This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: f2rD9CJxXCjzxaqQzCJC+DjWCRiy//T31AMOyf3MebU= Subject key identifier: 24:93:31:40:99:7B:72:6E:FB:B8:E6:1D:E6:98:B5:80:60:9B:3B:F4 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 032A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 0321 Signing time: Tue 23 Dec 2025 04:36:30 +0000 Manifest this update: Tue 23 Dec 2025 04:36:30 +0000 Manifest next update: Tue 30 Dec 2025 04:36:30 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: lM7c+9CE9yVkW9KVsLM7YVIHGBegPqDTlkuq9p+BQ/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Dec 23 04:36:30 2025 GMT Not After : Dec 30 04:36:30 2025 GMT Subject: CN=694a1c4e-2d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5b:f7:92:99:fe:e1:77:04:3d:ef:df:91:2c: 01:95:79:eb:cf:9d:ca:aa:4b:fa:e2:8a:f0:fb:d2: 8c:14:f3:3d:b8:04:02:88:49:70:04:c1:8b:a6:31: c6:df:f3:ea:d3:62:a6:48:d2:fb:2c:bb:75:59:96: e5:27:17:d8:e5:a1:f8:b4:79:3a:13:fa:9b:d5:fc: 3c:11:6f:6d:ba:6c:c9:6c:62:8d:f4:c4:8b:63:f4: 2e:a8:3f:89:90:b5:db:a2:30:b7:ec:ef:1d:f4:a0: 63:e3:56:14:64:cf:8c:7c:af:e1:9f:61:3f:82:f5: 8f:d7:36:a3:1d:b6:ae:26:fa:61:b0:f0:4e:88:df: fc:75:95:bc:8f:6e:43:b4:2a:f1:f6:20:a3:e9:d6: 71:67:0a:02:3e:aa:8a:a4:3f:d1:b7:7d:df:7a:23: c0:a9:d6:13:08:20:ee:dd:ef:9b:11:26:1e:3d:0e: cf:bc:55:be:2f:1a:0f:04:53:76:9a:bf:cc:5b:9c: 85:82:4a:16:2c:dd:7c:e9:b8:2f:bb:5a:21:0c:5e: d0:9a:81:79:a8:d7:92:3d:27:84:fd:b8:35:b5:7f: 0e:d7:8d:59:d0:1a:60:81:07:97:3b:e1:bf:da:db: 6e:04:0f:06:c9:a9:e2:cb:5c:ed:54:c1:fc:e8:97: 6d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:93:31:40:99:7B:72:6E:FB:B8:E6:1D:E6:98:B5:80:60:9B:3B:F4 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:7d:11:c6:94:aa:00:d5:9f:d5:10:ff:0e:85:ea:e0:5d:c6: 8c:ef:73:36:4b:96:6e:b2:a0:74:f0:d3:69:14:5c:0c:29:84: 81:06:76:e8:7f:f8:92:84:80:f5:4a:f6:56:43:09:e1:ab:46: b3:85:ea:24:3d:f2:b6:ce:af:12:c3:9b:ed:81:7c:b6:40:7d: ba:57:a9:8f:08:13:66:b3:38:3a:3d:f1:db:41:96:90:67:52: 3d:c9:3e:bf:c0:3f:57:0e:70:bb:2a:6d:bf:ae:32:c4:5a:f0: c0:81:df:d2:1f:c1:81:7b:ce:1e:1c:9c:cb:ce:f5:00:73:a6: a7:50:14:c6:85:20:b5:1c:27:60:3b:5b:c1:67:33:8c:72:fc: 13:61:cb:63:99:c9:cc:af:81:ac:26:48:65:68:15:90:e8:df: f2:d8:69:6e:a5:71:08:43:0d:fe:f3:ab:78:c1:1e:22:41:e6: be:cc:3c:83:3f:b4:99:81:b4:68:b3:48:3b:9f:b6:48:2d:ab: e9:2f:78:cc:46:49:e1:e0:e9:f7:2f:1b:58:5d:29:fc:be:c8: 8d:5b:88:ae:83:60:35:54:7e:a2:fb:9d:e4:79:d7:1d:26:1a: 42:f5:b7:6f:c9:b4:a3:7d:89:4e:92:87:f0:c2:5e:2b:66:29: c4:0d:f7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUxMjIzMDQzNjMwWhcNMjUxMjMwMDQzNjMwWjAYMRYwFAYD VQQDDA02OTRhMWM0ZS0yZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVv3kpn+4XcEPe/fkSwBlXnrz53Kqkv64orw+9KMFPM9uAQCiElwBMGLpjHG 3/Pq02KmSNL7LLt1WZblJxfY5aH4tHk6E/qb1fw8EW9tumzJbGKN9MSLY/QuqD+J kLXbojC37O8d9KBj41YUZM+MfK/hn2E/gvWP1zajHbauJvphsPBOiN/8dZW8j25D tCrx9iCj6dZxZwoCPqqKpD/Rt33feiPAqdYTCCDu3e+bESYePQ7PvFW+LxoPBFN2 mr/MW5yFgkoWLN186bgvu1ohDF7QmoF5qNeSPSeE/bg1tX8O141Z0BpggQeXO+G/ 2ttuBA8Gyaniy1ztVMH86JdtNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSTMUCZ e3Ju+7jmHeaYtYBgmzv0MB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCfRHGlKoA1Z/VEP8OhergXcaM73M2S5ZusqB08NNpFFwMKYSBBnbo f/iShID1SvZWQwnhq0azheokPfK2zq8Sw5vtgXy2QH26V6mPCBNmszg6PfHbQZaQ Z1I9yT6/wD9XDnC7Km2/rjLEWvDAgd/SH8GBe84eHJzLzvUAc6anUBTGhSC1HCdg O1vBZzOMcvwTYctjmcnMr4GsJkhlaBWQ6N/y2GlupXEIQw3+86t4wR4iQea+zDyD P7SZgbRos0g7n7ZILavpL3jMRknh4On3LxtYXSn8vsiNW4iug2A1VH6i+53kedcd JhpC9bdvybSjfYlOkofwwl4rZinEDfcd -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:28 2025 by rpki-client