This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: iSj+wcvadk3Ax00eHVCJcGMAZUWKElJdHDfKYVai1wU= Subject key identifier: 05:58:21:84:F7:8D:7A:F9:D0:32:AF:B6:F1:05:BB:F1:A9:1E:60:51 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 311F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 311A Signing time: Fri 26 Dec 2025 15:18:19 +0000 Manifest this update: Fri 26 Dec 2025 15:18:19 +0000 Manifest next update: Fri 02 Jan 2026 15:18:19 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: YG0jsxGe7v+xqbzuOC72VkBaXPrz7/i76JcqSl0sLao=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: +n1EkVjGqmRIN2F0mYDcDpolX9s17cHIyXg+OPTXZ6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 15:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12575 (0x311f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Dec 26 15:18:19 2025 GMT Not After : Jan 2 15:18:19 2026 GMT Subject: CN=694ea73b-54d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:59:27:11:a5:65:ad:45:4b:19:23:14:c8:07: b0:35:1c:bc:7b:6b:e4:1d:f4:7a:76:49:7e:e4:5f: 39:b8:76:98:81:00:13:fe:f6:06:6f:71:5c:55:92: d6:3c:29:48:d2:e4:6c:ed:c3:66:a7:0e:6e:9c:38: bd:c9:69:3c:62:9b:fb:f7:c2:de:d2:ec:b2:17:6b: d2:26:79:ba:23:93:b9:aa:9c:02:7e:f4:23:7f:0a: b8:f6:29:6a:15:6a:db:84:44:95:fb:b8:6a:df:4a: 5b:0a:4a:7c:7f:23:94:2b:e5:e1:62:08:b1:42:02: dc:39:46:99:f7:99:1c:d1:fc:cd:ec:6a:fe:56:fb: 92:16:65:6e:40:be:ee:d3:2c:23:83:97:2d:24:c5: 04:aa:70:66:91:6a:a3:9f:f0:4e:39:6f:15:37:fd: ec:75:c7:2e:37:bb:c6:8f:c0:8f:10:2d:92:9a:94: 63:8d:64:4b:c7:bc:3f:60:84:f6:16:34:74:a9:07: 20:ec:b0:7f:8d:11:06:ef:82:62:fe:81:2c:63:a7: e3:ea:4d:a5:1b:b4:4c:be:eb:64:22:a4:66:95:f1: b3:c8:17:a5:ab:de:73:f3:23:17:89:e2:aa:2e:24: 56:d0:1d:f9:db:e8:4e:72:06:f6:d6:7a:ca:07:84: 11:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:58:21:84:F7:8D:7A:F9:D0:32:AF:B6:F1:05:BB:F1:A9:1E:60:51 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c0:dc:26:39:ec:ff:ab:1d:4d:a9:f2:79:d3:47:4b:87:b4: 21:2c:9b:fd:8d:1c:e1:83:f9:2b:7a:7f:f9:cf:3f:5f:84:57: ae:0d:be:af:45:19:f3:3f:56:3e:83:1d:40:a7:57:a6:78:ca: 61:8b:de:d2:b2:2d:81:f7:fd:a0:3e:9c:dd:c5:a2:87:d1:c0: 90:88:3a:10:9f:2f:4f:15:7e:92:09:a7:b9:37:2e:1f:27:31: 58:7f:28:50:c9:34:a9:41:cd:a2:96:42:08:ed:7d:dd:e2:e6: 50:3d:dd:71:19:c8:b0:d3:b2:8f:4d:86:a5:69:7a:ae:60:9a: 48:73:25:6a:d2:be:6a:19:a0:ce:b0:85:c6:d2:9e:f8:3d:7b: 2e:57:6b:ee:34:b6:fc:a8:77:42:cd:46:b0:24:3c:90:72:cb: 0d:d3:36:46:a3:28:57:86:68:f7:ae:35:39:13:8f:eb:ba:3f: 7b:d6:ea:82:37:46:79:31:f7:1f:5c:2f:31:62:a0:6f:82:e7: 71:08:39:33:8b:19:26:ed:82:33:ce:37:0d:ef:39:ae:7f:70: 9a:42:46:e8:2a:7b:33:d4:7e:5f:98:2f:fd:9c:b2:33:b0:fe: f2:76:03:fd:3e:7e:2c:94:f1:b9:dd:a1:85:35:9a:35:6a:06: 71:5a:5c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUxMjI2MTUxODE5WhcNMjYwMTAyMTUxODE5WjAYMRYwFAYD VQQDDA02OTRlYTczYi01NGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1knEaVlrUVLGSMUyAewNRy8e2vkHfR6dkl+5F85uHaYgQAT/vYGb3FcVZLW PClI0uRs7cNmpw5unDi9yWk8Ypv798Le0uyyF2vSJnm6I5O5qpwCfvQjfwq49ilq FWrbhESV+7hq30pbCkp8fyOUK+XhYgixQgLcOUaZ95kc0fzN7Gr+VvuSFmVuQL7u 0ywjg5ctJMUEqnBmkWqjn/BOOW8VN/3sdccuN7vGj8CPEC2SmpRjjWRLx7w/YIT2 FjR0qQcg7LB/jREG74Ji/oEsY6fj6k2lG7RMvutkIqRmlfGzyBelq95z8yMXieKq LiRW0B352+hOcgb21nrKB4QRFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVYIYT3 jXr50DKvtvEFu/GpHmBRMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhwNwmOez/qx1NqfJ500dLh7QhLJv9jRzhg/kren/5zz9fhFeuDb6v RRnzP1Y+gx1Ap1emeMphi97Ssi2B9/2gPpzdxaKH0cCQiDoQny9PFX6SCae5Ny4f JzFYfyhQyTSpQc2ilkII7X3d4uZQPd1xGciw07KPTYalaXquYJpIcyVq0r5qGaDO sIXG0p74PXsuV2vuNLb8qHdCzUawJDyQcssN0zZGoyhXhmj3rjU5E4/ruj971uqC N0Z5MfcfXC8xYqBvgudxCDkzixkm7YIzzjcN7zmuf3CaQkboKnsz1H5fmC/9nLIz sP7ydgP9Pn4slPG53aGFNZo1agZxWlwy -----END CERTIFICATE-----Generated at Sat Dec 27 04:10:39 2025 by rpki-client