This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: Q3ngt0cSL3lW1+cEwxQoMfs6L9PKNUN9xQpG9H6Oh+U= Subject key identifier: D7:F7:E2:E9:E5:8C:9F:C2:52:53:3B:39:AC:28:3E:E9:87:1A:B2:D8 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: 010A Signing time: Tue 23 Dec 2025 03:59:36 +0000 Manifest this update: Tue 23 Dec 2025 03:59:36 +0000 Manifest next update: Tue 30 Dec 2025 03:59:36 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: 5S4f3uqZ061xiXDr/eXpAYXBUaobP6WDepFJReFNZxI=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Dec 23 03:59:36 2025 GMT Not After : Dec 30 03:59:36 2025 GMT Subject: CN=694a13a8-fa51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:94:72:50:38:6e:ec:4f:d9:3a:1f:df:e8: 48:63:91:89:2d:46:67:7d:7d:47:80:47:23:b6:a8: dd:37:50:40:1a:a8:3f:50:d0:9f:ef:63:44:6e:2e: 63:40:32:6d:d3:ba:32:77:e1:85:0c:48:60:c9:e0: 2d:23:7d:af:c7:2f:f6:2e:c7:dc:49:f0:65:b1:06: 5b:43:c1:6a:3c:43:ce:79:66:e9:34:a7:13:14:63: 39:2c:41:e5:41:7e:38:1b:f5:3b:12:23:bb:9f:e5: 5b:4f:e0:57:17:34:39:94:c0:8c:ff:fa:2f:95:db: 5e:fa:e6:a7:01:2e:6d:1c:f7:a3:03:eb:35:c3:0f: ef:93:e6:21:88:25:ba:e1:2c:70:db:a8:0e:c6:52: c3:ce:0d:af:e7:00:c8:08:d4:1d:00:df:42:1e:6d: 15:9e:65:e9:bb:ac:a4:a8:c7:d8:37:f0:c2:70:e1: c0:2e:32:ec:8a:02:4d:de:be:26:1f:17:7b:ea:ef: 28:d7:76:e3:d9:aa:64:df:d4:11:48:69:f5:13:13: 5c:f1:7a:d9:62:c4:a2:8d:f3:dc:27:7e:16:93:b6: 06:c7:0a:b5:2c:d8:50:eb:5c:54:cb:be:43:6e:5f: 7e:a7:84:f6:73:f2:f7:d2:78:d1:bd:22:21:7e:3c: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F7:E2:E9:E5:8C:9F:C2:52:53:3B:39:AC:28:3E:E9:87:1A:B2:D8 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ba:18:50:1f:5a:04:94:77:e8:68:34:4c:da:26:86:3b:48: 95:93:d1:f4:6c:de:b0:a6:92:cf:84:d1:a9:a5:df:1b:ad:bf: 9e:b4:17:96:98:0a:15:03:20:22:93:ab:cd:09:c2:93:a5:2b: 0a:e5:0d:9f:b4:b7:54:08:26:dd:2b:c0:af:75:96:0f:2e:3f: 1a:b3:f6:30:de:45:3a:ac:fb:a1:bc:14:a3:ea:11:ec:14:84: dd:93:c0:d7:07:50:d8:2b:f0:d7:ed:70:22:80:94:3f:46:5b: b4:2b:26:a1:4a:63:f7:a9:66:fb:37:d7:50:fb:19:3b:7a:7c: ca:8d:0a:6f:14:02:98:4f:d3:2a:b7:b8:b2:41:e3:8c:9c:37: 13:64:c2:17:e8:12:18:02:77:d3:25:fa:70:4a:22:44:44:a4: c5:74:2c:7d:cc:a4:d6:85:72:6c:24:80:09:f2:31:cd:99:74: 45:42:c9:d8:de:c5:5e:d0:5c:05:c5:61:dd:31:c7:5d:aa:e5: 8d:49:14:7e:f7:40:5f:c3:75:4e:1e:1a:e5:43:36:16:a0:76: 33:83:f5:2b:9d:78:4d:e3:28:ca:40:45:e4:2e:3e:e1:60:27: ae:7f:37:e3:73:5a:1b:15:20:7c:af:0a:f8:25:48:80:22:8b: 6e:7b:21:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUxMjIzMDM1OTM2WhcNMjUxMjMwMDM1OTM2WjAYMRYwFAYD VQQDDA02OTRhMTNhOC1mYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj2UclA4buxP2Tof3+hIY5GJLUZnfX1HgEcjtqjdN1BAGqg/UNCf72NEbi5j QDJt07oyd+GFDEhgyeAtI32vxy/2LsfcSfBlsQZbQ8FqPEPOeWbpNKcTFGM5LEHl QX44G/U7EiO7n+VbT+BXFzQ5lMCM//ovldte+uanAS5tHPejA+s1ww/vk+YhiCW6 4Sxw26gOxlLDzg2v5wDICNQdAN9CHm0VnmXpu6ykqMfYN/DCcOHALjLsigJN3r4m Hxd76u8o13bj2apk39QRSGn1ExNc8XrZYsSijfPcJ34Wk7YGxwq1LNhQ61xUy75D bl9+p4T2c/L30njRvSIhfjwPSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNf34unl jJ/CUlM7OawoPumHGrLYMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWuhhQH1oElHfoaDRM2iaGO0iVk9H0bN6wppLPhNGppd8brb+etBeW mAoVAyAik6vNCcKTpSsK5Q2ftLdUCCbdK8CvdZYPLj8as/Yw3kU6rPuhvBSj6hHs FITdk8DXB1DYK/DX7XAigJQ/Rlu0KyahSmP3qWb7N9dQ+xk7enzKjQpvFAKYT9Mq t7iyQeOMnDcTZMIX6BIYAnfTJfpwSiJERKTFdCx9zKTWhXJsJIAJ8jHNmXRFQsnY 3sVe0FwFxWHdMcddquWNSRR+90Bfw3VOHhrlQzYWoHYzg/UrnXhN4yjKQEXkLj7h YCeufzfjc1obFSB8rwr4JUiAIotueyG1 -----END CERTIFICATE-----Generated at Tue Dec 23 07:05:15 2025 by rpki-client