This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft File: GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json) Hash identifier: KDqWEY66M9NEeTfncpYvWGayvbb1yXfW0n2QEwPrh6w= Subject key identifier: 53:61:DC:27:07:CD:58:83:08:71:E5:75:E0:25:A2:98:A7:31:E6:5C Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 Certificate issuer: /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Certificate serial: 02 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft Manifest number: 02 Signing time: Fri 19 Dec 2025 08:19:28 +0000 Manifest this update: Fri 19 Dec 2025 08:19:27 +0000 Manifest next update: Fri 26 Dec 2025 08:19:27 +0000 Files and hashes: 1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: KQwW2sBXKU7ayZpZqN2khg32uoaVdQWfbpEjKpa3oKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 08:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347 Validity Not Before: Dec 19 08:19:27 2025 GMT Not After : Dec 26 08:19:27 2025 GMT Subject: CN=69450a90-7de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:06:46:84:31:30:7b:60:23:ab:d6:2c:3e:f6: fa:7f:a9:88:0e:f2:f6:ff:d4:0b:4e:5d:47:5d:c6: 0b:27:db:33:97:95:b5:6a:98:5a:4e:42:40:9a:42: 8e:e5:9e:98:c2:f0:a8:59:ec:80:83:9e:fb:39:e8: a0:f6:f4:ac:ce:3c:9f:8d:d6:5f:e0:4c:bf:8c:8c: e5:52:32:9c:1b:83:22:f6:83:7b:da:37:26:d5:e3: 37:6c:d9:07:b7:bb:16:d9:7d:66:70:ec:90:b5:9f: 77:ea:4b:08:ab:12:06:df:7c:3e:1b:6a:ea:8b:0c: 3a:14:14:ca:72:e5:c9:d3:0f:bd:dd:0b:35:82:4a: 20:0b:f1:81:bc:d2:94:f9:15:82:59:a3:9f:40:24: e9:34:8d:c2:5a:c9:b0:8d:58:56:81:aa:be:88:3d: a3:68:55:4c:5f:36:13:f7:92:30:2a:78:f9:89:c9: 30:b9:a1:fb:46:b5:31:1e:bd:85:2d:bc:5d:ba:95: 3c:ff:c9:d6:3d:92:a5:3f:7d:92:b8:d6:48:cb:47: 4b:91:ae:35:dd:11:a8:31:7f:27:30:7b:e2:d6:c5: f8:23:1c:68:3a:19:e3:02:c9:4c:4a:05:ae:6d:76: dd:62:c5:97:a3:23:76:f7:2f:d5:b0:78:e3:03:17: 51:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:61:DC:27:07:CD:58:83:08:71:E5:75:E0:25:A2:98:A7:31:E6:5C X509v3 Authority Key Identifier: keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:63:a2:68:10:2d:10:46:28:a7:a3:f1:0c:79:35:8a:c4:3e: 0a:ec:ec:50:6c:5b:bf:f3:41:e1:f0:91:dd:f8:9d:51:f4:bf: 58:0c:a8:b4:5b:a7:c5:88:5f:1d:7f:21:6e:34:ea:6c:36:57: 60:d3:cb:f8:32:a8:d4:8f:12:3d:61:12:b1:40:a8:d0:ca:4e: 12:d5:aa:99:32:c4:ae:e6:4d:b3:b4:25:1d:7b:80:a4:e9:d8: e6:9c:46:bf:73:39:3e:43:75:72:db:ad:4e:ac:f6:82:b8:18: fc:cd:e5:82:07:0d:74:c8:6d:0c:3c:e7:47:b4:ff:70:2e:49: d1:00:11:eb:20:41:36:e0:ba:2b:a7:08:a0:00:50:29:76:b4: 87:e2:93:4c:8b:d5:a7:af:2c:d0:9e:05:2b:c9:cd:4f:30:61: b8:ba:67:40:3c:cc:cc:95:93:22:70:0a:55:c1:b5:42:6c:a3: c6:b4:c5:73:ea:f3:13:88:9c:76:98:86:5d:d0:99:7c:81:e7: ea:d6:0c:5e:fb:18:37:fe:21:fa:26:94:ff:b3:dc:d1:52:d4: 68:06:10:5e:48:c1:34:65:b8:b6:8a:0a:4b:ad:e1:02:65:6f: 39:f0:0a:57:f1:ff:df:d9:a3:5d:a4:c6:e2:78:c8:3a:5b:52: 48:04:35:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFB QjFDMjExMC8GA1UEBRMoMTg0MzJENTFFNjJEREE3MjlEMUZGMUJFMUI4MUZCRjU1 QkQ4QjM0NzAeFw0yNTEyMTkwODE5MjdaFw0yNTEyMjYwODE5MjdaMBgxFjAUBgNV BAMMDTY5NDUwYTkwLTdkZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJBkaEMTB7YCOr1iw+9vp/qYgO8vb/1AtOXUddxgsn2zOXlbVqmFpOQkCaQo7l npjC8KhZ7ICDnvs56KD29KzOPJ+N1l/gTL+MjOVSMpwbgyL2g3vaNybV4zds2Qe3 uxbZfWZw7JC1n3fqSwirEgbffD4bauqLDDoUFMpy5cnTD73dCzWCSiAL8YG80pT5 FYJZo59AJOk0jcJaybCNWFaBqr6IPaNoVUxfNhP3kjAqePmJyTC5oftGtTEevYUt vF26lTz/ydY9kqU/fZK41kjLR0uRrjXdEagxfycwe+LWxfgjHGg6GeMCyUxKBa5t dt1ixZejI3b3L9WweOMDF1HdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU2HcJwfN WIMIceV14CWimKcx5lwwHwYDVR0jBBgwFoAUGEMtUeYt2nKdH/G+G4H79VvYs0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzA1OUY3Q0JDRENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5LZEhfRy1HNEg3OVZ2WXMw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR0VNdFVlWXQybktkSF9HLUc0SDc5VnZZczBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzA1OUY3Q0JDRENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL0dFTXRVZVl0Mm5L ZEhfRy1HNEg3OVZ2WXMwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZjomgQLRBGKKej8Qx5NYrEPgrs7FBsW7/zQeHwkd34nVH0v1gMqLRb p8WIXx1/IW406mw2V2DTy/gyqNSPEj1hErFAqNDKThLVqpkyxK7mTbO0JR17gKTp 2OacRr9zOT5DdXLbrU6s9oK4GPzN5YIHDXTIbQw850e0/3AuSdEAEesgQTbguiun CKAAUCl2tIfik0yL1aevLNCeBSvJzU8wYbi6Z0A8zMyVkyJwClXBtUJso8a0xXPq 8xOInHaYhl3QmXyB5+rWDF77GDf+IfomlP+z3NFS1GgGEF5IwTRluLaKCkut4QJl bznwClfx/9/Zo12kxuJ4yDpbUkgENV8= -----END CERTIFICATE-----Generated at Sat Dec 20 00:57:22 2025 by rpki-client