This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft File: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft (raw, json) Hash identifier: fbzyvMlAo+iaHZo4xUpCxUOJGBf6AlfVu3VKrvgZGEc= Subject key identifier: 33:5D:BE:E4:E7:66:4C:E7:EC:41:90:F6:82:AC:52:67:60:09:AA:4B Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 0874 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft Manifest number: 0867 Signing time: Thu 18 Dec 2025 20:11:37 +0000 Manifest this update: Thu 18 Dec 2025 20:11:37 +0000 Manifest next update: Thu 25 Dec 2025 20:11:37 +0000 Files and hashes: 1: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl (hash: h8CiLt2TqHX8Amq9qI+ll3yGjxDNa5i2T9j+eEP0u4I=) 2: 538866F6E44B11EAA31DD984C4F9AE02.roa (hash: bESggwBVi2r8+ztWK2qOS9Hu8xH3ds99tl1f1AVVNNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE, serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Dec 18 20:11:37 2025 GMT Not After : Dec 25 20:11:37 2025 GMT Subject: CN=69445ff9-ddf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ce:74:ce:cd:00:bd:1c:c2:08:38:04:5c:ef: 5e:26:c5:20:a1:22:94:90:98:08:34:31:96:93:ea: 81:52:75:ca:8e:90:63:ed:e3:65:59:9c:a3:26:be: 0a:66:1c:15:56:84:6d:cd:be:55:85:12:41:69:00: a6:95:ba:57:8c:6d:70:0e:8c:f7:e2:c4:25:60:d2: 1a:e8:b8:23:b7:05:07:8a:48:93:1a:ab:98:4f:d7: 12:f4:29:17:26:68:c0:04:a1:07:0f:3b:14:3f:b3: c4:36:c5:2a:fb:0b:d4:a6:9b:41:d7:c9:0a:fc:72: 85:e8:39:03:e6:58:48:e4:e7:70:d2:1d:3d:d4:b6: 83:f0:ef:91:81:0c:99:e2:cd:b8:39:20:66:d4:b7: d6:55:a3:f7:18:3f:62:79:a5:c9:5a:6d:36:5b:14: 86:3a:36:9a:33:9c:79:c8:2e:04:5b:cd:63:5a:e5: 89:7f:0f:38:b3:f1:0f:4f:a7:cd:3d:d4:76:94:ad: 64:93:6a:f3:fd:c0:d5:ad:da:f7:dd:1a:42:ea:98: 58:49:83:bb:24:a4:ce:62:66:b4:af:77:88:8e:c7: 67:d1:10:ed:70:f6:ff:90:98:4f:9b:c2:6b:49:45: 6b:b2:bf:f7:ca:28:9f:6d:9d:89:93:82:1b:74:50: 0f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5D:BE:E4:E7:66:4C:E7:EC:41:90:F6:82:AC:52:67:60:09:AA:4B X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:43:98:08:9a:a9:a8:4e:31:12:6a:0d:ef:39:bb:df:db:22: 7a:5b:6e:da:ba:0e:3e:68:f9:a6:13:a7:c1:b2:f5:a1:02:69: 1c:70:a1:c4:85:9b:73:15:b7:05:16:ff:dc:32:65:87:21:b5: 43:bf:b7:4f:52:4e:e7:76:53:58:9a:42:00:15:8b:fb:07:96: 8f:dc:70:eb:a0:53:2d:d1:fa:bf:b0:eb:ba:3b:ee:31:ff:6d: 5e:24:3f:99:21:89:6c:32:d0:25:ed:63:80:3b:f2:29:bb:d4: dd:33:a2:b2:b4:a9:2a:f6:e0:56:14:ea:d6:50:3e:a0:25:dc: 13:f9:e6:01:4b:f5:89:35:d9:93:4b:db:aa:f5:e0:8e:02:e2: 32:5c:88:90:ac:68:70:34:dd:a3:c3:97:fa:20:9c:73:09:c6: 81:25:1c:2d:42:6a:36:ee:5d:aa:97:66:6d:35:25:16:31:74: b3:ff:b0:71:81:20:b2:40:79:5c:aa:42:b7:e1:ed:c7:66:6f: c3:cb:4f:d8:aa:d1:03:30:b9:dd:46:8d:13:fe:33:9b:fb:8f: 35:87:6b:ec:75:c8:7d:d9:38:50:d8:89:b0:1c:87:46:97:83: 51:be:d5:e1:af:d3:72:04:21:91:13:18:d7:27:02:48:c2:a3: de:b3:56:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjUxMjE4MjAxMTM3WhcNMjUxMjI1MjAxMTM3WjAYMRYwFAYD VQQDDA02OTQ0NWZmOS1kZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmc50zs0AvRzCCDgEXO9eJsUgoSKUkJgINDGWk+qBUnXKjpBj7eNlWZyjJr4K ZhwVVoRtzb5VhRJBaQCmlbpXjG1wDoz34sQlYNIa6LgjtwUHikiTGquYT9cS9CkX JmjABKEHDzsUP7PENsUq+wvUpptB18kK/HKF6DkD5lhI5Odw0h091LaD8O+RgQyZ 4s24OSBm1LfWVaP3GD9ieaXJWm02WxSGOjaaM5x5yC4EW81jWuWJfw84s/EPT6fN PdR2lK1kk2rz/cDVrdr33RpC6phYSYO7JKTOYma0r3eIjsdn0RDtcPb/kJhPm8Jr SUVrsr/3yiifbZ2Jk4IbdFAPEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNdvuTn Zkzn7EGQ9oKsUmdgCapLMB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzZCRS9DQTA2NjY4Q0U0NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gz ZTNKZzZYNXEyTUhTUzlLWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVQ5gImqmoTjESag3vObvf2yJ6W27aug4+aPmmE6fBsvWhAmkccKHE hZtzFbcFFv/cMmWHIbVDv7dPUk7ndlNYmkIAFYv7B5aP3HDroFMt0fq/sOu6O+4x /21eJD+ZIYlsMtAl7WOAO/Ipu9TdM6KytKkq9uBWFOrWUD6gJdwT+eYBS/WJNdmT S9uq9eCOAuIyXIiQrGhwNN2jw5f6IJxzCcaBJRwtQmo27l2ql2ZtNSUWMXSz/7Bx gSCyQHlcqkK34e3HZm/Dy0/YqtEDMLndRo0T/jOb+481h2vsdch92ThQ2ImwHIdG l4NRvtXhr9NyBCGRExjXJwJIwqPes1Yl -----END CERTIFICATE-----Generated at Sat Dec 20 20:56:48 2025 by rpki-client