This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft File: -gRcYwK4c-iDZfqaAhSZtPPFhog.mft (raw, json) Hash identifier: To5PvJLieFKji7iDRtlvLLAsNQEG7So0xp+dWoOIttU= Subject key identifier: A4:2D:06:1B:A8:CA:BB:66:54:D4:73:C2:3B:16:FF:61:22:AD:32:23 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 05BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft Manifest number: 05A5 Signing time: Thu 18 Dec 2025 22:36:37 +0000 Manifest this update: Thu 18 Dec 2025 22:36:37 +0000 Manifest next update: Thu 25 Dec 2025 22:36:37 +0000 Files and hashes: 1: -gRcYwK4c-iDZfqaAhSZtPPFhog.crl (hash: Mv1OImvKmzxTJKft26KL5y6qWH20dlaPQX3wQfGXUms=) 2: 52A1A77A6ECF11F0B2785815C4F9AE02.roa (hash: ZDRfk70st2kL6l3vbu2GItPWm8/EuvkzaT+2ep7EeqM=) 3: D62399042D1E11EE8C614E3EC4F9AE02.roa (hash: dy7HlTozJjIKYVnOC7Ac5E0oRz65i8VQkjJrYKePISw=) 4: 36C4FAAAA9FC11EEBEF3E64AC4F9AE02.roa (hash: KP27oWwshi1ZI1hZNDH63RAAkLv0dKJvlvJEGsDjzKs=) 5: 6DC7671CBB0311F0BAA3F480C4F9AE02.roa (hash: IXjsC1Gn8YS8EVHrHIvkv8PnIK6AM47wRbwZW8rBBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1469 (0x5bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Dec 18 22:36:37 2025 GMT Not After : Dec 25 22:36:37 2025 GMT Subject: CN=694481f5-9d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a8:43:06:6f:80:08:a2:e5:01:a1:d2:5b:d5: ec:d1:ab:79:d1:23:02:68:2c:6d:79:85:0a:d3:c2: 8a:6d:68:55:4c:b8:9e:49:d6:4d:67:58:ac:2a:19: cb:a2:82:96:a7:04:5b:27:50:b5:35:fc:99:05:69: 21:ec:e9:21:b7:b5:6c:e5:f5:2f:41:13:3c:c6:4b: 46:60:77:a8:f4:ca:d7:c3:e9:1f:00:7c:6e:56:08: 09:dc:81:67:71:38:f2:cf:11:cc:c5:63:fa:4f:83: 19:1b:13:d2:3e:e1:90:90:98:4b:5e:99:7d:34:f3: b5:23:08:76:0d:09:45:71:27:5a:6d:2c:a5:0c:bc: 9c:aa:88:a1:f4:57:f6:74:dc:fd:28:3c:1c:86:c6: 4e:db:52:4a:61:01:71:5a:c7:65:1e:17:d4:69:a8: 7b:fb:0a:45:a1:e0:04:01:aa:f7:8a:b2:eb:d3:f1: 69:49:c2:23:fc:c8:ac:83:2f:81:2f:32:12:bf:3e: 5d:9c:a7:d9:dd:1e:3f:4b:9f:5c:34:4a:19:7c:e9: d1:b6:ac:01:05:8e:c4:22:49:c6:5c:e8:c8:7c:98: 21:2b:1a:3d:94:80:c5:00:2c:39:a7:8e:af:c1:40: 4c:0d:cc:0b:64:67:cf:f9:76:4d:35:49:50:42:df: ae:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2D:06:1B:A8:CA:BB:66:54:D4:73:C2:3B:16:FF:61:22:AD:32:23 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:4c:5d:4c:40:be:f7:98:8e:97:b8:db:d9:48:a9:5d:ac:58: e5:d2:71:bf:eb:f7:c1:e2:21:a7:fa:a6:87:4f:a4:81:6a:c0: 9b:e1:40:52:87:0e:d8:59:eb:1e:b2:70:1d:93:3b:9b:ca:f6: 33:e4:26:f9:d3:66:cd:30:ce:bb:b2:f0:1a:89:9e:b7:d5:de: a2:5c:6a:cc:ff:86:93:0d:25:5d:c3:dd:b4:ce:ef:82:d7:8b: a9:a2:f4:52:d8:9a:00:e0:af:a2:31:3c:dd:2d:c2:de:d0:e5: 18:d6:1d:7f:ab:75:e2:6a:eb:a7:75:da:cf:08:13:da:13:87: 8b:2b:69:c7:16:8c:7e:65:e1:3f:df:41:da:a5:9c:1f:6d:35: 44:29:e5:ec:40:71:73:31:c4:f7:1b:23:bb:92:7d:90:9f:b8: ae:2f:01:be:bc:7c:3f:98:59:c4:06:05:96:bd:83:c1:0f:b9: 8b:2c:80:25:a0:b5:b2:16:3d:c9:a4:08:55:7c:32:ba:74:4b: 8c:a1:e7:e8:55:e0:db:c1:4f:f2:e0:d9:11:03:c9:9a:53:d7: c8:9e:27:b6:f2:57:34:43:df:da:ae:cb:a6:a5:89:23:fe:52: 24:36:1e:00:81:94:87:a7:17:6f:91:b9:5b:18:f0:93:56:1c: f4:53:79:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUxMjE4MjIzNjM3WhcNMjUxMjI1MjIzNjM3WjAYMRYwFAYD VQQDDA02OTQ0ODFmNS05ZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyahDBm+ACKLlAaHSW9Xs0at50SMCaCxteYUK08KKbWhVTLieSdZNZ1isKhnL ooKWpwRbJ1C1NfyZBWkh7Okht7Vs5fUvQRM8xktGYHeo9MrXw+kfAHxuVggJ3IFn cTjyzxHMxWP6T4MZGxPSPuGQkJhLXpl9NPO1Iwh2DQlFcSdabSylDLycqoih9Ff2 dNz9KDwchsZO21JKYQFxWsdlHhfUaah7+wpFoeAEAar3irLr0/FpScIj/Misgy+B LzISvz5dnKfZ3R4/S59cNEoZfOnRtqwBBY7EIknGXOjIfJghKxo9lIDFACw5p46v wUBMDcwLZGfP+XZNNUlQQt+ufwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQtBhuo yrtmVNRzwjsW/2EirTIjMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTNEMy82RUMwRTM2ODAwMEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMt aURaZnFhQWhTWnRQUEZob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBTF1MQL73mI6XuNvZSKldrFjl0nG/6/fB4iGn+qaHT6SBasCb4UBS hw7YWesesnAdkzubyvYz5Cb502bNMM67svAaiZ631d6iXGrM/4aTDSVdw920zu+C 14upovRS2JoA4K+iMTzdLcLe0OUY1h1/q3XiauunddrPCBPaE4eLK2nHFox+ZeE/ 30HapZwfbTVEKeXsQHFzMcT3GyO7kn2Qn7iuLwG+vHw/mFnEBgWWvYPBD7mLLIAl oLWyFj3JpAhVfDK6dEuMoefoVeDbwU/y4NkRA8maU9fInie28lc0Q9/arsumpYkj /lIkNh4AgZSHpxdvkblbGPCTVhz0U3nm -----END CERTIFICATE-----Generated at Sat Dec 20 07:36:53 2025 by rpki-client