This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: ZpraVvGpP28vZ6VEURurJrE81uH2rHgflx1UgRCHLGQ= Subject key identifier: 3C:AB:05:86:F9:FB:6D:54:5D:B4:2B:88:50:2A:BC:B5:43:5E:13:F3 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 0843 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 083D Signing time: Sat 06 Dec 2025 19:28:27 +0000 Manifest this update: Sat 06 Dec 2025 19:28:27 +0000 Manifest next update: Sat 13 Dec 2025 19:28:27 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: xeW23nxbzuBEENluLh5cuyUOP89xul9/LbovmSNPaxU=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: jfAjvDFneg9TxfVOqlYPDujvfvVSOSgnFYEvXUOG5OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Dec 6 19:28:27 2025 GMT Not After : Dec 13 19:28:27 2025 GMT Subject: CN=693483db-315b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:b3:05:a5:35:41:5d:6b:80:d9:cb:37:76: 50:e2:8f:7b:c0:7a:a3:64:15:b2:73:ad:32:d0:c8: fe:ab:cc:d6:45:b3:9a:67:67:94:83:aa:11:c5:af: f8:18:22:6a:6c:e1:c8:d4:1e:11:85:b7:78:84:2a: 92:9a:29:33:08:3c:c6:0b:d6:1a:c8:0c:c1:18:dc: b9:c7:71:d1:61:cf:d7:c5:11:d8:f2:54:94:92:a8: 32:20:98:3a:22:df:3d:ad:11:1a:ac:c0:38:2b:51: e9:c6:7f:40:21:a2:fc:95:8c:16:02:e0:37:ad:d9: 41:52:4d:df:31:19:ba:01:3f:f9:8f:ae:8f:88:9f: 0a:9f:93:cf:93:6e:17:11:0e:74:56:8c:2e:69:58: 45:49:36:f2:4b:ee:e4:c3:fd:83:bb:51:2f:de:f2: 72:e1:9c:87:36:3b:0f:82:e8:46:b4:1f:5f:06:4e: 3d:34:c0:c7:11:db:d0:09:73:3e:15:54:b1:c5:83: 39:8e:97:06:47:f9:1e:fb:4a:24:b4:e9:7f:26:b8: 07:86:14:86:45:f3:9c:d1:b0:49:91:1c:a6:d7:50: 62:28:be:9f:8a:73:fd:42:bb:3e:2f:26:1b:40:be: 1b:b6:f4:b1:f8:ee:c7:f1:ad:9e:11:b1:91:af:dc: 3f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AB:05:86:F9:FB:6D:54:5D:B4:2B:88:50:2A:BC:B5:43:5E:13:F3 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:bd:39:6c:2f:85:56:4f:fe:70:ee:80:6f:41:54:57:3b:29: 74:66:1c:7a:ee:25:d2:64:11:ab:ac:2f:e5:37:60:55:f9:99: c8:4a:c9:b1:cb:46:62:f4:ce:7c:33:e7:e6:08:fa:b4:d4:77: e1:90:16:e6:c4:5f:ac:d5:68:d0:e0:7e:bd:24:eb:9a:29:c3: 83:48:5c:9a:86:92:f8:33:16:07:aa:c3:8d:26:94:e6:8a:e5: 1c:88:d8:c5:46:95:26:49:7a:8c:f9:df:e2:5b:f1:e1:ea:84: 7c:4b:89:d2:52:7a:09:70:47:31:81:06:4a:c1:8f:5d:3a:58: 24:23:ee:7d:bc:4b:b9:10:20:73:f1:2b:98:51:8d:15:d3:8a: ae:ac:48:75:89:5f:81:32:06:03:8f:34:02:4c:89:96:0c:dc: 67:b4:49:61:f4:d3:d6:48:02:0a:58:b3:83:7a:4f:7c:0c:a3: c0:c6:3f:c2:f7:27:6b:c2:20:c3:19:7a:4e:14:79:3e:99:63: 97:22:1c:6b:4f:29:a5:f3:81:69:b9:a2:b4:73:bd:81:a1:b7: 05:fa:17:72:42:ce:18:c4:ff:97:33:fa:6a:76:42:fe:09:4c: 96:86:c7:c8:62:21:6d:57:ed:1f:18:45:77:12:89:65:c2:49: 99:c3:ed:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjUxMjA2MTkyODI3WhcNMjUxMjEzMTkyODI3WjAYMRYwFAYD VQQDEw02OTM0ODNkYi0zMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b6zBaU1QV1rgNnLN3ZQ4o97wHqjZBWyc60y0Mj+q8zWRbOaZ2eUg6oRxa/4 GCJqbOHI1B4Rhbd4hCqSmikzCDzGC9YayAzBGNy5x3HRYc/XxRHY8lSUkqgyIJg6 It89rREarMA4K1Hpxn9AIaL8lYwWAuA3rdlBUk3fMRm6AT/5j66PiJ8Kn5PPk24X EQ50VowuaVhFSTbyS+7kw/2Du1Ev3vJy4ZyHNjsPguhGtB9fBk49NMDHEdvQCXM+ FVSxxYM5jpcGR/ke+0oktOl/JrgHhhSGRfOc0bBJkRym11BiKL6finP9Qrs+LyYb QL4btvSx+O7H8a2eEbGRr9w/4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyrBYb5 +21UXbQriFAqvLVDXhPzMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfvTlsL4VWT/5w7oBvQVRXOyl0Zhx67iXSZBGrrC/lN2BV+ZnISsmx y0Zi9M58M+fmCPq01HfhkBbmxF+s1WjQ4H69JOuaKcODSFyahpL4MxYHqsONJpTm iuUciNjFRpUmSXqM+d/iW/Hh6oR8S4nSUnoJcEcxgQZKwY9dOlgkI+59vEu5ECBz 8SuYUY0V04qurEh1iV+BMgYDjzQCTImWDNxntElh9NPWSAIKWLODek98DKPAxj/C 9ydrwiDDGXpOFHk+mWOXIhxrTyml84FpuaK0c72BobcF+hdyQs4YxP+XM/pqdkL+ CUyWhsfIYiFtV+0fGEV3EollwkmZw+2k -----END CERTIFICATE-----Generated at Sat Dec 6 23:59:31 2025 by rpki-client