This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 4qpXTaUhBl1C5f+M1DNlBYi+pE6Xce/B+I7u26aaQUY= Subject key identifier: 02:D8:7D:02:4B:93:D2:65:E7:9D:34:C1:CC:3C:13:C6:CA:2B:77:3E Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0637 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0632 Signing time: Mon 22 Dec 2025 21:55:49 +0000 Manifest this update: Mon 22 Dec 2025 21:55:49 +0000 Manifest next update: Mon 29 Dec 2025 21:55:49 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: sra/2TMb1RIMAXr0ssSQto570eirrV6w01JJ8PzkXWw=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Dec 22 21:55:49 2025 GMT Not After : Dec 29 21:55:49 2025 GMT Subject: CN=6949be65-f98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5b:f8:30:0a:8a:15:da:08:15:ff:d3:c9:1d: 27:c4:9b:96:ad:b5:d8:6d:89:04:20:87:67:06:a9: ae:55:16:58:26:49:5e:90:9c:fe:23:62:33:66:39: 73:62:8c:1f:fb:ef:53:c6:79:6f:57:a6:90:6c:3c: fb:12:e1:75:74:a2:3e:b4:d7:18:d9:f5:93:ce:a7: 54:c3:c2:57:49:cd:c0:1d:89:2b:29:ff:c0:da:42: e9:f4:44:87:16:d4:15:2e:a7:0c:59:fb:5d:13:6a: 70:69:93:63:65:f1:56:58:b1:74:8a:cd:48:b1:e0: 0b:12:7d:0e:49:db:d6:28:81:4f:29:83:a8:ff:05: 30:a8:01:c8:16:d7:73:52:75:b0:6c:f5:a6:8f:b9: 54:2d:49:e8:28:6e:3a:8e:ed:ca:f7:d4:3b:49:a1: 24:17:b2:d4:cf:ad:78:04:3f:98:5b:ba:ec:d7:2f: b1:cf:79:1e:ef:6f:85:f6:93:5c:5e:9f:a0:6a:c7: 08:ea:cd:3c:88:45:bf:f3:b5:f3:59:82:8a:6a:db: b7:50:43:9b:38:09:47:ef:ef:9a:ae:4f:3e:ba:34: b6:d7:1b:11:64:6d:92:cb:94:ef:8e:fa:fa:d7:ac: 95:3f:12:d2:2f:94:5f:3d:4b:7d:68:80:a4:3a:d4: 70:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D8:7D:02:4B:93:D2:65:E7:9D:34:C1:CC:3C:13:C6:CA:2B:77:3E X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ad:33:74:e7:73:2f:fe:75:34:a9:b8:18:eb:cb:f6:8a:2f: 08:a7:7f:5d:88:7a:c3:1f:b9:16:21:3c:f4:38:40:1b:96:97: 4a:be:d8:1d:d0:f9:14:26:a2:3b:cf:20:d1:30:50:ae:28:32: 7f:62:16:2b:8d:8d:5e:ca:60:a3:c9:36:88:21:b1:5f:76:5f: 2f:ed:79:5e:a5:0a:bf:d7:17:7d:2f:c8:95:14:6f:0d:d1:e3: 44:74:75:61:7f:fe:fa:6f:a0:54:e0:5c:a7:ab:8d:36:99:f7: 6f:a0:91:10:16:80:7b:f4:81:44:1f:28:7b:45:4a:7e:7b:2f: 67:af:c1:c0:1c:b4:4d:48:49:77:8f:46:91:e8:5b:db:b7:36: b4:85:8d:c6:8d:a0:04:ce:61:03:96:46:aa:70:0b:6f:94:92: 70:6b:57:1d:7a:fc:97:7e:d6:06:41:cb:97:bf:35:77:34:60: 45:9d:09:03:30:10:e5:2e:d5:c7:62:5f:aa:43:40:47:32:5f: e1:5a:99:43:5e:f4:44:78:da:49:32:bb:5b:11:16:39:a0:d1: c9:d1:64:17:ec:7f:ed:65:b0:4c:08:b5:7a:83:3e:8e:ef:03: d1:78:2a:da:df:bf:74:a6:36:e1:b2:ba:30:ec:9f:76:63:40: fa:a9:7b:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUxMjIyMjE1NTQ5WhcNMjUxMjI5MjE1NTQ5WjAYMRYwFAYD VQQDDA02OTQ5YmU2NS1mOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklv4MAqKFdoIFf/TyR0nxJuWrbXYbYkEIIdnBqmuVRZYJklekJz+I2IzZjlz Yowf++9TxnlvV6aQbDz7EuF1dKI+tNcY2fWTzqdUw8JXSc3AHYkrKf/A2kLp9ESH FtQVLqcMWftdE2pwaZNjZfFWWLF0is1IseALEn0OSdvWKIFPKYOo/wUwqAHIFtdz UnWwbPWmj7lULUnoKG46ju3K99Q7SaEkF7LUz614BD+YW7rs1y+xz3ke72+F9pNc Xp+gascI6s08iEW/87XzWYKKatu3UEObOAlH7++ark8+ujS21xsRZG2Sy5Tvjvr6 16yVPxLSL5RfPUt9aICkOtRwwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALYfQJL k9Jl5500wcw8E8bKK3c+MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzrTN053Mv/nU0qbgY68v2ii8Ip39diHrDH7kWITz0OEAblpdKvtgd 0PkUJqI7zyDRMFCuKDJ/YhYrjY1eymCjyTaIIbFfdl8v7XlepQq/1xd9L8iVFG8N 0eNEdHVhf/76b6BU4Fynq402mfdvoJEQFoB79IFEHyh7RUp+ey9nr8HAHLRNSEl3 j0aR6Fvbtza0hY3GjaAEzmEDlkaqcAtvlJJwa1cdevyXftYGQcuXvzV3NGBFnQkD MBDlLtXHYl+qQ0BHMl/hWplDXvREeNpJMrtbERY5oNHJ0WQX7H/tZbBMCLV6gz6O 7wPReCra3790pjbhsrow7J92Y0D6qXss -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:07 2025 by rpki-client