:c8:ff:94:94:3e:93:0f: 64:32:52:ec:46:1c:bc:58:9d:7f:da:9b:db:55:26:77:8d:61: 31:a5:af:2c:da:dc:4b:d3:9a:73:bc:37:64:cc:1a:55:36:34: ec:73:d5:d7:64:1f:f1:c5:0f:3d:d1:97:ec:9a:42:3f:2d:8b: 39:6e:d7:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUxMjIyMTYzMTUwWhcNMjUxMjI5MTYzMTUwWjAYMRYwFAYD VQQDDA02OTQ5NzI3Ni02Y2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dbk6nttl97Sy2iaE4fVlIETOiebmKn08W+9j6QrpxzXqlpqhBH+ADTwTZ6k wyo7g3IhX+RVl6YIq7Y3Mjfmn3rGmoXhhQrDgbzKm8MRwWE62gWAnX+e/Z4OFJNi 2EZ7+npLV3tB7nilmldpe5bmXKodY6a5g1yL9QVmN7l8R/L+ochIMa72L5YRfAOi Wg9cdrAtl1fvx6yWWGTpTVd2yTUFbkLdt+qhGYy0R7KMKFVrEQTJC3934e+TnmKn xvfXOrHy6BTrEEdUkOIQunbMNGAH/YN63q7eleubxEuhZmx8GEYqgq41D4a7KVeL IKShDW1kNlsv6s81P1xY48inUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1EWMpW c3vkUsz/0VN9tSzeyypnMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKGOeNViaJUeSpLdHUjZYGQBG5fTqqUEGkkHl2YE2EB4ukn7+Il+J3 Y59ss/uJX24gE2OSiRgXMuy17OLuoomPC9wLRt5nLzwn+YKAsMlN4PkY7xMhFbi7 4FAZvL1ES9XgnhdfCJF2+LPT0cTyD2P3Naf5hZ3logc/e0f++S9/E0QfmLl7LWlX 2XF0Uhh1Qb0oPEU9/uXf+WAbja3cXSfpe8Fv3S4aRkuIwnNqi5KhMRmftWKK/ZKu W4yE+tCuS8j/lJQ+kw9kMlLsRhy8WJ1/2pvbVSZ3jWExpa8s2txL05pzvDdkzBpV NjTsc9XXZB/xxQ890ZfsmkI/LYs5btcb -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:32 2025 by rpki-client