This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: mKpDkhbHHVahKx6OVmM2rjS6A5L+WszkqqRGpBaTskA= Subject key identifier: B8:5B:9D:61:EA:48:60:F8:4C:01:BF:FF:9D:FE:C2:26:7F:D6:93:CB Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 311B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 3116 Signing time: Thu 18 Dec 2025 15:23:30 +0000 Manifest this update: Thu 18 Dec 2025 15:23:30 +0000 Manifest next update: Thu 25 Dec 2025 15:23:30 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: lyH4GOlqCynRkgqbISPl85heM7R4/D7fKjvxP676ue8=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: +n1EkVjGqmRIN2F0mYDcDpolX9s17cHIyXg+OPTXZ6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12571 (0x311b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Dec 18 15:23:30 2025 GMT Not After : Dec 25 15:23:30 2025 GMT Subject: CN=69441c72-b239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:e4:6d:e2:81:66:90:2e:3a:6a:51:f1:5c: d8:6c:5f:f0:9a:a4:22:db:33:db:80:ea:b8:05:f7: 9c:b2:41:75:6a:b1:ff:73:49:f6:ca:3b:8b:f9:b8: b7:f4:24:2a:1a:4b:9a:0a:1d:5c:4f:1c:54:b6:7d: 4c:4e:95:ce:24:54:0a:19:80:ec:cf:fa:94:e0:2d: 60:90:1c:60:bf:62:e3:52:42:88:58:a5:42:d7:1e: cf:ba:b3:5b:fd:0d:94:e4:4e:65:d6:23:e3:49:6a: 5a:7b:02:34:8b:1e:40:6a:23:94:7a:fb:0d:b4:1a: 18:ad:83:25:a0:7d:32:29:12:0a:86:60:26:96:dc: a4:1f:1b:3e:12:29:ae:5f:57:95:56:2d:fe:6b:fc: 53:59:78:ea:b5:ce:e7:c2:6e:0e:98:b1:fa:dd:a3: a4:63:43:9b:b0:b0:01:f8:e1:ee:b0:71:b1:c5:34: 94:21:de:73:4c:b3:7d:06:cb:d5:dd:7a:52:63:de: c1:2b:40:b6:5f:e9:e7:0b:66:48:b3:65:df:95:19: 0c:ee:2f:69:8f:7f:8f:b6:a7:79:1e:2e:36:2c:6d: 37:e6:e6:f7:3f:fd:21:8f:b8:8c:04:01:75:d3:1c: eb:b4:a5:28:11:79:47:df:21:f9:28:13:0d:d8:ad: 3c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5B:9D:61:EA:48:60:F8:4C:01:BF:FF:9D:FE:C2:26:7F:D6:93:CB X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b6:82:37:96:dd:41:4a:d3:c4:73:25:85:5a:60:6b:ac:df: 40:c1:4b:c5:b3:56:69:79:c6:82:97:7e:31:bd:cb:81:c3:5a: a3:4a:d3:c3:18:a1:2b:26:12:49:48:c7:fc:69:53:10:43:64: be:47:32:c4:05:2c:f3:34:e3:bc:86:6b:5c:de:25:c7:ed:60: a5:ae:7a:40:bf:df:8d:6a:fc:56:af:bf:f8:52:bd:31:fa:69: 54:b5:ec:cc:40:f9:92:09:6d:23:28:6d:d8:ac:79:d8:21:6a: f2:30:53:bb:c1:b8:49:f5:b7:c4:54:a0:e0:59:b1:4b:14:b4: e7:7a:50:e4:f2:b0:53:03:94:a1:97:31:bf:43:aa:7d:6a:75: a5:75:46:64:0a:f3:e0:cf:7d:40:4a:1e:e8:ea:5f:ee:30:34: 9a:31:0d:e3:19:36:96:42:d0:55:da:89:0a:4d:3c:be:99:79: 4f:47:af:1e:47:aa:73:df:ae:fa:1a:03:40:2f:25:9f:b3:91: 95:8a:73:af:30:fb:f5:98:ec:94:de:fd:ca:8f:bd:54:2f:d6: 13:d1:92:fa:39:57:4d:1d:29:50:4a:e6:33:aa:f7:5a:8c:35: 84:48:c9:e2:c1:2a:43:54:b4:f6:e7:6d:3a:4e:cb:3d:9a:f1: 3f:d9:57:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUxMjE4MTUyMzMwWhcNMjUxMjI1MTUyMzMwWjAYMRYwFAYD VQQDDA02OTQ0MWM3Mi1iMjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLzkbeKBZpAuOmpR8VzYbF/wmqQi2zPbgOq4BfecskF1arH/c0n2yjuL+bi3 9CQqGkuaCh1cTxxUtn1MTpXOJFQKGYDsz/qU4C1gkBxgv2LjUkKIWKVC1x7PurNb /Q2U5E5l1iPjSWpaewI0ix5AaiOUevsNtBoYrYMloH0yKRIKhmAmltykHxs+Eimu X1eVVi3+a/xTWXjqtc7nwm4OmLH63aOkY0ObsLAB+OHusHGxxTSUId5zTLN9BsvV 3XpSY97BK0C2X+nnC2ZIs2XflRkM7i9pj3+Ptqd5Hi42LG035ub3P/0hj7iMBAF1 0xzrtKUoEXlH3yH5KBMN2K08FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhbnWHq SGD4TAG//53+wiZ/1pPLMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7toI3lt1BStPEcyWFWmBrrN9AwUvFs1ZpecaCl34xvcuBw1qjStPD GKErJhJJSMf8aVMQQ2S+RzLEBSzzNOO8hmtc3iXH7WClrnpAv9+NavxWr7/4Ur0x +mlUtezMQPmSCW0jKG3YrHnYIWryMFO7wbhJ9bfEVKDgWbFLFLTnelDk8rBTA5Sh lzG/Q6p9anWldUZkCvPgz31ASh7o6l/uMDSaMQ3jGTaWQtBV2okKTTy+mXlPR68e R6pz3676GgNALyWfs5GVinOvMPv1mOyU3v3Kj71UL9YT0ZL6OVdNHSlQSuYzqvda jDWESMniwSpDVLT25206Tss9mvE/2VeZ -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:11 2025 by rpki-client