This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft File: GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft (raw, json) Hash identifier: pK9DWlUP/oUv1V86sj/mMkAvh4locl8zzkN2nTWMlEs= Subject key identifier: 8D:F5:9E:86:15:1F:A0:83:3F:4D:A2:5B:25:8D:6E:CD:B5:30:B9:9E Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft Manifest number: 02D5 Signing time: Sun 21 Dec 2025 00:35:07 +0000 Manifest this update: Sun 21 Dec 2025 00:35:06 +0000 Manifest next update: Sun 28 Dec 2025 00:35:06 +0000 Files and hashes: 1: GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl (hash: 327MJOArbmTolQqFoDII52tixoawUPPXdvnIQHP64Ko=) 2: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (hash: e8WAY0Y3CoS5+B8mQdHDLApUCt8COdKCwX61EjEYzJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C, serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: Dec 21 00:35:06 2025 GMT Not After : Dec 28 00:35:06 2025 GMT Subject: CN=694740ba-e374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5a:b1:07:7e:e5:74:27:be:4a:e2:e0:19:55: fe:a1:de:50:47:86:71:e7:14:2f:85:11:54:cf:0f: 8a:3d:27:92:6f:11:2c:18:f5:51:dc:73:d3:e4:a1: 8e:1a:f0:04:65:5f:09:43:27:32:17:4a:24:a5:09: f1:99:9e:99:32:dc:7a:3e:6e:f1:34:8d:e0:6e:d6: c3:d2:b3:82:ca:9a:cb:e8:e5:6d:8c:60:ad:9c:17: cf:ef:79:2b:97:aa:c1:46:1f:bd:f8:10:03:0c:7b: 59:6e:96:5a:25:28:bf:ef:a1:0d:66:4c:22:ae:3b: 19:d3:8f:e3:db:37:8b:c6:6e:cf:1a:fa:31:10:63: 22:fd:4d:3b:ea:4d:76:93:c8:26:80:f6:c1:c2:9f: 8a:aa:68:86:44:bf:6a:09:f9:cf:de:7d:30:cb:7e: 49:17:e5:b3:83:42:7c:0c:f6:0e:45:ac:8f:ee:8e: 12:88:5f:e1:8e:7e:d8:68:86:9d:b5:fb:97:df:13: 0b:c9:08:da:92:06:78:ba:71:42:1a:43:08:d5:8e: 82:ed:aa:63:52:b4:c0:9b:ac:9f:a0:0d:31:96:9f: 0c:bc:d5:5a:6f:c7:24:c1:de:15:94:fc:70:a4:2c: f9:97:94:78:bb:f1:94:3d:b9:02:e7:67:46:ef:80: a2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F5:9E:86:15:1F:A0:83:3F:4D:A2:5B:25:8D:6E:CD:B5:30:B9:9E X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:85:2a:16:07:2a:26:0f:88:b5:bd:17:78:92:78:37:b7:14: 4e:88:87:45:a1:3f:72:b2:61:cf:4a:f5:0e:a6:b1:f6:36:4d: 7e:7c:80:fb:ad:88:ca:60:65:f6:fa:f4:05:ed:61:af:21:57: dc:7e:33:ef:34:cf:9b:54:02:d1:6e:53:c7:53:1d:fc:ad:58: e0:ad:e9:c9:c2:67:d8:5d:93:99:a5:22:c9:63:0a:73:d0:fc: 35:2b:fc:2c:95:bb:7f:3a:d4:1b:51:ce:eb:7a:66:d2:2c:4b: e2:42:14:57:16:d6:b7:0f:b9:fb:df:f9:27:e4:ed:8c:06:68: 75:99:6d:e0:1e:a2:f5:37:09:03:8a:91:aa:87:7f:68:67:16: ad:3b:a0:ca:eb:98:d9:fb:3d:c4:f8:d7:0f:d8:ff:98:14:1a: 73:7b:77:e7:e1:73:a3:80:da:16:d7:b4:2c:cb:c3:cc:c6:84: af:c8:17:7c:6d:b6:55:71:17:9c:87:6d:f6:d5:13:74:6d:a4: 78:0b:6b:a2:b2:28:97:b0:fe:b2:a7:a4:7e:c6:59:da:89:87: 76:82:7b:ed:7e:36:03:2f:e9:10:5f:3d:2d:59:41:cc:07:30: a6:04:ec:97:9b:f5:ce:48:03:07:dd:1e:37:56:56:43:94:c1: 3b:7e:e0:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjUxMjIxMDAzNTA2WhcNMjUxMjI4MDAzNTA2WjAYMRYwFAYD VQQDDA02OTQ3NDBiYS1lMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FqxB37ldCe+SuLgGVX+od5QR4Zx5xQvhRFUzw+KPSeSbxEsGPVR3HPT5KGO GvAEZV8JQycyF0okpQnxmZ6ZMtx6Pm7xNI3gbtbD0rOCyprL6OVtjGCtnBfP73kr l6rBRh+9+BADDHtZbpZaJSi/76ENZkwirjsZ04/j2zeLxm7PGvoxEGMi/U076k12 k8gmgPbBwp+KqmiGRL9qCfnP3n0wy35JF+Wzg0J8DPYORayP7o4SiF/hjn7YaIad tfuX3xMLyQjakgZ4unFCGkMI1Y6C7apjUrTAm6yfoA0xlp8MvNVab8ckwd4VlPxw pCz5l5R4u/GUPbkC52dG74CiTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI31noYV H6CDP02iWyWNbs21MLmeMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTY5Qy85RUIwNzk5ODEyN0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9L T20xSXp3UWp4YlJpTUFXZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBphSoWByomD4i1vRd4kng3txROiIdFoT9ysmHPSvUOprH2Nk1+fID7 rYjKYGX2+vQF7WGvIVfcfjPvNM+bVALRblPHUx38rVjgrenJwmfYXZOZpSLJYwpz 0Pw1K/wslbt/OtQbUc7rembSLEviQhRXFta3D7n73/kn5O2MBmh1mW3gHqL1NwkD ipGqh39oZxatO6DK65jZ+z3E+NcP2P+YFBpze3fn4XOjgNoW17Qsy8PMxoSvyBd8 bbZVcRech2321RN0baR4C2uisiiXsP6yp6R+xlnaiYd2gnvtfjYDL+kQXz0tWUHM BzCmBOyXm/XOSAMH3R43VlZDlME7fuDD -----END CERTIFICATE-----Generated at Sun Dec 21 05:00:35 2025 by rpki-client