This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: z8B138Lrw+gOc7F+t2RpS5ydG8ECZaySn9QlTmZmZyA= Subject key identifier: 2D:30:26:3F:AF:A3:78:E4:34:44:2E:48:8A:5C:E4:6C:AF:D8:08:9D Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0636 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0631 Signing time: Sat 20 Dec 2025 22:04:43 +0000 Manifest this update: Sat 20 Dec 2025 22:04:43 +0000 Manifest next update: Sat 27 Dec 2025 22:04:43 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: gh4SvGaid7Fspci5Fy+GfqsyjZX65Jmfvqxf9Ys1xxI=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1590 (0x636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Dec 20 22:04:43 2025 GMT Not After : Dec 27 22:04:43 2025 GMT Subject: CN=69471d7b-998e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:c8:5a:a2:27:ac:de:37:c6:eb:f4:76:c2: 87:6e:c7:f3:22:de:1f:33:5b:ff:13:bf:ad:7d:be: af:76:8f:a2:a2:9f:62:81:1f:93:51:d8:cf:4d:e8: b5:a9:bb:b9:ef:2d:42:a7:d7:96:a5:cc:12:4f:aa: cd:2c:54:6f:81:8a:64:27:f7:bd:bd:c3:b2:4c:e0: af:4d:13:28:06:8c:35:d9:81:aa:f3:b7:f8:30:86: e8:3e:c2:22:0f:06:2f:dd:52:cd:cf:a1:c2:26:80: 55:ac:69:24:b9:dd:fc:d1:79:22:27:71:91:8f:40: 12:9e:5f:4a:2c:ce:ee:fd:4a:b6:b6:57:a3:8d:9b: d4:4b:a4:0a:fd:ca:0d:bc:56:f9:06:a9:e8:72:1a: b3:17:a9:c0:f3:2d:0f:ef:7e:0e:c0:8b:5a:a0:a3: b3:96:58:75:bf:3c:94:ff:94:fb:e0:d2:e3:2f:5b: d8:49:af:86:30:ba:5c:63:f3:ca:ff:df:dc:62:92: d4:ee:f8:30:ee:ae:b1:cb:76:cf:05:1a:24:78:b9: 7d:79:d6:bb:8a:de:9f:ba:c0:60:28:f5:08:ea:2d: 9f:42:7b:70:90:d9:f0:a0:04:75:17:10:e3:7c:1e: 55:79:02:c6:e4:23:93:aa:05:f6:35:57:7b:22:b8: 1e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:30:26:3F:AF:A3:78:E4:34:44:2E:48:8A:5C:E4:6C:AF:D8:08:9D X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:fd:b4:ee:91:a5:2a:b0:06:9a:91:7f:70:28:19:a8:e1:21: 31:76:39:49:4f:71:62:a0:69:0e:db:a2:51:84:2b:ab:85:9e: 31:1f:ac:d7:b1:2b:1c:7b:a6:fb:e9:7b:04:e3:a2:44:a2:56: b8:7c:9c:42:19:12:5d:26:e3:a9:99:09:04:df:c3:81:ff:08: ef:5b:7d:78:31:4c:6c:8b:46:2c:bd:7e:02:bc:f0:a0:0c:e1: 0c:7d:4c:d9:86:37:d6:ce:89:d1:d8:60:86:2f:09:8e:81:1f: ef:fb:7c:67:f0:9b:62:1c:2d:4e:1f:86:78:5f:1d:79:78:d6: 25:1d:e1:e4:ed:08:d9:3d:09:c9:69:2d:f4:43:ff:27:04:97: a7:b9:a7:93:c3:fd:7f:5e:bb:58:fb:7c:ce:4b:f2:28:fa:3a: 7b:d9:14:b5:cd:94:a7:12:66:d7:ab:61:7b:8a:e8:4c:d3:11: 0e:50:c5:bc:83:ee:ea:40:df:10:73:ee:2e:09:a3:ce:a5:72: 92:07:8c:8e:10:e2:3a:7e:76:82:0f:3a:18:d2:43:b3:77:b2: f6:47:05:f8:d9:3a:a0:02:3f:7d:91:2f:66:ed:bc:9c:b4:10: 89:3a:fd:88:65:dd:60:ec:8d:9d:b0:99:86:4d:7e:b6:d4:be: e3:de:77:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUxMjIwMjIwNDQzWhcNMjUxMjI3MjIwNDQzWjAYMRYwFAYD VQQDDA02OTQ3MWQ3Yi05OThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA013IWqInrN43xuv0dsKHbsfzIt4fM1v/E7+tfb6vdo+iop9igR+TUdjPTei1 qbu57y1Cp9eWpcwST6rNLFRvgYpkJ/e9vcOyTOCvTRMoBow12YGq87f4MIboPsIi DwYv3VLNz6HCJoBVrGkkud380XkiJ3GRj0ASnl9KLM7u/Uq2tlejjZvUS6QK/coN vFb5BqnochqzF6nA8y0P734OwItaoKOzllh1vzyU/5T74NLjL1vYSa+GMLpcY/PK /9/cYpLU7vgw7q6xy3bPBRokeLl9eda7it6fusBgKPUI6i2fQntwkNnwoAR1FxDj fB5VeQLG5COTqgX2NVd7IrgeywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0wJj+v o3jkNEQuSIpc5Gyv2AidMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn/bTukaUqsAaakX9wKBmo4SExdjlJT3FioGkO26JRhCurhZ4xH6zX sSsce6b76XsE46JEola4fJxCGRJdJuOpmQkE38OB/wjvW314MUxsi0YsvX4CvPCg DOEMfUzZhjfWzonR2GCGLwmOgR/v+3xn8JtiHC1OH4Z4Xx15eNYlHeHk7QjZPQnJ aS30Q/8nBJenuaeTw/1/XrtY+3zOS/Io+jp72RS1zZSnEmbXq2F7iuhM0xEOUMW8 g+7qQN8Qc+4uCaPOpXKSB4yOEOI6fnaCDzoY0kOzd7L2RwX42TqgAj99kS9m7byc tBCJOv2IZd1g7I2dsJmGTX621L7j3neM -----END CERTIFICATE-----Generated at Sun Dec 21 09:33:13 2025 by rpki-client