This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: UKzaJvsl61SSIwKgWjC4eyPJZa9KA5DPgudEF65WUjM= Subject key identifier: A8:D2:9C:96:8F:65:F7:CE:08:06:E9:A6:DB:9E:C7:51:FD:92:2E:C1 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34F4 Signing time: Thu 18 Dec 2025 14:39:14 +0000 Manifest this update: Thu 18 Dec 2025 14:39:13 +0000 Manifest next update: Thu 25 Dec 2025 14:39:13 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: 3mwscpr6CsZ73sV7E0AAXwe2Ur0Dzutv7lTWYxBOuow=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: f0s5M+jY8Uq/Wkuq+EBQtTt5fdf658GNQxqS9tNI1Ho=) 3: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: amc5JKgDCW0FwP7fqve5MmmvPdX66HObowu8LFy8/hw=) 4: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: XxjtUd/hL+kIKHkOi4rgqBJdsfuyYhtMzuXgGEu/n3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Dec 18 14:39:13 2025 GMT Not After : Dec 25 14:39:13 2025 GMT Subject: CN=69441212-7953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:51:95:53:52:74:61:97:8b:3a:7e:2f:16:c5: ae:f5:65:cc:41:4d:06:c4:fb:24:7b:52:af:1f:be: fb:da:6e:6c:85:83:42:8b:79:f0:66:ec:f1:46:2e: 34:53:cf:50:d5:e8:48:29:88:e5:83:93:42:d6:6f: 7a:1b:9a:5f:72:d6:b6:6e:04:19:2d:0b:49:89:fb: 1c:01:37:06:2e:0e:f7:2b:5d:cb:2d:92:ea:a1:17: 19:28:31:a9:7d:b3:cb:f0:4d:12:4b:5c:ff:c6:05: cb:01:06:e9:ef:99:d7:ca:86:e1:29:93:dd:5c:15: 6d:80:e8:14:e6:cc:f6:2b:ae:27:0b:df:90:fd:9d: f5:ef:b6:c7:85:dc:04:c2:dc:17:9b:77:ee:c9:41: 64:0b:09:45:45:ee:5e:ae:28:7e:f6:b6:ab:19:72: 8d:fb:81:f6:ff:7d:6d:ed:37:b9:92:57:35:e1:cd: 01:d0:c9:29:24:0b:fc:03:cc:2b:de:9c:93:e7:28: 6e:62:3c:67:2a:3f:27:0b:0e:85:28:c7:e1:28:db: 89:c1:f3:0f:88:96:68:2e:29:27:66:55:0e:0d:3d: 95:01:7e:66:dd:88:63:87:ff:57:71:23:bc:45:df: 80:fb:0b:fc:70:6a:99:2a:0b:99:2c:26:a1:04:bb: fe:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D2:9C:96:8F:65:F7:CE:08:06:E9:A6:DB:9E:C7:51:FD:92:2E:C1 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:dc:ed:31:5d:93:76:b4:cc:af:09:a9:8e:3d:07:f5:c6:f4: b1:e8:58:a6:6a:8e:06:4e:a7:51:f8:6e:a6:45:29:37:b3:60: 7a:e4:5b:ba:ca:92:a2:87:da:41:0a:70:38:d6:98:7c:66:a3: 6e:73:f4:d7:70:2d:11:f9:f2:76:ce:30:9a:eb:e0:d5:07:75: 16:5f:1a:29:eb:cf:4a:4c:86:d5:39:23:32:4e:e4:2f:5c:99: 9c:17:d4:eb:04:ab:c7:b4:ec:4e:f9:fb:56:36:42:8a:b8:37: 39:26:6c:66:a3:5c:16:4a:99:26:ef:8a:9c:ee:c4:56:97:b9: d9:33:ff:54:a3:38:7a:ed:e7:24:a6:6f:f8:bb:85:12:21:63: 68:9a:6e:18:d1:5a:7e:23:d9:6c:4b:1e:44:9f:55:46:e4:70: a5:f4:05:8d:28:63:bb:b2:6e:0e:4e:1e:d7:74:8f:71:a3:e3: e7:bb:55:e9:e2:b2:05:fb:bc:0a:cb:77:b5:6a:08:50:bc:8b: e7:38:a1:a8:81:d3:56:ae:bf:20:ed:7f:fd:41:da:d6:9f:2a: b0:92:28:b5:d2:31:e9:7a:11:6f:d2:24:91:21:f4:25:2d:b7: 30:a4:07:1b:ca:98:51:d7:ee:af:aa:8a:cc:98:75:a8:3a:07: 99:e4:3e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUxMjE4MTQzOTEzWhcNMjUxMjI1MTQzOTEzWjAYMRYwFAYD VQQDDA02OTQ0MTIxMi03OTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkFGVU1J0YZeLOn4vFsWu9WXMQU0GxPske1KvH7772m5shYNCi3nwZuzxRi40 U89Q1ehIKYjlg5NC1m96G5pfcta2bgQZLQtJifscATcGLg73K13LLZLqoRcZKDGp fbPL8E0SS1z/xgXLAQbp75nXyobhKZPdXBVtgOgU5sz2K64nC9+Q/Z3177bHhdwE wtwXm3fuyUFkCwlFRe5erih+9rarGXKN+4H2/31t7Te5klc14c0B0MkpJAv8A8wr 3pyT5yhuYjxnKj8nCw6FKMfhKNuJwfMPiJZoLiknZlUODT2VAX5m3Yhjh/9XcSO8 Rd+A+wv8cGqZKguZLCahBLv+NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjSnJaP ZffOCAbpptuex1H9ki7BMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg3O0xXZN2tMyvCamOPQf1xvSx6Fimao4GTqdR+G6mRSk3s2B65Fu6 ypKih9pBCnA41ph8ZqNuc/TXcC0R+fJ2zjCa6+DVB3UWXxop689KTIbVOSMyTuQv XJmcF9TrBKvHtOxO+ftWNkKKuDc5Jmxmo1wWSpkm74qc7sRWl7nZM/9Uozh67eck pm/4u4USIWNomm4Y0Vp+I9lsSx5En1VG5HCl9AWNKGO7sm4OTh7XdI9xo+Pnu1Xp 4rIF+7wKy3e1aghQvIvnOKGogdNWrr8g7X/9QdrWnyqwkii10jHpehFv0iSRIfQl LbcwpAcbyphR1+6vqorMmHWoOgeZ5D5L -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:38 2025 by rpki-client