This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft File: GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft (raw, json) Hash identifier: Kgd5WXnf6iAuI4qIPXUEtM/xse7752bn3w1blYm4lNE= Subject key identifier: 9E:B4:F6:AF:3D:29:4B:45:10:F7:9F:20:DC:DB:68:EB:0A:5D:0C:BE Authority key identifier: 18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 Certificate issuer: /CN=A91DACA7/serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft Manifest number: 010A Signing time: Tue 23 Dec 2025 03:58:09 +0000 Manifest this update: Tue 23 Dec 2025 03:58:09 +0000 Manifest next update: Tue 30 Dec 2025 03:58:09 +0000 Files and hashes: 1: GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl (hash: 03h94s+0jE2lyF3V+S/1W6WQGWkeAMrQ/u/FfaPOE80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DACA7, serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Validity Not Before: Dec 23 03:58:09 2025 GMT Not After : Dec 30 03:58:09 2025 GMT Subject: CN=694a1351-f2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4a:6d:9f:dd:fd:8f:94:5c:3d:f1:43:ed:81: 6d:84:87:63:98:ef:dc:2e:a8:7d:7e:8f:c7:03:4a: f4:b0:e3:e1:4c:40:9e:6c:82:16:5c:87:a6:eb:3c: 78:c1:db:59:17:f0:6d:6b:ee:8d:b5:9b:9d:eb:6f: 0b:3c:c5:35:6f:7c:29:46:ca:e7:db:37:c7:98:28: 41:d1:a7:af:9c:cb:11:57:22:a1:e1:d2:0d:60:8a: ad:ff:9b:75:fd:d0:f4:d9:8b:a4:6b:ca:92:56:f3: 60:9a:49:03:28:4e:e9:41:20:e2:5c:9f:01:89:be: 1b:c4:bb:56:c7:f0:82:39:40:5f:ec:f2:24:cf:f9: c8:79:15:10:bc:34:9b:ea:17:19:8d:2f:46:46:23: 2a:40:f4:27:6e:bd:64:17:a5:32:5a:f3:7e:f8:8d: e7:f1:b1:f3:71:4e:e2:77:27:99:17:8f:e5:e1:a4: cf:0f:59:ec:69:f0:c9:0f:fe:a6:05:32:32:cc:9f: dd:5f:68:51:16:2e:4b:86:ca:33:11:70:8d:42:a7: 2e:c1:1a:1b:8e:e9:0c:0a:44:72:f7:b2:60:7f:9e: 5d:e0:7f:26:64:26:71:3b:75:37:80:30:b0:46:c3: 8a:41:aa:e5:d5:a2:bc:0e:18:d1:bf:bb:3f:a3:07: 81:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B4:F6:AF:3D:29:4B:45:10:F7:9F:20:DC:DB:68:EB:0A:5D:0C:BE X509v3 Authority Key Identifier: keyid:18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:5b:a6:72:5f:9e:9d:61:97:50:60:7f:21:44:fb:4a:97:8c: ad:e0:7b:74:a4:07:98:a8:d5:c4:68:e4:eb:1d:41:2a:b7:66: 89:8c:e1:3e:11:d2:5f:b3:a3:55:47:60:b2:fd:74:b5:c4:2f: b2:33:c5:94:52:f9:fa:a1:a0:a8:33:a0:8a:05:19:68:4e:cb: 33:fa:f4:dd:33:83:37:3c:ed:75:c1:0b:9d:4e:1e:0a:4d:d1: 8a:63:29:93:72:f5:15:a9:e3:3a:f9:9a:b4:60:ee:c0:72:df: 0b:5d:b0:30:41:72:8f:b0:6e:8c:98:bd:39:9c:45:d0:bf:7b: 44:2f:44:a4:48:1e:63:70:59:0e:3c:81:0f:e9:49:56:0e:b6: 4b:6b:cc:6c:82:76:7e:db:2d:cd:40:7e:e3:98:74:ca:52:e7: 70:6b:af:1d:ef:7a:26:52:70:1b:22:26:e1:6e:99:c7:cb:06: 79:e9:0f:7a:1a:32:04:77:6b:1a:48:2c:35:26:fc:77:a8:f3: b2:34:93:78:46:11:f4:79:be:50:25:88:63:46:ee:14:39:5e: 10:83:3a:a8:c2:50:2f:3a:09:97:9e:d0:91:ca:37:52:1b:1a: d2:88:0e:2e:39:8a:13:0f:7f:cc:5e:ec:76:e8:42:61:6a:01: 57:2c:91:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFDQTcxMTAvBgNVBAUTKDE4ODE1QjM0Qzg2OTI4NEI0MzIzQzkxNjk5MzY3NzBG REQwQjQyMzYwHhcNMjUxMjIzMDM1ODA5WhcNMjUxMjMwMDM1ODA5WjAYMRYwFAYD VQQDDA02OTRhMTM1MS1mMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kptn939j5RcPfFD7YFthIdjmO/cLqh9fo/HA0r0sOPhTECebIIWXIem6zx4 wdtZF/Bta+6NtZud628LPMU1b3wpRsrn2zfHmChB0aevnMsRVyKh4dINYIqt/5t1 /dD02Yuka8qSVvNgmkkDKE7pQSDiXJ8Bib4bxLtWx/CCOUBf7PIkz/nIeRUQvDSb 6hcZjS9GRiMqQPQnbr1kF6UyWvN++I3n8bHzcU7idyeZF4/l4aTPD1nsafDJD/6m BTIyzJ/dX2hRFi5LhsozEXCNQqcuwRobjukMCkRy97Jgf55d4H8mZCZxO3U3gDCw RsOKQarl1aK8DhjRv7s/oweBvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ609q89 KUtFEPefINzbaOsKXQy+MB8GA1UdIwQYMBaAFBiBWzTIaShLQyPJFpk2dw/dC0I2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUNBNy81OUI5NDE4NjQ1 QjIxMUVGQTVERjZEMTlDNEY5QUUwMi9HSUZiTk1ocEtFdERJOGtXbVRaM0Q5MExR alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dJRmJOTWhwS0V0REk4a1dtVFozRDkwTFFqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUNBNy81OUI5NDE4NjQ1QjIxMUVGQTVERjZEMTlDNEY5QUUwMi9HSUZiTk1ocEtF dERJOGtXbVRaM0Q5MExRalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQW6ZyX56dYZdQYH8hRPtKl4yt4Ht0pAeYqNXEaOTrHUEqt2aJjOE+ EdJfs6NVR2Cy/XS1xC+yM8WUUvn6oaCoM6CKBRloTssz+vTdM4M3PO11wQudTh4K TdGKYymTcvUVqeM6+Zq0YO7Act8LXbAwQXKPsG6MmL05nEXQv3tEL0SkSB5jcFkO PIEP6UlWDrZLa8xsgnZ+2y3NQH7jmHTKUudwa68d73omUnAbIibhbpnHywZ56Q96 GjIEd2saSCw1Jvx3qPOyNJN4RhH0eb5QJYhjRu4UOV4QgzqowlAvOgmXntCRyjdS GxrSiA4uOYoTD3/MXux26EJhagFXLJGO -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:33 2025 by rpki-client