This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: qd/djZK+vpx77Lz1ihBQtRmGHD1oXkWcWmrtT9ppu6s= Subject key identifier: 56:58:F0:EA:95:05:65:E3:F3:45:BB:DD:7F:1E:DC:81:96:42:98:43 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 1550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 1545 Signing time: Sat 20 Dec 2025 16:33:35 +0000 Manifest this update: Sat 20 Dec 2025 16:33:35 +0000 Manifest next update: Sat 27 Dec 2025 16:33:35 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: FklGQES6WDxumqnZ06qlOKMfhisigZrNyuqxmZSxqUU=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: 73TnPaYse5Jq88UH3d/+sChGvcrApkf6vCKZhwuKess=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5456 (0x1550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Dec 20 16:33:35 2025 GMT Not After : Dec 27 16:33:35 2025 GMT Subject: CN=6946cfdf-e505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7e:14:bd:4e:11:51:c1:e4:18:5a:64:3b:78: 17:00:a9:d7:77:92:bb:64:42:eb:ef:5d:95:1b:a4: f7:4e:58:4b:13:7a:c7:16:93:c6:4d:21:b8:26:de: 65:2a:92:aa:14:07:8c:41:40:d6:37:ed:d8:c8:87: 15:ff:c0:d4:c3:2a:69:e4:33:31:d0:04:10:de:5f: 4d:9a:cb:65:f4:72:b2:d8:fb:60:25:68:a3:d1:82: 9e:cd:e0:f2:cd:34:0b:45:2b:7d:70:cf:01:87:d2: 9e:78:79:34:e4:97:39:02:5b:3a:87:db:b4:91:86: 12:cd:36:26:fa:4e:81:5e:27:f7:c2:45:11:ee:1a: c1:1f:0f:55:3d:bc:fb:70:d7:85:bc:85:ce:d0:63: 05:ef:bf:04:0f:49:d9:14:99:a7:04:46:cd:fe:d6: ac:18:dc:a6:af:db:f9:ab:39:a5:6c:d6:5e:95:15: 34:17:4c:63:09:9c:5e:2f:b7:5d:08:10:55:e4:08: 89:f6:30:5e:55:13:e3:cf:6d:c8:6f:b4:6c:6e:1f: 2e:1c:c9:d3:3e:33:e0:88:5e:bc:b8:d7:e0:4d:63: fe:f8:3e:6e:23:5b:12:2e:05:30:e1:05:03:7e:d7: 09:40:93:a4:23:0d:b9:59:f7:49:7d:9b:76:25:3a: a1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:58:F0:EA:95:05:65:E3:F3:45:BB:DD:7F:1E:DC:81:96:42:98:43 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:de:f7:1a:22:10:0e:bf:c3:1d:c7:0a:07:4f:02:92:97:11: fc:83:df:3f:c3:2e:07:65:df:75:91:45:ba:33:5c:29:5c:0e: 7f:33:46:85:f7:5f:89:87:15:f5:40:22:0b:47:89:9d:91:5a: 83:fe:12:9b:9d:a6:66:e6:bc:1b:b3:83:ee:28:02:8f:e6:86: a1:ac:11:af:a9:91:b9:43:b6:a3:05:3a:f0:dd:50:e5:67:bb: d4:37:9c:2e:75:31:31:a0:c6:ee:13:6d:c4:a7:b9:86:1a:9c: d3:46:4e:14:83:a5:22:3f:fd:cb:f9:53:98:89:6a:f9:5a:79: c4:57:21:92:83:4d:02:1a:1b:3b:39:d4:e5:36:7c:e3:83:36: 38:9f:73:a6:81:5d:f1:71:7a:5e:1a:09:44:e9:c6:b6:f6:57: b9:63:d6:9b:d2:9a:52:d4:54:a5:b1:02:fe:3f:c7:9b:8b:76: dd:aa:16:b6:fd:2c:54:79:21:85:85:7d:2b:2f:30:01:e3:22: d3:8c:b6:66:4e:18:18:6c:7c:70:5d:0c:ae:90:0b:28:d3:c1: 27:5b:f6:69:65:9e:e9:11:61:8c:eb:58:36:b6:63:23:b4:76: 0e:60:a2:da:d6:e3:a8:30:1a:fa:2a:f5:b8:56:2f:e3:3a:e5: 42:e6:1b:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUxMjIwMTYzMzM1WhcNMjUxMjI3MTYzMzM1WjAYMRYwFAYD VQQDDA02OTQ2Y2ZkZi1lNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH4UvU4RUcHkGFpkO3gXAKnXd5K7ZELr712VG6T3TlhLE3rHFpPGTSG4Jt5l KpKqFAeMQUDWN+3YyIcV/8DUwypp5DMx0AQQ3l9Nmstl9HKy2PtgJWij0YKezeDy zTQLRSt9cM8Bh9KeeHk05Jc5Als6h9u0kYYSzTYm+k6BXif3wkUR7hrBHw9VPbz7 cNeFvIXO0GMF778ED0nZFJmnBEbN/tasGNymr9v5qzmlbNZelRU0F0xjCZxeL7dd CBBV5AiJ9jBeVRPjz23Ib7Rsbh8uHMnTPjPgiF68uNfgTWP++D5uI1sSLgUw4QUD ftcJQJOkIw25WfdJfZt2JTqhgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZY8OqV BWXj80W73X8e3IGWQphDMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd3vcaIhAOv8MdxwoHTwKSlxH8g98/wy4HZd91kUW6M1wpXA5/M0aF 91+JhxX1QCILR4mdkVqD/hKbnaZm5rwbs4PuKAKP5oahrBGvqZG5Q7ajBTrw3VDl Z7vUN5wudTExoMbuE23Ep7mGGpzTRk4Ug6UiP/3L+VOYiWr5WnnEVyGSg00CGhs7 OdTlNnzjgzY4n3OmgV3xcXpeGglE6ca29le5Y9ab0ppS1FSlsQL+P8ebi3bdqha2 /SxUeSGFhX0rLzAB4yLTjLZmThgYbHxwXQyukAso08EnW/ZpZZ7pEWGM61g2tmMj tHYOYKLa1uOoMBr6KvW4Vi/jOuVC5hsA -----END CERTIFICATE-----Generated at Sun Dec 21 15:21:45 2025 by rpki-client