This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: A76Vejj3JHDKfQ9VFMfeNTp+VSPO9REUJQd4nXjHfuM= Subject key identifier: AC:5D:9E:1A:07:44:A9:03:D4:E1:DB:5D:14:56:F4:36:2F:CB:CF:68 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: 0220 Signing time: Thu 25 Dec 2025 01:16:34 +0000 Manifest this update: Thu 25 Dec 2025 01:16:33 +0000 Manifest next update: Thu 01 Jan 2026 01:16:33 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: lQrm9wHAk/eEcdYwWRwdjSAqAVKF0sIMk/yc1oDCDYU=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Dec 25 01:16:33 2025 GMT Not After : Jan 1 01:16:33 2026 GMT Subject: CN=694c9072-37a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c8:6e:4c:d1:b7:76:5b:03:72:6a:d5:68:48: 1f:90:18:bc:37:5b:45:69:36:8c:b3:77:4c:4a:4c: 5a:05:82:bf:48:c6:95:99:6d:fd:b5:d5:f0:96:0e: f2:0f:6f:8d:7c:df:39:b0:da:be:39:1f:ee:bd:48: 3e:12:18:00:8c:a2:f4:3b:74:15:30:ef:7f:4e:42: c9:da:f3:af:0a:c8:58:dc:82:1d:d0:79:51:4f:57: 92:15:bd:a2:f5:1d:4d:d0:ae:3f:8b:d6:ac:b5:fc: a9:81:b8:75:d2:37:b4:1f:cc:ca:c8:32:e0:2e:37: e4:43:b0:cc:b1:b1:34:1a:75:4e:0d:5a:7b:e2:9e: e0:b9:bd:59:e0:3b:6b:e5:b1:df:55:11:18:ca:30: 99:d7:8b:19:8d:77:95:4a:1c:06:b0:ed:d7:39:c7: df:8a:3e:62:11:85:82:2c:21:6c:b2:9f:80:ef:53: b9:a9:05:d1:98:42:1f:e5:8c:d9:be:67:17:67:cf: d2:26:b8:c8:a7:89:54:41:a8:6f:44:ad:44:38:3a: d5:01:43:c1:93:dd:69:e7:cb:45:a0:67:90:3e:33: da:6d:b5:78:e3:8e:31:a1:4b:7f:93:e8:3a:2c:44: 04:23:1f:b2:d7:f9:86:8b:d6:d9:7b:e9:4a:16:67: c6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5D:9E:1A:07:44:A9:03:D4:E1:DB:5D:14:56:F4:36:2F:CB:CF:68 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:49:6f:8e:df:5a:c0:1d:a9:0c:7f:0a:b1:a2:d5:3a:07:f4: 26:e7:d6:54:29:44:e4:5a:bc:77:4a:28:f3:f8:fe:28:d2:59: 85:65:4b:36:94:3f:b2:a5:40:d9:ec:09:bc:31:9c:06:f9:77: dc:b4:83:c3:27:aa:ef:78:85:48:62:0a:8a:bc:3a:1c:bb:49: 2b:d4:4f:fc:79:ef:85:34:95:85:d6:27:3c:9c:91:b1:7e:1f: 4a:c8:ea:cb:20:11:5b:b0:32:12:a0:40:50:3b:41:92:4f:aa: 99:b9:9d:a4:3c:dc:c7:73:40:2c:d0:05:fa:45:15:c8:f2:03: 96:ae:33:6d:ec:1b:19:c9:8a:ba:38:39:4b:76:22:6a:e2:87: f0:e4:fa:db:f9:80:c4:3f:32:fe:2f:03:a8:c9:a5:af:0e:b9: 76:63:b2:a8:35:ae:fb:ba:c5:06:fa:3d:91:f2:63:53:d6:f7: c4:8f:75:ed:40:ed:57:3a:e5:d2:c6:a0:c1:e3:ec:d6:dc:c4: 40:14:bb:68:87:59:59:c5:31:51:4e:62:2a:11:76:39:cf:c2: b9:ce:d7:f2:23:91:3d:c4:e2:d9:62:42:14:e8:56:cf:55:be: 84:c9:7c:df:de:74:6c:49:e2:67:79:0a:1c:9f:48:fb:33:cc: d8:d2:01:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjUxMjI1MDExNjMzWhcNMjYwMTAxMDExNjMzWjAYMRYwFAYD VQQDDA02OTRjOTA3Mi0zN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkMhuTNG3dlsDcmrVaEgfkBi8N1tFaTaMs3dMSkxaBYK/SMaVmW39tdXwlg7y D2+NfN85sNq+OR/uvUg+EhgAjKL0O3QVMO9/TkLJ2vOvCshY3IId0HlRT1eSFb2i 9R1N0K4/i9astfypgbh10je0H8zKyDLgLjfkQ7DMsbE0GnVODVp74p7gub1Z4Dtr 5bHfVREYyjCZ14sZjXeVShwGsO3XOcffij5iEYWCLCFssp+A71O5qQXRmEIf5YzZ vmcXZ8/SJrjIp4lUQahvRK1EODrVAUPBk91p58tFoGeQPjPabbV4444xoUt/k+g6 LEQEIx+y1/mGi9bZe+lKFmfG0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxdnhoH RKkD1OHbXRRW9DYvy89oMB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMSW+O31rAHakMfwqxotU6B/Qm59ZUKUTkWrx3Sijz+P4o0lmFZUs2 lD+ypUDZ7Am8MZwG+XfctIPDJ6rveIVIYgqKvDocu0kr1E/8ee+FNJWF1ic8nJGx fh9KyOrLIBFbsDISoEBQO0GST6qZuZ2kPNzHc0As0AX6RRXI8gOWrjNt7BsZyYq6 ODlLdiJq4ofw5Prb+YDEPzL+LwOoyaWvDrl2Y7KoNa77usUG+j2R8mNT1vfEj3Xt QO1XOuXSxqDB4+zW3MRAFLtoh1lZxTFRTmIqEXY5z8K5ztfyI5E9xOLZYkIU6FbP Vb6EyXzf3nRsSeJneQocn0j7M8zY0gE0 -----END CERTIFICATE-----Generated at Thu Dec 25 11:16:29 2025 by rpki-client