This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: Xu7joKsa9AAdHZxDBz3GOYZZbVWQb94GzwPneQfdzeo= Subject key identifier: 30:D0:8F:7D:E6:D9:34:E6:EB:6E:20:AE:C5:60:62:01:55:51:59:11 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: 021D Signing time: Fri 19 Dec 2025 01:23:32 +0000 Manifest this update: Fri 19 Dec 2025 01:23:32 +0000 Manifest next update: Fri 26 Dec 2025 01:23:32 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: wxueFNr1qY1zx70MshM5FUtsapZf4RlWig4y7Rn6jnU=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Dec 19 01:23:32 2025 GMT Not After : Dec 26 01:23:32 2025 GMT Subject: CN=6944a914-c98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b1:c1:30:37:b0:db:5a:b9:eb:cb:c9:b1:85: 7c:90:71:38:36:dd:f6:6f:97:ad:b3:bc:1e:95:7f: fc:fd:16:88:dd:93:eb:80:2c:ad:2e:04:2a:27:a4: d9:67:02:49:3d:a1:a3:e2:3e:27:f8:c9:b8:73:79: 19:19:19:e1:6e:09:ca:b2:12:12:13:c3:42:19:40: 8a:46:53:7f:72:6e:65:59:ec:1a:5b:80:54:5d:a7: 62:c8:d3:a8:8f:88:aa:a5:08:d6:64:2c:53:ff:1f: 8a:90:5a:84:90:e7:1b:cd:56:c6:0e:88:97:8b:50: 24:46:82:41:59:81:93:fc:25:03:77:87:1c:d1:89: a4:6e:6a:de:54:4a:1c:2e:35:ec:78:c6:37:4a:87: f7:9e:83:4f:11:97:e9:73:6d:db:11:b3:e5:0c:3a: e1:e0:bd:64:e4:43:b2:52:88:c6:6f:de:d9:c5:d6: d0:23:d4:08:a8:04:c9:9b:32:4a:ea:42:9a:b5:d6: a1:12:e1:58:ad:ca:f7:4e:46:77:83:01:84:10:16: fd:bb:df:36:f6:7f:0d:87:73:ff:85:dc:66:1a:ef: 3c:2d:79:45:01:8f:62:8f:98:b1:07:03:9f:d0:e2: a6:1a:ea:77:5c:2a:0d:9e:a2:f7:cb:5e:b7:03:f9: 9b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D0:8F:7D:E6:D9:34:E6:EB:6E:20:AE:C5:60:62:01:55:51:59:11 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:6b:5d:bc:90:28:6f:e3:50:d7:c7:7a:c0:b8:5e:8f:ba:42: 46:3d:28:52:e2:04:cc:ab:aa:20:b3:b4:07:47:a9:ff:91:d5: ad:01:d4:3d:e8:91:21:21:92:9c:76:b2:bb:8f:c1:83:59:25: 91:56:28:42:8f:f1:63:81:3c:04:5e:cb:c4:2d:aa:21:3b:b9: 90:d3:2c:cf:f7:26:5b:4a:32:b3:0a:3e:78:24:dd:f6:0c:59: 88:9f:9e:ba:18:8d:50:76:34:8e:28:16:d4:dc:db:2d:0d:3e: 64:a9:a0:55:97:61:db:c1:26:fd:2b:ec:95:e1:23:b5:36:d9: b7:7d:6d:13:24:78:d9:90:96:e0:c8:d7:81:7e:94:19:24:2d: 52:6c:69:ca:a1:1d:3d:45:60:4f:9d:3c:ec:18:34:34:e4:f6: 49:c6:4e:bf:fc:f5:9e:e4:3c:52:c2:8f:e6:a9:83:1a:f7:f0: 8b:cd:8d:29:68:73:1f:62:2c:19:d3:ba:df:6c:2e:2e:3d:73: a0:87:d4:7f:b6:ca:52:08:af:1b:ff:14:4b:5f:65:83:67:5e: e5:85:88:94:4c:95:23:d5:01:81:9e:9e:7b:da:56:c6:22:e0: cb:26:7d:d8:a2:cc:8e:d3:22:d6:24:5c:12:ea:ff:7f:67:a0: bf:e8:8e:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjUxMjE5MDEyMzMyWhcNMjUxMjI2MDEyMzMyWjAYMRYwFAYD VQQDDA02OTQ0YTkxNC1jOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA67HBMDew21q568vJsYV8kHE4Nt32b5ets7welX/8/RaI3ZPrgCytLgQqJ6TZ ZwJJPaGj4j4n+Mm4c3kZGRnhbgnKshISE8NCGUCKRlN/cm5lWewaW4BUXadiyNOo j4iqpQjWZCxT/x+KkFqEkOcbzVbGDoiXi1AkRoJBWYGT/CUDd4cc0YmkbmreVEoc LjXseMY3Sof3noNPEZfpc23bEbPlDDrh4L1k5EOyUojGb97ZxdbQI9QIqATJmzJK 6kKatdahEuFYrcr3TkZ3gwGEEBb9u9829n8Nh3P/hdxmGu88LXlFAY9ij5ixBwOf 0OKmGup3XCoNnqL3y163A/mbNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDQj33m 2TTm624grsVgYgFVUVkRMB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCta128kChv41DXx3rAuF6PukJGPShS4gTMq6ogs7QHR6n/kdWtAdQ9 6JEhIZKcdrK7j8GDWSWRVihCj/FjgTwEXsvELaohO7mQ0yzP9yZbSjKzCj54JN32 DFmIn566GI1QdjSOKBbU3NstDT5kqaBVl2HbwSb9K+yV4SO1Ntm3fW0TJHjZkJbg yNeBfpQZJC1SbGnKoR09RWBPnTzsGDQ05PZJxk6//PWe5DxSwo/mqYMa9/CLzY0p aHMfYiwZ07rfbC4uPXOgh9R/tspSCK8b/xRLX2WDZ17lhYiUTJUj1QGBnp572lbG IuDLJn3YosyO0yLWJFwS6v9/Z6C/6I7f -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:55 2025 by rpki-client