This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: nL5h2tToDZ/TpBDkmjXNJzC/TsAYN4rgY7iyC4IKixY= Subject key identifier: 83:56:B2:25:A4:71:EE:4B:82:4A:B1:A7:78:11:69:39:09:A4:30:6F Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 311D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 3118 Signing time: Mon 22 Dec 2025 15:18:28 +0000 Manifest this update: Mon 22 Dec 2025 15:18:28 +0000 Manifest next update: Mon 29 Dec 2025 15:18:28 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: kcRuR33toYDTb/z/FnIxVRPgKu8JcdgrSjnSdvq6eBU=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: +n1EkVjGqmRIN2F0mYDcDpolX9s17cHIyXg+OPTXZ6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12573 (0x311d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Dec 22 15:18:28 2025 GMT Not After : Dec 29 15:18:28 2025 GMT Subject: CN=69496144-03e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:33:ec:fe:0e:9e:77:22:2d:ce:93:0f:a0:27: 20:48:fa:e4:91:4c:0a:72:c1:a6:db:a7:40:7c:fc: b9:b5:a3:ca:fe:0a:fc:8c:98:2e:11:2a:24:4c:96: 47:9e:51:94:a0:18:6b:8a:90:87:31:d2:0f:af:a5: 39:e2:b2:e5:5e:ce:ce:6d:17:0e:a5:bf:d0:1b:13: ff:da:09:5a:be:ac:4c:e8:66:32:e2:2c:09:31:2b: 6e:d5:45:1a:89:c9:c5:dc:f4:8d:e4:1b:6d:6c:cd: b4:d1:07:72:9f:00:9a:a4:60:de:1c:10:3c:61:90: 42:c3:0d:d6:90:91:df:af:ff:a0:42:04:07:3a:19: 5d:8f:b7:2f:b2:28:5c:bf:b5:5d:6e:1f:d6:d2:02: 3c:0d:b6:6e:78:b8:c1:f4:04:9f:ac:ee:6f:b8:27: ae:ae:35:37:97:d3:ac:d9:5a:1a:e7:ed:3d:3a:a4: c8:06:7f:34:48:ed:ac:16:0f:a9:76:1e:9c:22:13: ee:40:47:d7:28:1a:cf:f4:c3:08:52:6d:04:13:93: c8:05:0e:93:d3:05:2d:16:6c:7e:d4:07:96:15:58: 3d:bf:0e:60:cb:7d:30:70:ef:8c:0a:5c:ae:2d:08: 7e:a9:59:d9:5f:5f:ee:68:4a:d7:13:05:4d:3c:97: 92:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:56:B2:25:A4:71:EE:4B:82:4A:B1:A7:78:11:69:39:09:A4:30:6F X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:2d:8f:c9:01:25:85:fb:8f:87:37:04:a1:a0:5d:c4:74:45: 77:85:d0:dd:12:f8:7b:c8:98:df:e4:09:c3:cf:5a:be:af:cd: e5:96:35:6c:61:fe:d8:d6:25:7b:e8:39:87:6f:b5:c3:39:6c: 70:0f:e6:a5:32:ff:e2:f2:bd:6a:9f:a9:5e:86:05:34:13:9d: d0:58:f0:da:d9:81:9f:c8:4a:31:88:36:05:14:33:62:14:46: 4b:4d:5f:c9:76:0d:1c:64:75:55:d6:86:2e:b3:09:4c:29:c9: 0c:46:92:55:01:80:cf:80:9a:18:60:ff:52:c9:2a:02:a6:62: 64:47:0e:c8:69:97:b4:5c:e1:b3:0a:27:7d:17:4a:53:2f:46: 7a:0c:71:8e:9a:e1:a9:63:0e:e2:32:dc:08:85:17:d6:a2:ae: f1:c1:6c:07:b5:13:34:3a:ec:4d:28:a0:ce:3d:51:0e:85:28: 64:35:34:88:9a:a6:ef:34:97:aa:e0:99:12:17:1b:fb:02:b7: f0:6f:58:2c:e2:71:4f:c3:3c:75:bf:93:ec:fb:9e:a5:62:d9: f6:aa:36:d7:23:4d:5b:b4:52:cf:21:50:62:09:fb:ab:bc:fa: 44:92:04:92:72:4e:56:a8:20:29:37:1f:2c:f2:12:d9:a5:51: 15:81:89:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUxMjIyMTUxODI4WhcNMjUxMjI5MTUxODI4WjAYMRYwFAYD VQQDDA02OTQ5NjE0NC0wM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DPs/g6edyItzpMPoCcgSPrkkUwKcsGm26dAfPy5taPK/gr8jJguESokTJZH nlGUoBhripCHMdIPr6U54rLlXs7ObRcOpb/QGxP/2glavqxM6GYy4iwJMStu1UUa icnF3PSN5BttbM200QdynwCapGDeHBA8YZBCww3WkJHfr/+gQgQHOhldj7cvsihc v7Vdbh/W0gI8DbZueLjB9ASfrO5vuCeurjU3l9Os2Voa5+09OqTIBn80SO2sFg+p dh6cIhPuQEfXKBrP9MMIUm0EE5PIBQ6T0wUtFmx+1AeWFVg9vw5gy30wcO+MClyu LQh+qVnZX1/uaErXEwVNPJeS3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINWsiWk ce5Lgkqxp3gRaTkJpDBvMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzLY/JASWF+4+HNwShoF3EdEV3hdDdEvh7yJjf5AnDz1q+r83lljVs Yf7Y1iV76DmHb7XDOWxwD+alMv/i8r1qn6lehgU0E53QWPDa2YGfyEoxiDYFFDNi FEZLTV/Jdg0cZHVV1oYuswlMKckMRpJVAYDPgJoYYP9SySoCpmJkRw7IaZe0XOGz Cid9F0pTL0Z6DHGOmuGpYw7iMtwIhRfWoq7xwWwHtRM0OuxNKKDOPVEOhShkNTSI mqbvNJeq4JkSFxv7Arfwb1gs4nFPwzx1v5Ps+56lYtn2qjbXI01btFLPIVBiCfur vPpEkgSSck5WqCApNx8s8hLZpVEVgYn/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:46 2025 by rpki-client