This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: xTztyq0d4k9e3oZYUXMnjUZhT9+euVU79jri7axllfo= Subject key identifier: CC:3A:5E:9C:51:CB:05:B1:DC:1B:68:F5:6F:E5:8C:16:FE:2F:DB:45 Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 0206 Signing time: Tue 02 Dec 2025 17:18:18 +0000 Manifest this update: Tue 02 Dec 2025 17:18:18 +0000 Manifest next update: Tue 09 Dec 2025 17:18:18 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: 3socvG2aimltFLcxwBw7W0Z8mtB6cf21fMiHw+Ui+Po=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: q0rXM4IeMQ5E14ifbbIFw0Hb35LtVVQvwt/UFqTmRYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Dec 2 17:18:18 2025 GMT Not After : Dec 9 17:18:18 2025 GMT Subject: CN=692f1f5a-00e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:54:8e:07:be:36:ec:57:73:2c:e1:27:42:c0: a5:94:2a:b8:0b:b4:c3:40:78:8f:d3:d3:08:68:41: 5d:28:9f:ed:7c:54:20:d6:63:46:0d:93:29:71:69: e0:d3:54:46:eb:be:5d:d8:b5:85:cb:92:95:f5:dd: 0b:1b:58:b8:a0:05:c4:75:3f:ab:3c:c7:41:0c:5d: a9:51:51:fb:23:4b:ba:73:58:82:61:38:c1:74:ec: 79:3c:71:e9:3f:a9:a0:a2:d3:28:7c:4a:07:5c:db: 0b:8e:2c:cf:54:6e:82:67:61:c9:1b:68:c1:62:fe: 0e:1d:de:f3:e4:dc:77:ee:38:65:95:be:4a:a4:73: 20:37:6f:fa:76:a8:e4:c7:b6:ec:17:56:09:bf:c9: 65:82:d9:e2:f6:33:16:5c:d7:72:6c:ab:b4:98:e7: 6d:ed:48:b8:98:91:26:1c:9f:a6:e8:68:24:97:07: af:68:6a:88:ac:b9:d1:38:57:e4:0c:65:ba:f8:77: 22:74:a2:62:01:5a:84:cd:cd:5e:57:8e:89:42:81: b8:08:7a:e7:ea:76:9f:7d:23:fa:6d:9f:14:fd:fa: 8a:c5:ad:7b:49:8a:06:38:99:ea:75:ed:30:e7:08: 78:8a:ac:73:98:c6:59:bb:72:ce:d0:3a:16:70:73: a8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3A:5E:9C:51:CB:05:B1:DC:1B:68:F5:6F:E5:8C:16:FE:2F:DB:45 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:98:c6:2d:ec:c2:de:b9:96:af:a0:d0:94:9f:e9:6e:30:59: 18:10:9f:35:c8:ff:8e:fe:01:73:39:c6:df:8b:79:f9:1f:a0: f5:2d:1c:c9:52:93:c5:9a:a0:f0:1f:fd:83:a0:e8:b5:9b:4a: 91:3d:6a:84:6a:2d:1c:99:48:3b:89:49:38:d6:58:2a:1b:10: f5:d9:e3:cd:c1:6b:77:8b:48:39:c6:4b:1f:f3:1a:6f:86:02: b3:64:76:b6:8d:e1:29:9d:80:17:4b:9c:e1:47:41:99:6d:c2: 95:65:58:b5:97:66:a5:12:95:3a:65:d6:ec:ff:97:31:9f:95: 8c:58:ea:2c:76:70:77:f3:9e:a2:9e:8a:13:8f:29:48:b7:b0: 98:b4:30:29:cb:11:88:cd:0b:ae:4c:76:9e:16:52:a7:ae:79: 7a:20:75:84:93:c5:a3:cc:44:04:0e:9f:41:2a:be:d2:89:ea: d0:61:3e:03:02:31:f1:2e:0d:ad:5a:6c:ca:88:cf:f7:a2:3f: 38:a7:9e:7b:f6:8d:5f:dc:7b:4e:03:ac:1e:48:15:e1:55:09: 2a:ea:ef:1b:5d:64:13:0d:17:ea:e2:f7:3f:38:3f:50:64:b4: 31:7b:0b:03:4f:ce:60:2d:71:5d:59:5f:64:06:d6:e1:be:5d: 37:c3:02:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUxMjAyMTcxODE4WhcNMjUxMjA5MTcxODE4WjAYMRYwFAYD VQQDEw02OTJmMWY1YS0wMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFSOB7427FdzLOEnQsCllCq4C7TDQHiP09MIaEFdKJ/tfFQg1mNGDZMpcWng 01RG675d2LWFy5KV9d0LG1i4oAXEdT+rPMdBDF2pUVH7I0u6c1iCYTjBdOx5PHHp P6mgotMofEoHXNsLjizPVG6CZ2HJG2jBYv4OHd7z5Nx37jhllb5KpHMgN2/6dqjk x7bsF1YJv8llgtni9jMWXNdybKu0mOdt7Ui4mJEmHJ+m6GgklwevaGqIrLnROFfk DGW6+HcidKJiAVqEzc1eV46JQoG4CHrn6naffSP6bZ8U/fqKxa17SYoGOJnqde0w 5wh4iqxzmMZZu3LO0DoWcHOo9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw6XpxR ywWx3Bto9W/ljBb+L9tFMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnmMYt7MLeuZavoNCUn+luMFkYEJ81yP+O/gFzOcbfi3n5H6D1LRzJ UpPFmqDwH/2DoOi1m0qRPWqEai0cmUg7iUk41lgqGxD12ePNwWt3i0g5xksf8xpv hgKzZHa2jeEpnYAXS5zhR0GZbcKVZVi1l2alEpU6Zdbs/5cxn5WMWOosdnB3856i nooTjylIt7CYtDApyxGIzQuuTHaeFlKnrnl6IHWEk8WjzEQEDp9BKr7SierQYT4D AjHxLg2tWmzKiM/3oj84p5579o1f3HtOA6weSBXhVQkq6u8bXWQTDRfq4vc/OD9Q ZLQxewsDT85gLXFdWV9kBtbhvl03wwLx -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:29 2025 by rpki-client