This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft File: GmByWuQEWJbjBAgwAyE-6pUmfs8.mft (raw, json) Hash identifier: /D6Mz2w4sLuQn8CVtjDZ1oO/u/iASE+mBPbAvc0q524= Subject key identifier: F6:DA:B1:0F:3B:76:29:7F:65:FB:D2:94:9C:25:22:7E:BC:0C:CE:F0 Authority key identifier: 1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF Certificate issuer: /CN=A91BB35A/serialNumber=1A60725AE4045896E304083003213EEA95267ECF Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft Manifest number: 01BC Signing time: Sun 21 Dec 2025 02:18:55 +0000 Manifest this update: Sun 21 Dec 2025 02:18:55 +0000 Manifest next update: Sun 28 Dec 2025 02:18:55 +0000 Files and hashes: 1: GmByWuQEWJbjBAgwAyE-6pUmfs8.crl (hash: zjpwm8yzBU/LlzoFkJrFo9l8RPWjkGi4dfv7+7+U2/A=) 2: 1779BD7C3B2311EE91010B3EC4F9AE02.roa (hash: xUYqVtjGT/IbCxMgEDoRhm8Anp7a4X1koMkSJ4n38OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB35A, serialNumber=1A60725AE4045896E304083003213EEA95267ECF Validity Not Before: Dec 21 02:18:55 2025 GMT Not After : Dec 28 02:18:55 2025 GMT Subject: CN=6947590f-2c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:70:43:21:5e:3c:af:77:cb:a2:48:14:88: e7:95:9e:e4:be:54:a4:c1:60:dc:72:3e:e4:f5:ce: b3:aa:1a:ec:cd:0d:1c:6a:62:26:df:c2:02:73:4c: 20:c8:4e:58:f4:a1:cc:bb:11:3f:eb:82:2e:1a:d9: 7d:ff:53:4b:e9:6b:c5:a6:4b:48:cd:ba:49:9b:fb: 9d:4a:ed:bb:46:5b:8a:de:8a:d8:de:e9:bb:c1:ab: 91:73:3e:67:98:da:74:63:34:9c:ba:b3:d7:93:08: 48:46:72:ac:e7:48:3d:4e:d2:7f:90:5b:0f:19:83: 10:f3:b4:df:30:c8:b3:55:1a:1a:61:c9:af:e2:16: a6:e3:ec:1d:36:a8:08:aa:d6:28:d7:54:0b:2f:f5: 46:ee:eb:c5:70:5e:d1:02:5a:45:5f:06:a9:5a:d1: df:97:78:30:bf:23:c6:47:c2:c0:e3:1e:f5:6d:78: 95:2b:c1:4b:8a:ba:17:d4:1e:88:82:e9:ca:6d:ad: f1:4f:f6:7f:0f:66:bf:a0:07:2a:a5:2c:80:df:8d: 7e:ee:fa:d9:03:14:f0:5e:29:bf:74:87:34:77:fe: ec:76:87:c0:cf:4a:75:5c:83:8f:12:d2:cf:48:65: 35:86:51:5c:cb:65:03:93:44:dc:1b:64:6b:01:92: 8c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DA:B1:0F:3B:76:29:7F:65:FB:D2:94:9C:25:22:7E:BC:0C:CE:F0 X509v3 Authority Key Identifier: keyid:1A:60:72:5A:E4:04:58:96:E3:04:08:30:03:21:3E:EA:95:26:7E:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmByWuQEWJbjBAgwAyE-6pUmfs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB35A/006CD94A3B2111EE804C6383C4F9AE02/GmByWuQEWJbjBAgwAyE-6pUmfs8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:4a:a4:87:35:93:86:f6:5e:fb:19:52:b0:8a:f4:f8:a2:19: