This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft File: gcJvPY9BNuUZDMehfWr3IkIutm8.mft (raw, json) Hash identifier: qcsjngnP+EA5qyIbFwfQ6IEeHycqSScG8SG1C73Mr3o= Subject key identifier: 48:0F:68:40:70:C8:67:78:E1:6F:CC:10:2F:50:65:84:5B:41:43:8D Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft Manifest number: D9 Signing time: Fri 19 Dec 2025 04:46:13 +0000 Manifest this update: Fri 19 Dec 2025 04:46:12 +0000 Manifest next update: Fri 26 Dec 2025 04:46:12 +0000 Files and hashes: 1: gcJvPY9BNuUZDMehfWr3IkIutm8.crl (hash: lImtSijC6Wv4BWhpwTHF235WUmchRqax0wrKX6SJayo=) 2: 20B2721A955B11EFBF0F5669C4F9AE02.roa (hash: b7PxFokUIXPBGz+iss/nauBD0ImGfyI3acw64tuMWC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Validity Not Before: Dec 19 04:46:12 2025 GMT Not After : Dec 26 04:46:12 2025 GMT Subject: CN=6944d895-814b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:29:04:28:1e:b4:ff:b2:0b:8b:6b:73:05:0e: dd:ae:67:08:6c:81:b3:1a:11:75:c9:b6:fc:2a:cd: 0d:da:75:2f:00:87:ea:fd:03:c4:3d:90:80:dc:c2: 2c:a6:1d:7e:d1:ed:2d:11:42:e6:c1:97:8d:9f:4b: 23:4f:08:b2:4d:cd:97:4b:91:b6:92:96:0f:a4:b3: cf:e5:6f:79:80:ad:0a:d5:1f:63:ff:c9:cf:32:5b: 6d:bc:41:f1:dd:bc:f1:dc:cf:9b:43:a7:80:78:99: 88:b5:3a:58:88:54:51:e3:5b:ea:ea:47:e9:29:4c: 5c:e1:d3:a6:61:11:36:7d:bf:bd:07:58:f7:33:6b: f5:32:de:a3:d5:67:62:73:9f:65:bd:a2:cd:07:1d: 7e:c4:ae:d2:df:c4:68:6e:c1:47:a7:6e:20:dd:9c: f6:e1:30:73:fd:59:16:95:52:cb:28:f1:5b:12:9a: 22:05:8f:34:8a:a0:7b:98:a1:65:72:9e:1f:ca:b4: dd:07:20:58:69:9b:c1:73:ca:82:66:8b:c1:d9:31: fc:f1:aa:b7:f3:84:c1:d6:28:62:a7:27:04:89:aa: e9:cc:ed:0f:7e:db:a4:f1:68:cb:ea:e5:8d:a4:ff: dc:3a:28:5a:3b:ca:23:4f:af:fb:7f:1d:5c:99:4d: e0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0F:68:40:70:C8:67:78:E1:6F:CC:10:2F:50:65:84:5B:41:43:8D X509v3 Authority Key Identifier: keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:ea:11:4a:09:25:0f:33:55:fb:f1:d3:c7:51:c2:3f:aa:e8: 7c:58:07:f8:6f:01:b7:d0:ba:8f:9d:02:6e:82:1b:54:92:2a: ca:b1:ac:76:4a:a3:b6:7c:92:ae:59:dd:13:98:eb:07:cf:83: 34:59:5c:40:aa:b0:7f:ff:ff:dc:18:0e:d6:47:58:04:06:5d: 0b:01:d0:b8:b4:e1:56:e6:51:0d:ed:a0:a4:82:66:45:74:c7: 32:1e:55:46:44:8d:8e:1a:7f:2d:a1:cc:27:31:d6:f4:e9:58: 8c:b3:db:ce:cc:5f:8a:8b:f4:af:30:a0:04:78:c6:82:ff:0c: 05:69:57:f1:b3:41:64:3c:bd:31:a3:06:d3:79:3d:30:01:5f: 88:c7:26:a5:62:ee:b4:39:28:7c:1a:41:1f:98:80:b1:f9:80: bc:af:4c:91:24:74:e7:09:a1:0d:1a:73:23:26:6b:50:45:79: 80:72:23:1e:77:83:04:46:eb:a9:8b:7a:3e:84:62:08:80:6d: d6:92:19:df:3d:74:c3:bb:f0:18:64:50:bf:98:75:fc:b6:16: 9e:90:be:44:c4:1c:3f:71:98:06:e5:09:ce:2c:58:7c:f1:11: cd:78:8c:86:1e:83:60:41:2a:ca:83:4a:0e:fc:a1:df:8b:1d: 77:2e:dc:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFNzAxMTAvBgNVBAUTKDgxQzI2RjNEOEY0MTM2RTUxOTBDQzdBMTdENkFGNzIy NDIyRUI2NkYwHhcNMjUxMjE5MDQ0NjEyWhcNMjUxMjI2MDQ0NjEyWjAYMRYwFAYD VQQDDA02OTQ0ZDg5NS04MTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SkEKB60/7ILi2tzBQ7drmcIbIGzGhF1ybb8Ks0N2nUvAIfq/QPEPZCA3MIs ph1+0e0tEULmwZeNn0sjTwiyTc2XS5G2kpYPpLPP5W95gK0K1R9j/8nPMlttvEHx 3bzx3M+bQ6eAeJmItTpYiFRR41vq6kfpKUxc4dOmYRE2fb+9B1j3M2v1Mt6j1Wdi c59lvaLNBx1+xK7S38RobsFHp24g3Zz24TBz/VkWlVLLKPFbEpoiBY80iqB7mKFl cp4fyrTdByBYaZvBc8qCZovB2TH88aq384TB1ihipycEiarpzO0Pftuk8WjL6uWN pP/cOihaO8ojT6/7fx1cmU3gdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgPaEBw yGd44W/MEC9QZYRbQUONMB8GA1UdIwQYMBaAFIHCbz2PQTblGQzHoX1q9yJCLrZv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEU3MC8yRDk5NzBEODk1 NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9nY0p2UFk5Qk51VVpETWVoZldyM0lrSXV0 bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2djSnZQWTlCTnVVWkRNZWhmV3IzSWtJdXRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEU3MC8yRDk5NzBEODk1NUExMUVGQkQ5RTAyNEFDNEY5QUUwMi9nY0p2UFk5Qk51 VVpETWVoZldyM0lrSXV0bTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD6hFKCSUPM1X78dPHUcI/quh8WAf4bwG30LqPnQJughtUkirKsax2 SqO2fJKuWd0TmOsHz4M0WVxAqrB////cGA7WR1gEBl0LAdC4tOFW5lEN7aCkgmZF dMcyHlVGRI2OGn8tocwnMdb06ViMs9vOzF+Ki/SvMKAEeMaC/wwFaVfxs0FkPL0x owbTeT0wAV+IxyalYu60OSh8GkEfmICx+YC8r0yRJHTnCaENGnMjJmtQRXmAciMe d4MERuupi3o+hGIIgG3WkhnfPXTDu/AYZFC/mHX8thaekL5ExBw/cZgG5QnOLFh8 8RHNeIyGHoNgQSrKg0oO/KHfix13Ltzx -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:31 2025 by rpki-client