This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: 9w459flWSvePALXJFpvT5Sb1uOwKc8mj4x8Hjyz4xHs= Subject key identifier: 42:20:DF:23:97:35:12:50:71:97:E8:83:D6:58:31:0F:9D:20:41:6B Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 8D Signing time: Fri 19 Dec 2025 05:37:59 +0000 Manifest this update: Fri 19 Dec 2025 05:37:59 +0000 Manifest next update: Fri 26 Dec 2025 05:37:59 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: gDbaBPV31GL8fZsIEaSp/sNdITZ1r1S+RgDyPub6SoA=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Dec 19 05:37:59 2025 GMT Not After : Dec 26 05:37:59 2025 GMT Subject: CN=6944e4b7-4a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1c:c7:79:bd:7c:d4:6b:22:e2:ea:9d:42:1e: e1:e3:ee:1d:03:af:b5:ad:8c:fb:16:05:28:b7:31: ce:6d:52:69:5e:3a:69:57:d2:f1:69:b9:24:b3:08: 8d:04:41:37:ca:f8:aa:c3:af:76:ea:1e:c1:42:79: a1:63:07:eb:9a:bc:4b:2d:59:f3:a1:d5:20:dc:e6: 09:e6:6c:da:1c:66:5c:7b:0d:cf:7d:76:e5:b4:bb: 5d:db:d6:eb:6f:42:f2:1d:05:63:10:16:98:d1:6b: 46:3d:e9:15:0c:3a:51:85:28:79:d3:8e:e3:fb:23: cd:5b:5f:04:59:9b:69:78:2e:d9:cd:70:f1:ad:d0: 74:f8:cd:9c:b5:3f:20:43:e6:76:c5:70:73:18:74: 3e:ca:2c:d5:67:ae:7c:94:a9:8e:1d:8f:a3:11:a9: 72:a4:d0:70:a1:b9:18:2a:e7:ae:b9:dd:ac:a7:3a: 00:51:c1:7e:b4:84:b0:93:8b:0a:a9:9f:a7:dc:1b: 2c:5f:65:75:80:e4:92:fb:a1:7d:87:28:9a:96:91: 19:cd:26:bc:f3:62:e4:e8:52:a5:0e:62:c2:c4:57: ff:f2:8b:f4:fa:b7:8f:06:40:43:ac:00:b2:e1:53: 39:51:e5:28:54:5c:0f:0b:91:92:d0:4b:5d:b5:14: bf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:20:DF:23:97:35:12:50:71:97:E8:83:D6:58:31:0F:9D:20:41:6B X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:05:1a:d7:3a:82:2c:47:96:4b:90:94:2b:fd:4c:f2:f8:d5: 0d:58:e7:c5:b4:a4:83:15:e4:47:3f:c1:49:45:89:96:ee:af: 08:18:90:5c:88:a0:7f:85:54:a1:8c:ee:f8:72:0b:c5:bc:9a: 24:c9:6b:27:92:1a:07:e0:e3:f5:59:5b:e1:ef:51:dd:b9:2d: 6a:c5:4b:39:c6:d5:0c:66:5b:fe:d4:ad:6f:68:a4:fb:42:47: ac:01:05:6c:57:46:29:fd:1e:2e:7c:99:36:4f:3c:b0:a7:f3: 49:f5:20:47:2f:26:0b:1a:ee:83:23:67:b8:a5:77:83:82:17: 19:51:9a:c1:40:7a:eb:80:4d:1b:5f:c8:46:23:64:38:e6:1c: 3b:c6:e0:14:e6:a2:5c:42:d7:6f:f1:29:78:2d:e1:1a:cf:03: 92:32:fb:e7:53:6b:8e:5e:44:fa:cd:ce:a2:55:31:2e:44:00: 71:29:a1:2c:5b:58:66:26:c8:81:fb:8b:fa:ff:2a:98:91:fd: 01:95:97:73:34:a9:df:a7:5f:8b:f3:6d:a1:23:5b:49:8a:0d: 80:04:68:80:fc:36:95:fb:f9:56:19:6c:88:06:7a:11:a8:26: e5:26:a3:71:3e:87:1f:6d:ac:e4:e2:d2:0f:de:32:44:c9:b4: 7a:cc:75:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU5Q0ExMTAvBgNVBAUTKDFCQjRFMTcxQ0FDNDE5RTYxNjdCQTNBN0Q3MjUzQzc2 MTYzMUEyOEQwHhcNMjUxMjE5MDUzNzU5WhcNMjUxMjI2MDUzNzU5WjAYMRYwFAYD VQQDDA02OTQ0ZTRiNy00YTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRzHeb181Gsi4uqdQh7h4+4dA6+1rYz7FgUotzHObVJpXjppV9LxabkkswiN BEE3yviqw6926h7BQnmhYwfrmrxLLVnzodUg3OYJ5mzaHGZcew3PfXbltLtd29br b0LyHQVjEBaY0WtGPekVDDpRhSh5047j+yPNW18EWZtpeC7ZzXDxrdB0+M2ctT8g Q+Z2xXBzGHQ+yizVZ658lKmOHY+jEalypNBwobkYKueuud2spzoAUcF+tISwk4sK qZ+n3BssX2V1gOSS+6F9hyialpEZzSa882Lk6FKlDmLCxFf/8ov0+rePBkBDrACy 4VM5UeUoVFwPC5GS0EtdtRS/eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIg3yOX NRJQcZfog9ZYMQ+dIEFrMB8GA1UdIwQYMBaAFBu04XHKxBnmFnujp9clPHYWMaKN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTlDQS9BOUYyNzIyRTA4 QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdlWVdlNk9uMXlVOGRoWXhv bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTlDQS9BOUYyNzIyRTA4QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi9HN1RoY2NyRUdl WVdlNk9uMXlVOGRoWXhvbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2BRrXOoIsR5ZLkJQr/Uzy+NUNWOfFtKSDFeRHP8FJRYmW7q8IGJBc iKB/hVShjO74cgvFvJokyWsnkhoH4OP1WVvh71HduS1qxUs5xtUMZlv+1K1vaKT7 QkesAQVsV0Yp/R4ufJk2Tzywp/NJ9SBHLyYLGu6DI2e4pXeDghcZUZrBQHrrgE0b X8hGI2Q45hw7xuAU5qJcQtdv8Sl4LeEazwOSMvvnU2uOXkT6zc6iVTEuRABxKaEs W1hmJsiB+4v6/yqYkf0BlZdzNKnfp1+L822hI1tJig2ABGiA/DaV+/lWGWyIBnoR qCblJqNxPocfbazk4tIP3jJEybR6zHVT -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:33 2025 by rpki-client