This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: nfxsTZ3BfeSUlggZimms8pD4IqY1EV0Eb0+8zVIhB8o= Subject key identifier: 23:69:CE:1D:7D:73:3D:FD:09:72:52:6D:3A:F4:1E:A0:7C:02:EE:FE Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: 7C Signing time: Sat 27 Dec 2025 05:35:32 +0000 Manifest this update: Sat 27 Dec 2025 05:35:32 +0000 Manifest next update: Sat 03 Jan 2026 05:35:32 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: 1CkvP7Yxigp1eQ6jiyPFHFMemSAnezxqgvF8V+SvCT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 05:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Dec 27 05:35:32 2025 GMT Not After : Jan 3 05:35:32 2026 GMT Subject: CN=694f7024-da17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e3:eb:3e:5c:34:0b:e9:cb:68:e0:a0:50:44: a1:fd:9b:c3:84:cd:0f:b4:f6:30:6e:41:19:8a:d3: dc:a6:e3:e7:db:4e:b6:60:05:ab:3d:5f:c7:a1:35: eb:6c:01:ef:7f:ff:34:8d:ff:50:64:f3:fb:1c:e3: 23:7f:f2:1e:27:55:d9:97:20:7a:ff:bf:b1:f9:db: 5d:af:3c:c5:76:6d:3c:73:05:48:d5:47:08:e1:ca: b3:4b:76:78:1d:81:7a:b3:bd:91:54:ce:7d:33:81: 17:c5:57:48:11:b2:39:4e:1f:f7:13:fd:fd:38:43: 72:a8:62:7c:53:60:de:62:fc:af:f0:d9:0d:12:c6: 03:6e:72:84:ab:37:3b:b6:a2:1b:42:5e:5f:1b:24: 83:f4:14:df:8f:e2:f3:51:a6:6d:76:ec:d3:41:0f: ac:a1:d1:f3:7b:65:19:04:e2:bd:f3:a1:83:3b:29: 30:8e:f1:53:40:e0:7a:8a:16:68:4d:8f:e1:c0:f2: ce:0b:f9:e2:e6:d6:03:0a:18:31:72:87:d6:ec:ff: 01:8e:9c:21:56:aa:df:96:39:84:69:32:8f:28:21: ae:b4:24:03:ef:78:21:1f:52:8a:ee:f6:45:ad:7c: 37:65:65:00:ad:df:0d:a4:c1:a6:35:eb:9f:4d:6d: eb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:69:CE:1D:7D:73:3D:FD:09:72:52:6D:3A:F4:1E:A0:7C:02:EE:FE X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:30:ef:e4:93:23:e0:9a:ac:43:d4:fa:1c:43:e4:4c:7b:26: 01:b6:c6:95:c3:ca:50:a2:f9:5a:4a:c5:48:2d:f8:ed:a8:77: ab:b9:79:51:83:f7:4b:8e:03:bf:0d:1b:d1:22:4a:09:15:83: 67:40:71:7e:a9:8d:79:6c:9c:d0:0d:0f:8a:96:cb:fc:a1:35: 1b:0a:8c:a7:7e:1b:7d:85:dc:1c:aa:0c:ed:20:d4:e0:1a:2f: ab:74:22:22:e0:93:14:fc:8f:df:20:7c:29:54:39:f6:f0:9b: 1d:b4:1c:ae:08:f8:44:74:e9:15:2f:2b:20:36:0d:d0:2e:0f: f3:57:f4:df:46:67:3f:9a:47:b7:13:48:5c:53:a7:48:98:10: 6a:95:6e:78:17:5d:3c:30:2a:0a:4a:5c:81:a9:e4:ca:55:da: b2:5a:4e:bd:f7:77:d7:ea:f5:83:4c:24:77:dc:02:bf:48:58: 4c:0a:b3:a0:01:22:17:9b:18:b0:15:97:3d:30:e8:2f:d8:04: f1:01:f1:94:db:38:6c:9a:82:01:70:ce:b7:cc:bf:60:f2:e5: a7:cf:6b:04:26:09:f2:11:98:80:bb:7c:d1:8a:eb:88:92:97: bf:6c:f8:15:a3:87:d2:bb:0b:8f:83:0c:77:9e:6a:94:8a:b6: 4d:a7:06:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NThBQTExMC8GA1UEBRMoMjM3NDM0NEI3MUIyOUYwRTM4MzUyMENBRkM2Qzg4MzUw QzM1NjE2ODAeFw0yNTEyMjcwNTM1MzJaFw0yNjAxMDMwNTM1MzJaMBgxFjAUBgNV BAMMDTY5NGY3MDI0LWRhMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX4+s+XDQL6cto4KBQRKH9m8OEzQ+09jBuQRmK09ym4+fbTrZgBas9X8ehNets Ae9//zSN/1Bk8/sc4yN/8h4nVdmXIHr/v7H5212vPMV2bTxzBUjVRwjhyrNLdngd gXqzvZFUzn0zgRfFV0gRsjlOH/cT/f04Q3KoYnxTYN5i/K/w2Q0SxgNucoSrNzu2 ohtCXl8bJIP0FN+P4vNRpm127NNBD6yh0fN7ZRkE4r3zoYM7KTCO8VNA4HqKFmhN j+HA8s4L+eLm1gMKGDFyh9bs/wGOnCFWqt+WOYRpMo8oIa60JAPveCEfUoru9kWt fDdlZQCt3w2kwaY1659NbesVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI2nOHX1z Pf0JclJtOvQeoHwC7v4wHwYDVR0jBBgwFoAUI3Q0S3Gynw44NSDK/GyINQw1YWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1OEFBL0NBNTBDOTI2MjQw MjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSTNRMFMzR3ludzQ0TlNES19HeUlOUXcxWVdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 OEFBL0NBNTBDOTI2MjQwMjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0 NE5TREtfR3lJTlF3MVlXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIAw7+STI+CarEPU+hxD5Ex7JgG2xpXDylCi+VpKxUgt+O2od6u5eVGD 90uOA78NG9EiSgkVg2dAcX6pjXlsnNAND4qWy/yhNRsKjKd+G32F3ByqDO0g1OAa L6t0IiLgkxT8j98gfClUOfbwmx20HK4I+ER06RUvKyA2DdAuD/NX9N9GZz+aR7cT SFxTp0iYEGqVbngXXTwwKgpKXIGp5MpV2rJaTr33d9fq9YNMJHfcAr9IWEwKs6AB IhebGLAVlz0w6C/YBPEB8ZTbOGyaggFwzrfMv2Dy5afPawQmCfIRmIC7fNGK64iS l79s+BWjh9K7C4+DDHeeapSKtk2nBh4= -----END CERTIFICATE-----Generated at Sat Dec 27 17:39:04 2025 by rpki-client