d6:0e:d6:ca:f0:d8:61:74:bd:bd:9e:33:74:98:a4:a8:13:bd: 41:bb:21:42:b2:ce:fa:ad:04:4d:51:b9:2a:4b:2a:37:26:9a: b6:67:52:f5:9e:ae:6b:92:3d:2f:26:91:ab:dc:11:4d:d2:4f: f6:bc:0f:83:12:82:8c:e4:f8:5a:cd:10:8f:2b:60:6c:5d:92: a3:fe:bf:d2:03:95:dc:08:60:3d:51:08:be:55:0b:88:4e:50: 0b:04:00:36:0c:c2:a4:69:b3:e5:50:14:6f:c5:ad:fa:d9:a8: 29:51:30:46:1e:0f:c2:0f:53:3a:be:f7:52:4d:16:9b:9f:61: 69:64:69:2c:4d:1c:90:25:83:28:41:f8:f6:87:6d:a7:53:cc: 19:59:92:88:76:cb:e8:59:b2:4b:1d:a6:de:af:f6:58:97:37: cf:97:a3:5b:4c:3d:65:b1:e8:d7:74:b9:43:da:31:ad:61:3d: 2e:33:69:19:54:50:f0:03:ed:b4:61:39:1a:33:e4:9e:5f:b2: a7:c7:06:91:b4:5a:6c:7a:95:cf:19:cc:c8:fd:e2:05:68:c2: c5:b1:94:36:21:00:7e:d1:1c:70:01:eb:86:98:43:e5:5b:34: 21:ad:b9:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIzNUExMTAvBgNVBAUTKDFBNjA3MjVBRTQwNDU4OTZFMzA0MDgzMDAzMjEzRUVB OTUyNjdFQ0YwHhcNMjUxMjIxMDIxODU1WhcNMjUxMjI4MDIxODU1WjAYMRYwFAYD VQQDDA02OTQ3NTkwZi0yYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/BwQyFePK93y6JIFIjnlZ7kvlSkwWDccj7k9c6zqhrszQ0camIm38ICc0wg yE5Y9KHMuxE/64IuGtl9/1NL6WvFpktIzbpJm/udSu27RluK3orY3um7wauRcz5n mNp0YzScurPXkwhIRnKs50g9TtJ/kFsPGYMQ87TfMMizVRoaYcmv4ham4+wdNqgI qtYo11QLL/VG7uvFcF7RAlpFXwapWtHfl3gwvyPGR8LA4x71bXiVK8FLiroX1B6I gunKba3xT/Z/D2a/oAcqpSyA341+7vrZAxTwXim/dIc0d/7sdofAz0p1XIOPEtLP SGU1hlFcy2UDk0TcG2RrAZKMRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbasQ87 dil/ZfvSlJwlIn68DM7wMB8GA1UdIwQYMBaAFBpgclrkBFiW4wQIMAMhPuqVJn7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjM1QS8wMDZDRDk0QTNC MjExMUVFODA0QzYzODNDNEY5QUUwMi9HbUJ5V3VRRVdKYmpCQWd3QXlFLTZwVW1m czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtQnlXdVFFV0piakJBZ3dBeUUtNnBVbWZzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjM1QS8wMDZDRDk0QTNCMjExMUVFODA0QzYzODNDNEY5QUUwMi9HbUJ5V3VRRVdK YmpCQWd3QXlFLTZwVW1mczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3SqSHNZOG9l77GVKwivT4ohnWDtbK8NhhdL29njN0mKSoE71BuyFC ss76rQRNUbkqSyo3Jpq2Z1L1nq5rkj0vJpGr3BFN0k/2vA+DEoKM5PhazRCPK2Bs XZKj/r/SA5XcCGA9UQi+VQuITlALBAA2DMKkabPlUBRvxa362agpUTBGHg/CD1M6 vvdSTRabn2FpZGksTRyQJYMoQfj2h22nU8wZWZKIdsvoWbJLHaber/ZYlzfPl6Nb TD1lsejXdLlD2jGtYT0uM2kZVFDwA+20YTkaM+SeX7KnxwaRtFpsepXPGczI/eIF aMLFsZQ2IQB+0RxwAeuGmEPlWzQhrbkl -----END CERTIFICATE-----Generated at Sun Dec 21 18:58:47 2025 by rpki-client