This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: iPiltjH16Qwvpisf5Sa4SQosl2LgQ2XTL0p4tSr8OJw= Subject key identifier: DD:39:9F:6F:DB:47:F8:EA:BE:B2:23:79:5B:0D:9D:DD:65:7E:C7:7E Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 01DE Signing time: Fri 19 Dec 2025 01:58:02 +0000 Manifest this update: Fri 19 Dec 2025 01:58:01 +0000 Manifest next update: Fri 26 Dec 2025 01:58:01 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: DREgMmrnZO06WzCc0ArRNA9ptrFswWF/j8ZZ7f2tY8o=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: EKpqTE+DSQzuWA1tMtvhbBcjl08oPjSJOPcC2uEjTi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Dec 19 01:58:01 2025 GMT Not After : Dec 26 01:58:01 2025 GMT Subject: CN=6944b129-6c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:42:38:2d:60:2f:ca:6e:7e:d3:0b:a1:5b:17: 5d:4d:13:0c:bf:a1:ac:39:d9:91:68:e0:b7:8a:b5: 12:0f:6e:64:cf:90:6a:36:a4:51:7e:df:6f:c7:a8: a1:a9:9f:e5:09:80:d1:1b:88:c7:5f:9b:c5:98:76: 5f:e7:bf:ee:af:f9:c4:77:85:e0:e3:b2:8b:17:ea: 57:3f:a0:bc:fc:2a:ea:f4:64:65:6b:93:6e:1a:3a: c9:0a:83:d1:77:96:9c:e6:0c:55:d4:40:9b:21:8e: f2:64:ea:b5:4b:ee:c3:41:1e:ad:e7:87:25:f8:ea: 5c:af:e2:a1:77:5f:28:92:b1:2e:b7:e3:f7:a3:44: 0e:78:df:29:51:f6:d5:1a:4b:33:87:83:3f:f3:c2: e7:33:52:40:05:3d:69:aa:dc:3b:69:b7:59:66:78: d6:9b:08:28:2c:ac:fa:e3:2e:23:6d:99:d9:6e:f1: 02:82:41:dc:b7:1b:69:4a:13:fa:50:0f:3c:4b:1b: f5:45:9c:a7:41:40:d6:b3:f4:43:5f:0a:ea:b3:c5: 7c:f8:af:9b:7d:3c:2f:10:ee:6a:d0:7d:f5:c7:6e: 60:fa:b0:54:ce:dd:ea:0f:71:8c:24:d9:f0:8e:ba: 24:23:26:31:32:48:fc:56:36:f9:10:9b:ea:88:c2: eb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:39:9F:6F:DB:47:F8:EA:BE:B2:23:79:5B:0D:9D:DD:65:7E:C7:7E X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d2:e7:32:96:8d:f1:90:d2:cd:97:1c:aa:68:dc:01:1a:4b: 48:c2:a6:4c:74:f2:82:7a:03:ec:6e:fc:7d:c9:72:ce:20:b6: 37:ce:9c:85:e5:b4:d7:ee:4e:74:0c:46:94:4e:55:35:0a:9c: 7f:7f:15:22:99:f1:30:a3:dc:5e:32:27:91:75:c7:38:2e:e3: 97:be:d4:17:11:c1:a4:e3:c8:02:81:d4:1d:42:2e:82:3f:84: e4:00:2b:a5:8b:ee:cb:be:ae:78:5c:39:35:c3:19:2c:26:5c: 81:35:69:c1:19:ae:95:1c:fb:93:1f:1f:e5:d3:3e:f0:31:9d: dc:8a:66:c8:41:c7:bc:fd:e8:71:f7:b7:35:6a:06:74:68:db: 6d:3a:67:19:cb:1e:49:60:bc:cb:f9:95:74:79:46:48:64:b4: 3c:8f:41:9f:e5:01:ee:00:ad:1d:fc:ac:d1:6c:be:ab:f8:7d: b7:89:57:48:dc:e8:6b:f6:df:da:ec:08:00:fa:53:c9:f6:18: 4d:42:07:7b:d4:72:10:bd:96:18:56:b2:7f:92:84:d4:4d:72: 62:3d:7d:02:01:5d:cb:5e:2f:ff:d9:48:ce:0c:47:61:89:a9: 51:4e:dd:f2:ec:d9:7d:05:49:f8:85:b1:2c:fc:82:8b:e7:83: 4b:d0:b5:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUxMjE5MDE1ODAxWhcNMjUxMjI2MDE1ODAxWjAYMRYwFAYD VQQDDA02OTQ0YjEyOS02YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEI4LWAvym5+0wuhWxddTRMMv6GsOdmRaOC3irUSD25kz5BqNqRRft9vx6ih qZ/lCYDRG4jHX5vFmHZf57/ur/nEd4Xg47KLF+pXP6C8/Crq9GRla5NuGjrJCoPR d5ac5gxV1ECbIY7yZOq1S+7DQR6t54cl+Opcr+Khd18okrEut+P3o0QOeN8pUfbV Gkszh4M/88LnM1JABT1pqtw7abdZZnjWmwgoLKz64y4jbZnZbvECgkHctxtpShP6 UA88Sxv1RZynQUDWs/RDXwrqs8V8+K+bfTwvEO5q0H31x25g+rBUzt3qD3GMJNnw jrokIyYxMkj8Vjb5EJvqiMLrswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN05n2/b R/jqvrIjeVsNnd1lfsd+MB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl0ucylo3xkNLNlxyqaNwBGktIwqZMdPKCegPsbvx9yXLOILY3zpyF 5bTX7k50DEaUTlU1Cpx/fxUimfEwo9xeMieRdcc4LuOXvtQXEcGk48gCgdQdQi6C P4TkACuli+7Lvq54XDk1wxksJlyBNWnBGa6VHPuTHx/l0z7wMZ3cimbIQce8/ehx 97c1agZ0aNttOmcZyx5JYLzL+ZV0eUZIZLQ8j0Gf5QHuAK0d/KzRbL6r+H23iVdI 3Ohr9t/a7AgA+lPJ9hhNQgd71HIQvZYYVrJ/koTUTXJiPX0CAV3LXi//2UjODEdh ialRTt3y7Nl9BUn4hbEs/IKL54NL0LWH -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:51 2025 by rpki-client