This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: lTBP1Ek0w2c6qM3x6Lj3Bl2B3rhVO475UAKHlU+8oNw= Subject key identifier: B3:24:CB:B4:2C:D9:9F:14:27:5C:39:56:E1:AF:EF:68:E6:C2:67:87 Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 07E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 07E2 Signing time: Mon 22 Dec 2025 20:29:46 +0000 Manifest this update: Mon 22 Dec 2025 20:29:46 +0000 Manifest next update: Mon 29 Dec 2025 20:29:46 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: 6Cg8AIC6+3WUMX3gR56hdQXAPr2CAOlTfB0XDrS3vVU=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: +QmSQmsTCCd4yyTjh5mf70wyqAWPCaGTrX6lQ4meIO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2024 (0x7e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F, serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Dec 22 20:29:46 2025 GMT Not After : Dec 29 20:29:46 2025 GMT Subject: CN=6949aa3a-1e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c1:f5:6d:72:1a:36:9b:25:b1:da:9c:9e:e3: 8a:6f:ca:38:51:c8:f5:07:0b:fe:d8:7c:9f:b0:8b: ee:ec:e1:51:ec:d4:86:a2:97:5b:aa:41:24:7a:e6: c1:1e:55:3a:e2:29:c1:8a:38:8d:2c:5f:38:8b:0b: 39:39:e5:68:e7:cd:81:25:a9:eb:cb:e2:06:1f:b4: 5f:c9:68:43:14:16:bc:69:69:a0:b8:63:38:a1:d5: ee:c5:9b:50:03:b1:8b:3a:ad:87:3f:61:f4:45:5e: db:0e:da:7a:a4:a9:f0:f8:85:4d:9f:09:2b:41:7f: 99:cc:fb:08:a2:b1:46:13:7c:aa:8b:6f:af:93:25: 42:f5:82:0b:0f:a8:63:2c:00:18:1b:65:dd:de:94: b5:54:ed:2e:f3:9a:ac:7b:fa:c9:d6:59:9b:b3:02: f5:c6:af:80:7b:13:42:99:a8:3a:aa:b9:ae:2d:68: ba:a4:59:c2:7e:3b:d3:37:db:a5:4b:0e:ca:ee:bf: 81:43:3d:1d:ef:5a:99:e7:77:99:ea:af:e1:18:0d: c1:1f:8b:ec:58:9b:3a:a6:90:64:20:78:8e:93:c5: 61:c6:0b:f0:0f:ae:1d:33:2d:0b:ff:27:be:8b:ad: 35:85:f5:b5:84:0e:2f:5f:14:a6:a4:72:a0:6c:2d: 3b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:24:CB:B4:2C:D9:9F:14:27:5C:39:56:E1:AF:EF:68:E6:C2:67:87 X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:8b:5b:d3:13:26:46:99:32:98:7f:32:3d:f5:64:5d:cd:75: b9:ef:cb:10:bb:aa:b0:ed:56:e9:08:7f:8e:11:1e:d5:e4:36: 8c:25:3d:d6:f8:14:3e:ca:97:7f:fa:3e:dd:f4:e7:0d:78:08: 78:a5:4c:01:9f:4e:e6:0c:5b:7f:82:84:9d:1d:4a:2f:6d:d0: 08:22:81:ac:47:6a:c4:76:0b:21:64:d5:f2:7e:33:eb:0e:75: be:9a:ce:94:c8:55:b9:11:fc:8f:89:51:23:a5:ec:df:8d:2f: 92:f2:2c:9a:ae:44:55:98:a4:4f:9f:4a:da:0a:ce:7a:d8:e1: 7f:82:43:7d:18:a0:ab:a7:bb:45:89:24:b9:45:60:27:33:bf: 43:db:7c:ba:ce:35:bf:3e:fc:cf:f5:b7:7d:3d:48:78:5c:22: 6a:d7:09:20:47:8b:26:3f:4d:41:39:cc:b9:be:a5:8d:08:0c: 47:2a:c2:3d:29:70:95:47:1f:f6:70:93:d3:8c:cb:e8:5a:5c: 7a:64:3b:6e:89:b0:c0:ba:2b:47:0b:f8:73:7f:c2:bb:e2:cf: 43:97:f5:de:27:a6:a9:8e:9d:fd:81:05:24:40:31:fc:8a:cd: 24:33:e3:16:a1:88:38:8e:05:03:28:d4:82:17:b2:5a:62:0a: af:21:26:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjUxMjIyMjAyOTQ2WhcNMjUxMjI5MjAyOTQ2WjAYMRYwFAYD VQQDDA02OTQ5YWEzYS0xZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsH1bXIaNpslsdqcnuOKb8o4Ucj1Bwv+2HyfsIvu7OFR7NSGopdbqkEkeubB HlU64inBijiNLF84iws5OeVo582BJanry+IGH7RfyWhDFBa8aWmguGM4odXuxZtQ A7GLOq2HP2H0RV7bDtp6pKnw+IVNnwkrQX+ZzPsIorFGE3yqi2+vkyVC9YILD6hj LAAYG2Xd3pS1VO0u85qse/rJ1lmbswL1xq+AexNCmag6qrmuLWi6pFnCfjvTN9ul Sw7K7r+BQz0d71qZ53eZ6q/hGA3BH4vsWJs6ppBkIHiOk8VhxgvwD64dMy0L/ye+ i601hfW1hA4vXxSmpHKgbC073wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMky7Qs 2Z8UJ1w5VuGv72jmwmeHMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCli1vTEyZGmTKYfzI99WRdzXW578sQu6qw7VbpCH+OER7V5DaMJT3W +BQ+ypd/+j7d9OcNeAh4pUwBn07mDFt/goSdHUovbdAIIoGsR2rEdgshZNXyfjPr DnW+ms6UyFW5EfyPiVEjpezfjS+S8iyarkRVmKRPn0raCs562OF/gkN9GKCrp7tF iSS5RWAnM79D23y6zjW/PvzP9bd9PUh4XCJq1wkgR4smP01BOcy5vqWNCAxHKsI9 KXCVRx/2cJPTjMvoWlx6ZDtuibDAuitHC/hzf8K74s9Dl/XeJ6apjp39gQUkQDH8 is0kM+MWoYg4jgUDKNSCF7JaYgqvISZm -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:00 2025 by rpki-client