This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: cC1dD4+58Z7XOjVSbWRQs7IkZr/zmC56BFXDB0wAbAQ= Subject key identifier: 0C:29:7E:D9:AB:85:3B:6B:67:62:41:AC:5B:0A:37:FE:2E:E0:5E:41 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0189 Signing time: Tue 23 Dec 2025 02:36:54 +0000 Manifest this update: Tue 23 Dec 2025 02:36:53 +0000 Manifest next update: Tue 30 Dec 2025 02:36:53 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: O24UThlkEKs1pSdyhwBk9yO8G1a9MIwPNj6AnNn/wmA=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Dec 23 02:36:53 2025 GMT Not After : Dec 30 02:36:53 2025 GMT Subject: CN=694a0045-1e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:54:6b:62:83:71:b9:50:7a:9e:0c:3a:d7: 18:90:c5:fe:70:92:b5:ae:5c:32:df:2a:2f:02:22: 07:8b:79:8f:85:4c:9f:ef:c5:63:aa:7b:0b:d6:69: 1b:8e:b3:12:cf:52:9a:0a:a6:86:44:96:41:96:b1: 78:11:c5:de:3d:5a:9c:b4:29:52:f7:b6:1c:5f:49: ab:3e:2a:a7:5d:03:7b:67:f7:68:67:13:db:05:49: 0f:7e:d6:41:bc:7d:fe:6c:1a:c0:71:c4:eb:58:b7: bd:fb:da:9c:92:d7:b7:b8:6a:35:6d:6e:68:cb:17: fe:96:21:39:35:e3:79:c9:a9:45:e3:4c:69:57:a4: 48:cc:2c:ac:ec:28:2e:1a:1f:96:6d:12:0e:b1:7b: 72:28:fb:0e:72:89:67:fc:d8:8c:85:c0:37:dd:3e: cf:94:b8:93:01:44:1b:c5:b5:ff:9e:73:e0:80:d0: 29:c9:76:e7:75:ba:8a:27:a0:f8:13:7d:13:24:a5: 79:ff:49:61:bb:68:00:9d:c2:13:1a:97:2b:2b:a0: ad:61:49:0e:f4:4b:93:2c:2a:d2:e2:b4:b9:a6:54: de:6c:de:47:c5:5c:82:b7:ec:91:51:1c:8d:43:f6: d1:73:59:4e:84:e5:9f:aa:02:2b:78:7d:81:d1:b3: c5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:29:7E:D9:AB:85:3B:6B:67:62:41:AC:5B:0A:37:FE:2E:E0:5E:41 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:96:d0:2e:24:50:57:4d:36:9d:f4:d8:22:38:9d:3c:53:35: f0:b9:c1:b3:6e:4c:f7:d0:a6:cf:9a:c9:d3:d1:34:5e:f2:af: 9d:47:fc:8d:18:d8:58:46:fd:c5:ea:e1:d2:2f:6a:f1:aa:53: 0c:d4:a3:0d:97:f1:d3:80:8c:96:15:ba:00:0b:b9:36:3c:7d: 31:31:80:b3:08:97:1f:a9:d6:fc:da:74:72:87:ae:09:89:7d: 43:a5:de:0c:69:69:c6:65:de:92:ae:a6:c1:7a:c3:47:1b:55: 53:f2:87:29:07:79:ea:e2:29:09:93:ee:06:7a:98:04:c2:2b: ac:9a:36:0f:5a:30:a5:de:db:bf:a6:81:56:a6:03:08:48:d7: e1:75:9e:8d:bb:2c:e7:41:83:89:9a:50:16:d5:54:1a:e0:fb: db:64:8c:48:0d:bc:3c:98:5d:b9:31:44:dd:e7:98:4e:13:a9: 1d:16:be:90:94:e5:49:be:87:84:23:a0:c8:88:84:af:ba:e9: 62:26:4f:86:9d:9e:82:ff:1e:f4:8f:ba:b3:19:77:21:29:f6: 4b:48:6c:1e:7a:3b:fb:1c:43:2c:d0:07:43:ca:c3:c4:a0:49: ed:8e:1a:a6:47:f5:aa:9f:db:d9:f9:b6:bf:f9:20:41:f3:da: c7:15:fc:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMjIzMDIzNjUzWhcNMjUxMjMwMDIzNjUzWjAYMRYwFAYD VQQDDA02OTRhMDA0NS0xZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI5Ua2KDcblQep4MOtcYkMX+cJK1rlwy3yovAiIHi3mPhUyf78VjqnsL1mkb jrMSz1KaCqaGRJZBlrF4EcXePVqctClS97YcX0mrPiqnXQN7Z/doZxPbBUkPftZB vH3+bBrAccTrWLe9+9qckte3uGo1bW5oyxf+liE5NeN5yalF40xpV6RIzCys7Cgu Gh+WbRIOsXtyKPsOcoln/NiMhcA33T7PlLiTAUQbxbX/nnPggNApyXbndbqKJ6D4 E30TJKV5/0lhu2gAncITGpcrK6CtYUkO9EuTLCrS4rS5plTebN5HxVyCt+yRURyN Q/bRc1lOhOWfqgIreH2B0bPFWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwpftmr hTtrZ2JBrFsKN/4u4F5BMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEltAuJFBXTTad9NgiOJ08UzXwucGzbkz30KbPmsnT0TRe8q+dR/yN GNhYRv3F6uHSL2rxqlMM1KMNl/HTgIyWFboAC7k2PH0xMYCzCJcfqdb82nRyh64J iX1Dpd4MaWnGZd6SrqbBesNHG1VT8ocpB3nq4ikJk+4GepgEwiusmjYPWjCl3tu/ poFWpgMISNfhdZ6NuyznQYOJmlAW1VQa4PvbZIxIDbw8mF25MUTd55hOE6kdFr6Q lOVJvoeEI6DIiISvuuliJk+GnZ6C/x70j7qzGXchKfZLSGweejv7HEMs0AdDysPE oEntjhqmR/Wqn9vZ+ba/+SBB89rHFfzV -----END CERTIFICATE-----Generated at Tue Dec 23 11:05:01 2025 by rpki-client