This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: 3PflhOWnwv6VBBQDF7suvfwvV83IKAMGV34uJZJ0Vj0= Subject key identifier: FF:48:AC:B2:19:BD:02:5B:D3:FC:0F:46:8B:28:53:19:60:F1:48:85 Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 34F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 416C Signing time: Mon 22 Dec 2025 14:57:04 +0000 Manifest this update: Mon 22 Dec 2025 14:57:03 +0000 Manifest next update: Mon 29 Dec 2025 14:57:03 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: mfrmEnWInc96jHyo5ryrxZFAz7Ctr6Yyvu610dyYIYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13556 (0x34f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Dec 22 14:57:03 2025 GMT Not After : Dec 29 14:57:03 2025 GMT Subject: CN=69495c40-53e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:57:e6:a3:99:5a:3d:d8:89:3d:29:64:88:a4: e0:27:fc:21:e0:c5:95:6a:48:9f:63:47:da:1e:8c: ef:09:0d:f9:b5:a1:67:64:f2:b1:2f:bd:ff:0b:b4: 35:a9:ab:d6:ec:34:3e:6a:2a:ab:c1:5b:60:bb:10: f2:ee:c4:d5:66:4a:ae:73:be:e4:2d:69:f9:28:f7: f3:5a:f3:27:13:eb:4d:22:7c:86:79:be:82:90:11: a6:db:98:ec:19:16:d2:64:75:46:d4:6c:58:20:b0: 26:70:74:b8:27:ef:0f:0c:18:b8:9c:c6:15:aa:86: 16:cc:7a:fa:67:ee:20:98:91:4f:80:e4:43:f3:18: 23:f2:bf:b5:bd:11:ca:c7:51:95:5c:2a:15:b4:5c: 1f:8a:89:88:a4:58:bf:80:fa:c5:3d:c1:1f:d3:a0: 9b:77:69:a5:de:25:2c:ef:83:e0:60:77:cd:65:a9: 01:96:d1:ab:34:a7:41:34:47:72:23:ec:3a:52:f4: 0b:37:d0:9b:ba:0f:bc:f4:b6:f3:98:e0:ad:00:58: 66:12:63:c4:1a:fc:26:d0:05:cb:4e:4d:a1:32:b8: 61:72:db:9e:36:14:6e:4f:db:99:7f:a6:ac:4c:42: 32:d7:09:a5:de:30:c5:7b:5e:76:a7:69:bc:5b:63: d1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:48:AC:B2:19:BD:02:5B:D3:FC:0F:46:8B:28:53:19:60:F1:48:85 X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:83:66:2e:8a:b6:99:88:76:b3:60:20:d9:63:ae:8e:22:20: b0:40:a9:84:b1:b2:01:9b:ea:33:ae:90:77:d5:0a:50:88:bc: 71:53:9c:99:0e:c0:14:4b:6b:dc:7f:c7:a8:cf:43:90:98:4a: 3b:c1:48:b6:00:0c:ee:af:16:5c:33:3d:fb:de:8c:01:83:6b: d2:96:0e:cf:3a:1d:6e:53:0c:e0:e8:97:5f:99:2b:41:01:4a: 07:a7:9e:40:bb:fc:7e:ee:12:23:cd:80:e2:b5:d0:86:6f:bf: 2e:39:fe:e5:fb:11:71:6e:e5:07:a2:e1:0c:c0:1a:b5:23:05: 20:86:45:aa:4b:9b:32:f8:dc:43:31:e4:9f:1d:f7:0f:d7:b6: 47:a5:5e:3f:d0:55:67:24:18:b2:97:7d:2b:56:a0:6a:8d:be: 53:3e:99:b1:43:ba:be:3d:b0:a0:92:f4:f5:5a:09:17:04:c4: b8:b6:29:c5:c4:33:95:9c:9b:62:00:7e:f3:82:0c:8a:87:e1: 9a:60:5d:89:89:4f:be:48:84:11:0b:35:c8:3b:91:13:d2:ae: ea:38:fa:5d:a7:19:65:0a:9f:c5:32:88:99:56:7b:34:b8:92: b6:fe:67:3b:23:eb:44:8c:5a:2b:84:86:76:f7:3b:9e:cc:4e: 9d:9f:ca:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjUxMjIyMTQ1NzAzWhcNMjUxMjI5MTQ1NzAzWjAYMRYwFAYD VQQDDA02OTQ5NWM0MC01M2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlfmo5laPdiJPSlkiKTgJ/wh4MWVakifY0faHozvCQ35taFnZPKxL73/C7Q1 qavW7DQ+aiqrwVtguxDy7sTVZkquc77kLWn5KPfzWvMnE+tNInyGeb6CkBGm25js GRbSZHVG1GxYILAmcHS4J+8PDBi4nMYVqoYWzHr6Z+4gmJFPgORD8xgj8r+1vRHK x1GVXCoVtFwfiomIpFi/gPrFPcEf06Cbd2ml3iUs74PgYHfNZakBltGrNKdBNEdy I+w6UvQLN9Cbug+89LbzmOCtAFhmEmPEGvwm0AXLTk2hMrhhctueNhRuT9uZf6as TEIy1wml3jDFe152p2m8W2PRQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9IrLIZ vQJb0/wPRosoUxlg8UiFMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXg2YuiraZiHazYCDZY66OIiCwQKmEsbIBm+ozrpB31QpQiLxxU5yZ DsAUS2vcf8eoz0OQmEo7wUi2AAzurxZcMz373owBg2vSlg7POh1uUwzg6JdfmStB AUoHp55Au/x+7hIjzYDitdCGb78uOf7l+xFxbuUHouEMwBq1IwUghkWqS5sy+NxD MeSfHfcP17ZHpV4/0FVnJBiyl30rVqBqjb5TPpmxQ7q+PbCgkvT1WgkXBMS4tinF xDOVnJtiAH7zggyKh+GaYF2JiU++SIQRCzXIO5ET0q7qOPpdpxllCp/FMoiZVns0 uJK2/mc7I+tEjForhIZ29zuezE6dn8pH -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:31 2025 by rpki-client