This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: IATt7FOTnm4XNsAIKDFkTe9ZorHHSvidEKB/Htp8SG0= Subject key identifier: 06:04:C7:7D:A8:72:7D:F8:7C:63:9C:E6:DC:96:D4:9C:66:4A:AF:6E Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 060B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05FA Signing time: Thu 18 Dec 2025 22:17:27 +0000 Manifest this update: Thu 18 Dec 2025 22:17:26 +0000 Manifest next update: Thu 25 Dec 2025 22:17:26 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: FF4uvWM0lchE+jwez7JBJ+HTbsLvAJkzL2fZfCj/WjE=) 2: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) 3: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Dec 18 22:17:26 2025 GMT Not After : Dec 25 22:17:26 2025 GMT Subject: CN=69447d76-7368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:e3:2c:2a:d6:09:f6:57:83:6d:3a:d3:d5: 49:0f:e8:0d:13:ea:c8:05:19:c7:ff:f6:13:cc:bb: a9:d2:1c:6d:7f:c7:40:08:0d:c1:9a:0e:0b:ab:a0: bf:9d:79:63:d3:5b:95:35:2f:08:42:6b:cb:ff:f0: f4:f7:a8:28:f6:b4:65:fc:f7:46:6c:7c:88:66:df: 85:ad:8b:26:b4:79:8d:82:27:83:8b:1e:07:a3:92: 30:ef:62:72:04:21:35:5d:0f:18:b3:c5:a0:b5:cd: 57:72:6e:11:95:79:a4:3e:7e:62:9a:5a:00:3e:e3: d5:8e:a8:a3:cc:53:12:31:2f:f9:6d:82:03:29:86: 3d:d2:82:03:e7:0c:bf:6d:51:63:d0:a1:23:9c:db: 71:ac:07:33:01:9a:4e:15:3e:00:a8:95:dd:94:7e: 51:d5:88:8f:93:66:e4:65:32:90:2a:9a:83:7a:80: a9:29:4f:5b:73:9e:5d:8a:4f:70:ac:92:4b:2d:eb: df:06:a0:ea:a8:0f:8f:1d:7a:0a:d3:7b:ad:14:3b: 7a:0b:a7:17:1d:f0:81:07:b3:58:98:dd:a1:16:b6: 27:fe:52:ec:95:c5:d1:1e:5b:8b:0e:26:3e:0a:7e: 1a:79:a5:ed:93:49:17:53:3e:71:46:ae:88:fe:7a: 70:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:04:C7:7D:A8:72:7D:F8:7C:63:9C:E6:DC:96:D4:9C:66:4A:AF:6E X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a3:f0:2b:20:21:b5:b3:50:d7:7d:45:f8:4f:6a:33:c2:4b: 14:90:d1:d1:08:60:0d:f3:f0:b9:6f:6d:ad:22:a5:e5:7e:c7: 9e:85:eb:ac:81:85:08:06:66:d9:2b:f6:01:6f:6f:d8:53:fa: 94:ae:75:36:72:c2:46:a2:c1:44:8a:54:04:3a:49:f0:db:cf: 18:cd:52:be:1b:b7:71:e0:a3:92:c2:b0:b8:de:e1:95:82:3c: fe:a8:29:7c:cb:ea:fc:bd:a9:15:2c:fc:b7:5a:bd:7f:cb:67: cf:3e:ed:77:36:c6:38:65:3b:81:a4:05:a4:7e:b7:c8:4f:1b: b6:0a:f0:cb:28:32:26:59:8b:6f:93:b6:44:99:7d:5b:16:87: 2c:f3:91:a0:0a:56:47:40:57:3e:18:06:9f:d2:4f:36:15:76: 96:ca:e0:13:bf:bd:a0:64:ef:78:98:79:f8:e7:75:d1:46:da: 67:c1:53:e6:59:ea:ab:88:79:c0:8c:c7:30:7f:d4:fc:a3:68: 0f:f7:31:11:78:f8:70:b2:14:f0:de:65:24:55:5e:c9:36:fb: 45:98:9b:c0:93:1a:7f:2e:e7:23:22:9f:f4:73:cf:46:96:a4: b8:a4:f1:f0:dd:0f:6f:23:37:ca:37:3f:d4:9e:bc:c8:fc:49: 26:39:27:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUxMjE4MjIxNzI2WhcNMjUxMjI1MjIxNzI2WjAYMRYwFAYD VQQDDA02OTQ0N2Q3Ni03MzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsETjLCrWCfZXg20609VJD+gNE+rIBRnH//YTzLup0hxtf8dACA3Bmg4Lq6C/ nXlj01uVNS8IQmvL//D096go9rRl/PdGbHyIZt+FrYsmtHmNgieDix4Ho5Iw72Jy BCE1XQ8Ys8Wgtc1Xcm4RlXmkPn5imloAPuPVjqijzFMSMS/5bYIDKYY90oID5wy/ bVFj0KEjnNtxrAczAZpOFT4AqJXdlH5R1YiPk2bkZTKQKpqDeoCpKU9bc55dik9w rJJLLevfBqDqqA+PHXoK03utFDt6C6cXHfCBB7NYmN2hFrYn/lLslcXRHluLDiY+ Cn4aeaXtk0kXUz5xRq6I/npwewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYEx32o cn34fGOc5tyW1JxmSq9uMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADo/ArICG1s1DXfUX4T2ozwksUkNHRCGAN8/C5b22tIqXlfseeheus gYUIBmbZK/YBb2/YU/qUrnU2csJGosFEilQEOknw288YzVK+G7dx4KOSwrC43uGV gjz+qCl8y+r8vakVLPy3Wr1/y2fPPu13NsY4ZTuBpAWkfrfITxu2CvDLKDImWYtv k7ZEmX1bFocs85GgClZHQFc+GAaf0k82FXaWyuATv72gZO94mHn453XRRtpnwVPm WeqriHnAjMcwf9T8o2gP9zERePhwshTw3mUkVV7JNvtFmJvAkxp/LucjIp/0c89G lqS4pPHw3Q9vIzfKNz/UnrzI/EkmOSdk -----END CERTIFICATE-----Generated at Fri Dec 19 09:45:04 2025 by rpki-client