This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: 3QR0Qyn7SVe+pkywHjqMuHruWSB95spQcJw+z0z1vN0= Subject key identifier: 00:9E:EF:98:9A:B6:F7:2D:47:6E:56:8B:65:C9:CA:6E:C1:48:E6:50 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1CB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1CA6 Signing time: Sat 20 Dec 2025 15:59:07 +0000 Manifest this update: Sat 20 Dec 2025 15:59:07 +0000 Manifest next update: Sat 27 Dec 2025 15:59:07 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: HUzeBKNUEPhUSejgxYsYOkKtC6Q3xEXzfa8K1Saab1E=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7350 (0x1cb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: Dec 20 15:59:07 2025 GMT Not After : Dec 27 15:59:07 2025 GMT Subject: CN=6946c7cb-f4b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:67:b8:df:33:c1:95:5f:5c:e2:4b:47:71:cc: 92:c4:06:c4:01:82:05:06:1c:70:fd:c9:0c:be:77: 08:5b:2b:8a:7a:29:e7:fe:11:a8:fa:e3:41:bf:99: e5:80:26:c4:ea:24:5a:6a:ba:04:df:7b:c2:8e:40: 7a:b4:b2:de:94:eb:e6:62:d0:07:f3:7f:33:40:37: c7:06:6f:c1:55:29:9f:94:9d:0b:e3:3f:88:8d:d6: fb:03:0c:c8:79:db:8e:df:e3:bb:74:97:86:df:b5: 4b:d5:ae:13:bb:df:a6:f1:35:ac:6f:63:1a:ff:15: b3:25:c7:40:bd:10:c1:ab:6d:80:b1:da:90:ab:15: 0a:47:77:41:c6:d4:49:49:ae:d2:7e:5f:af:f8:6e: 7a:ec:57:40:18:50:3b:58:cc:4c:4e:07:76:02:59: b8:f0:e4:06:f5:1f:dc:c3:ce:52:c4:08:b5:5b:8e: e4:25:d8:d3:79:fc:f1:d0:11:19:cb:36:4b:3e:4c: d6:78:8c:24:82:9f:13:cd:54:3a:10:3e:b8:be:d3: 7f:fc:42:75:42:7c:18:ee:47:ed:36:8b:ed:b0:77: 20:62:4f:a2:92:fc:be:c3:88:ab:77:cd:25:29:8c: 5c:d0:84:78:72:af:85:d4:18:f6:34:9d:4e:ac:81: db:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:9E:EF:98:9A:B6:F7:2D:47:6E:56:8B:65:C9:CA:6E:C1:48:E6:50 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f5:47:0d:9b:24:3f:32:28:40:81:3a:19:79:7a:3a:35:5d: 48:be:62:05:43:84:59:ba:66:af:5f:b9:77:73:be:28:a1:fa: ef:0e:f3:7c:df:10:d1:b0:7d:22:16:3a:b5:90:c4:48:15:1e: ad:60:a2:fd:ac:f7:3f:c7:a2:fb:1d:3a:d6:70:46:01:24:bb: 47:ac:eb:96:23:7c:3a:93:88:ba:41:4d:b5:aa:92:8a:f7:60: 8e:ef:a0:c5:37:b6:05:60:67:5a:4b:1a:2b:bb:88:93:c5:ea: 36:2d:a8:0d:71:d5:cc:fd:c0:33:cc:11:e9:21:d5:01:a5:5e: 9f:61:5a:29:31:99:32:f3:40:2e:87:c8:fb:83:eb:dc:60:56: 10:78:37:98:97:b4:48:ed:a2:29:cc:60:3b:02:be:8f:50:b7: f4:40:5e:cc:e5:96:f8:e2:19:c8:ed:e0:f3:d1:d0:54:8f:c3: 46:72:a1:8c:69:bb:b7:48:ae:1a:9e:91:e7:d6:91:ff:37:36: 3e:c9:ad:4d:35:70:5d:ba:52:44:67:f5:33:c2:53:c9:8b:4b: df:f0:b6:44:8f:2a:99:2e:bc:de:e2:9e:2e:f8:11:c5:09:2f: 7b:3c:44:07:f0:b7:3b:0a:32:7c:d8:00:ec:22:ad:5b:68:10: 01:d1:74:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUxMjIwMTU1OTA3WhcNMjUxMjI3MTU1OTA3WjAYMRYwFAYD VQQDDA02OTQ2YzdjYi1mNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWe43zPBlV9c4ktHccySxAbEAYIFBhxw/ckMvncIWyuKeinn/hGo+uNBv5nl gCbE6iRaaroE33vCjkB6tLLelOvmYtAH838zQDfHBm/BVSmflJ0L4z+Ijdb7AwzI eduO3+O7dJeG37VL1a4Tu9+m8TWsb2Ma/xWzJcdAvRDBq22AsdqQqxUKR3dBxtRJ Sa7Sfl+v+G567FdAGFA7WMxMTgd2Alm48OQG9R/cw85SxAi1W47kJdjTefzx0BEZ yzZLPkzWeIwkgp8TzVQ6ED64vtN//EJ1QnwY7kftNovtsHcgYk+ikvy+w4ird80l KYxc0IR4cq+F1Bj2NJ1OrIHbjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACe75ia tvctR25Wi2XJym7BSOZQMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd9UcNmyQ/MihAgToZeXo6NV1IvmIFQ4RZumavX7l3c74oofrvDvN8 3xDRsH0iFjq1kMRIFR6tYKL9rPc/x6L7HTrWcEYBJLtHrOuWI3w6k4i6QU21qpKK 92CO76DFN7YFYGdaSxoru4iTxeo2LagNcdXM/cAzzBHpIdUBpV6fYVopMZky80Au h8j7g+vcYFYQeDeYl7RI7aIpzGA7Ar6PULf0QF7M5Zb44hnI7eDz0dBUj8NGcqGM abu3SK4anpHn1pH/NzY+ya1NNXBdulJEZ/UzwlPJi0vf8LZEjyqZLrze4p4u+BHF CS97PEQH8Lc7CjJ82ADsIq1baBAB0XTf -----END CERTIFICATE-----Generated at Sun Dec 21 08:00:22 2025 by rpki-client