This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: KR6AFjrf8ayGE5TBZ7U2x/fmGfPz/VyV72uO3vTtxz8= Subject key identifier: E0:53:E3:E1:3C:D3:5B:25:D8:97:4F:84:CF:20:52:4E:C6:C0:9F:44 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0187 Signing time: Fri 19 Dec 2025 02:47:54 +0000 Manifest this update: Fri 19 Dec 2025 02:47:54 +0000 Manifest next update: Fri 26 Dec 2025 02:47:54 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: Ssc90vfi5VFC16luOZXulomdneks2or8FXKyjHutjJQ=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Dec 19 02:47:54 2025 GMT Not After : Dec 26 02:47:54 2025 GMT Subject: CN=6944bcda-495a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:53:76:06:c3:0b:ba:ed:aa:84:4c:5a:56:1c: 75:8b:9a:21:89:a9:7a:cf:76:42:5d:e4:55:63:91: 57:8d:07:36:ad:c2:49:f4:b8:4c:dd:5f:f1:2d:50: a2:ca:9a:4f:a9:0b:5b:e7:0b:58:ee:7c:4c:5a:16: 23:f5:0f:0c:5e:b5:36:fa:8b:6d:d3:48:de:36:cb: 6c:e3:ba:9f:d1:dd:26:c0:54:15:16:ce:28:d1:b5: 5f:f9:3e:1b:0a:dd:8e:8b:11:f9:40:00:59:a9:2c: f9:b0:da:6b:0f:af:a7:cb:1d:f2:c7:a6:ec:7f:54: 6c:c6:4b:6b:e9:5a:19:44:96:ab:65:36:19:9c:88: 41:26:67:b9:d9:26:d8:61:c4:55:60:f9:53:2e:d9: 83:b5:bc:cb:41:b3:1a:fd:72:3c:3b:80:4e:84:39: f4:b8:06:e5:b4:cf:f9:ae:e2:8e:27:ac:6b:8b:91: 4f:e4:8b:61:55:8f:ed:cd:d7:64:ec:84:64:b0:4c: 2b:b2:26:4b:fa:5c:c1:e2:a9:e7:c0:db:d4:30:3b: 68:0c:ea:36:51:d2:4b:b2:41:31:f9:87:78:9a:b3: cc:7a:1e:d8:e1:c6:94:b2:ea:2b:0f:71:91:94:56: 54:a3:f5:95:bc:d8:8d:06:22:f7:5d:35:37:09:61: 80:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:53:E3:E1:3C:D3:5B:25:D8:97:4F:84:CF:20:52:4E:C6:C0:9F:44 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:74:58:ff:10:c3:e4:b9:f1:37:91:e2:b1:96:03:b3:b5:9a: 06:f4:19:f3:c5:31:8c:c7:40:78:27:08:17:49:ad:83:42:d5: ff:13:17:09:12:1b:eb:60:d4:c7:33:1d:6e:42:ea:06:f7:c5: 98:a9:08:5f:85:58:95:3b:27:15:a3:fb:d8:45:b6:2e:d1:37: d8:6c:bc:67:3d:4b:47:d4:22:02:8a:60:09:37:24:19:8c:d1: 8c:d5:5e:9e:13:68:fa:0e:fa:f2:3a:9c:d5:a0:a0:11:1f:2f: 7b:1b:d2:73:08:49:b4:8f:74:b7:6e:ab:71:4f:5d:7e:0c:7e: f2:8a:06:fc:4a:7f:02:da:06:29:ac:41:ee:c0:96:25:a0:d7: 64:cf:a2:a1:c9:6b:ef:5f:57:46:a9:10:38:5b:6c:37:3e:f8: 46:96:1d:25:db:cf:a5:8d:96:50:c2:4b:cc:c8:1d:b1:93:32: 96:97:7b:8b:b1:41:8d:c0:ac:3d:e4:78:9f:74:63:90:78:fc: 39:82:4a:bd:bd:8f:47:a7:f3:34:dc:1e:a6:c8:77:a4:54:17: 9f:08:c8:26:71:91:3c:b8:de:95:66:48:b5:f7:13:61:9a:34: 5c:3f:db:34:da:df:e0:f4:81:35:40:49:71:83:c1:8d:5b:90: 09:71:88:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMjE5MDI0NzU0WhcNMjUxMjI2MDI0NzU0WjAYMRYwFAYD VQQDDA02OTQ0YmNkYS00OTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhlN2BsMLuu2qhExaVhx1i5ohial6z3ZCXeRVY5FXjQc2rcJJ9LhM3V/xLVCi yppPqQtb5wtY7nxMWhYj9Q8MXrU2+ott00jeNsts47qf0d0mwFQVFs4o0bVf+T4b Ct2OixH5QABZqSz5sNprD6+nyx3yx6bsf1Rsxktr6VoZRJarZTYZnIhBJme52SbY YcRVYPlTLtmDtbzLQbMa/XI8O4BOhDn0uAbltM/5ruKOJ6xri5FP5IthVY/tzddk 7IRksEwrsiZL+lzB4qnnwNvUMDtoDOo2UdJLskEx+Yd4mrPMeh7Y4caUsuorD3GR lFZUo/WVvNiNBiL3XTU3CWGA9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBT4+E8 01sl2JdPhM8gUk7GwJ9EMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRdFj/EMPkufE3keKxlgOztZoG9BnzxTGMx0B4JwgXSa2DQtX/ExcJ EhvrYNTHMx1uQuoG98WYqQhfhViVOycVo/vYRbYu0TfYbLxnPUtH1CICimAJNyQZ jNGM1V6eE2j6DvryOpzVoKARHy97G9JzCEm0j3S3bqtxT11+DH7yigb8Sn8C2gYp rEHuwJYloNdkz6KhyWvvX1dGqRA4W2w3PvhGlh0l28+ljZZQwkvMyB2xkzKWl3uL sUGNwKw95HifdGOQePw5gkq9vY9Hp/M03B6myHekVBefCMgmcZE8uN6VZki19xNh mjRcP9s02t/g9IE1QElxg8GNW5AJcYie -----END CERTIFICATE-----Generated at Fri Dec 19 15:26:29 2025 by rpki-client