This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: QRUAS4jit0t1Vebb+UfY9IUi620uv1Y0DIOBDkCpsyU= Subject key identifier: BB:6C:9B:6B:E7:C3:C4:C8:8C:9A:64:02:F2:15:5B:53:4F:68:46:FB Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 0187 Signing time: Tue 23 Dec 2025 02:35:44 +0000 Manifest this update: Tue 23 Dec 2025 02:35:44 +0000 Manifest next update: Tue 30 Dec 2025 02:35:44 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: acpNrlBoMKitYU7yC7ZvB07emQcbl1n/xpBTk1G3zrI=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: uXbJ5eievhRi1JcELWkz+fcnXhb/y0aWhBNoVIZNw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Dec 23 02:35:44 2025 GMT Not After : Dec 30 02:35:44 2025 GMT Subject: CN=694a0000-e5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ab:9b:08:57:70:3a:52:90:b4:24:6c:1d:ee: 22:0f:2e:cb:5f:5b:a2:ac:c8:89:17:e9:34:02:42: 7f:ec:01:32:fb:48:c5:6e:36:f6:53:c6:52:3c:17: b9:31:a1:b4:f0:37:99:37:f8:55:2a:ae:a0:21:6b: ee:f5:c2:5e:ec:3a:1b:1e:72:35:2d:6b:f5:e7:a6: e0:85:60:f3:9f:74:9e:b0:d2:7b:df:32:d1:26:5a: dd:9e:5c:30:86:ea:26:f2:89:a2:fe:31:7f:c4:f3: 83:c3:09:ba:6e:e1:db:78:e3:6a:d5:1a:f6:f8:68: 04:57:24:31:a9:e0:9c:b6:3b:3f:44:b5:f9:c4:7f: 1c:19:4b:79:50:af:cb:96:73:59:ba:f6:ce:7c:3f: ee:14:6f:77:2c:18:fd:ff:0f:5b:06:69:1e:f7:fa: a4:28:71:e6:6d:79:d9:bd:7a:67:b1:0a:dd:c5:4b: 62:2a:17:70:f2:f6:26:69:87:21:b1:de:ad:a0:34: e7:28:1a:e2:1a:7a:2c:c4:2b:e9:b8:40:19:b4:f3: df:16:d2:75:f1:73:8d:b0:87:5c:aa:ec:78:36:9c: 09:6e:d2:5a:3a:d9:16:87:af:04:b6:e5:a3:fe:06: 0e:6a:c9:8f:88:e4:4d:72:db:a4:4a:e5:08:88:62: d3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6C:9B:6B:E7:C3:C4:C8:8C:9A:64:02:F2:15:5B:53:4F:68:46:FB X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ad:36:6d:23:b3:9a:f9:a7:b7:a5:c7:56:4b:5c:37:f0:64: 81:1b:0b:c6:f0:90:37:0c:3c:45:56:e5:89:b0:41:e6:1b:45: 4d:53:aa:16:44:9a:6d:c0:00:69:f5:18:ad:82:d9:43:9a:f4: f7:21:19:45:28:81:58:87:17:39:b7:20:46:48:44:d2:7e:2a: 23:f3:38:22:0f:bc:ab:eb:78:12:b7:51:0b:f3:ce:9f:11:d2: 30:34:b0:5a:2c:24:c4:b5:e2:00:75:33:2f:92:24:97:f3:3d: 9a:be:5d:b6:10:77:d5:11:12:f0:a8:0f:ed:b2:4f:83:55:2d: 19:b6:8a:16:f0:f2:cd:9f:fa:e6:67:2f:a7:44:fb:17:0d:21: 95:55:d0:3e:75:a4:76:84:e3:37:28:03:bd:55:9a:66:ae:52: f9:64:fc:80:3f:ce:22:f5:66:ed:15:9b:a9:ce:3e:ab:cf:82: 78:33:46:6a:90:22:92:c1:32:34:b7:26:82:1a:e2:0b:b1:0d: 76:25:99:1d:2f:a3:dc:97:b0:aa:ee:94:cd:fa:79:9b:6c:c3: e4:d9:13:39:99:e2:74:b3:20:43:e7:20:9e:9e:16:37:7e:4b: f1:50:e9:e2:ff:2a:96:b4:9e:04:d9:61:a6:e1:8e:20:4f:5b: f9:9b:c8:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUxMjIzMDIzNTQ0WhcNMjUxMjMwMDIzNTQ0WjAYMRYwFAYD VQQDDA02OTRhMDAwMC1lNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6ubCFdwOlKQtCRsHe4iDy7LX1uirMiJF+k0AkJ/7AEy+0jFbjb2U8ZSPBe5 MaG08DeZN/hVKq6gIWvu9cJe7DobHnI1LWv156bghWDzn3SesNJ73zLRJlrdnlww huom8omi/jF/xPODwwm6buHbeONq1Rr2+GgEVyQxqeCctjs/RLX5xH8cGUt5UK/L lnNZuvbOfD/uFG93LBj9/w9bBmke9/qkKHHmbXnZvXpnsQrdxUtiKhdw8vYmaYch sd6toDTnKBriGnosxCvpuEAZtPPfFtJ18XONsIdcqux4NpwJbtJaOtkWh68EtuWj /gYOasmPiORNctukSuUIiGLTwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtsm2vn w8TIjJpkAvIVW1NPaEb7MB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBo NmlUSkJoZXRPWFJWNTA1ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDrTZtI7Oa+ae3pcdWS1w38GSBGwvG8JA3DDxFVuWJsEHmG0VNU6oW RJptwABp9RitgtlDmvT3IRlFKIFYhxc5tyBGSETSfioj8zgiD7yr63gSt1EL886f EdIwNLBaLCTEteIAdTMvkiSX8z2avl22EHfVERLwqA/tsk+DVS0ZtooW8PLNn/rm Zy+nRPsXDSGVVdA+daR2hOM3KAO9VZpmrlL5ZPyAP84i9WbtFZupzj6rz4J4M0Zq kCKSwTI0tyaCGuILsQ12JZkdL6Pcl7Cq7pTN+nmbbMPk2RM5meJ0syBD5yCenhY3 fkvxUOni/yqWtJ4E2WGm4Y4gT1v5m8jy -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:21 2025 by rpki-client