This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft File: GSl33aoJW0B37g12I4Rj8bb0Cu4.mft (raw, json) Hash identifier: 1fjFVKsh167yWZm/MXrlEQYrAAlsz4qFtUbAaFEX00Y= Subject key identifier: B5:4A:50:02:02:C5:D3:3E:1D:3F:48:81:9C:FF:68:45:EA:45:F2:E1 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 0425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft Manifest number: 041B Signing time: Sat 20 Dec 2025 23:37:24 +0000 Manifest this update: Sat 20 Dec 2025 23:37:23 +0000 Manifest next update: Sat 27 Dec 2025 23:37:23 +0000 Files and hashes: 1: GSl33aoJW0B37g12I4Rj8bb0Cu4.crl (hash: q1CfL4gBbXJQq/PxYpyRVmhmDlvTnr7o2WkrHA3i1ic=) 2: AFDE92321F5A11F0BA7E6961C4F9AE02.roa (hash: S2zfaKcticTwAxwJXdMxgXbdbp4SN51y6QSWO83OIuc=) 3: 9FC8CE38936E11EC92AF8421C4F9AE02.roa (hash: uVo2rPhsS7W1KbzxX340wlAGRoyErXUypsSK5B5R8HQ=) 4: AEFCCA501F5A11F0BA7E6961C4F9AE02.roa (hash: oAqMSF81/AVYaU8nGd+cBMsrnw20XyD/T/zdIoEB4NE=) 5: 2B46EF64951211F0A6C6AF5AC4F9AE02.roa (hash: CZf1VlKoEaqshjSK2lnVUILrCRzYZXt31OkqsPRaGqc=) 6: AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa (hash: 7DU3GXxB2biRDfFfxqVKJQEvwzXZf1dP2MF5wRULxe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Dec 20 23:37:23 2025 GMT Not After : Dec 27 23:37:23 2025 GMT Subject: CN=69473334-5c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0a:7f:1c:11:4a:51:c6:c6:40:17:a3:e1:b2: 05:23:59:e0:db:84:5e:22:b0:07:6c:2d:7f:36:2e: a1:42:09:4f:24:53:ba:5e:06:76:80:e4:1f:31:9e: de:4d:aa:9a:41:70:07:2d:a5:1d:9e:27:ed:d0:46: e1:3f:12:24:aa:09:43:4e:d7:78:50:48:4f:8d:aa: 3a:fe:96:6e:a1:fc:99:e6:99:98:a8:5e:98:94:69: f3:dc:0c:0e:e4:f7:9e:fd:4b:7b:d1:36:0a:bb:da: aa:1e:11:c9:4c:82:f5:59:21:91:50:c9:18:2d:03: 6f:d3:5f:c2:6e:15:c8:cc:be:2c:d9:79:40:b1:64: e0:08:18:b4:45:15:91:58:ec:01:ac:53:9a:9d:a1: e0:4b:b9:d9:f0:53:e8:a7:c2:0e:2d:07:74:c4:a1: 16:19:13:22:20:46:87:21:54:90:7d:50:3d:b2:f1: b5:c6:4e:d4:5e:2f:7e:ef:1c:1e:1e:55:69:b2:3a: 0c:e5:70:f7:47:4f:91:93:63:7e:38:b9:60:94:61: 08:2e:63:ff:e7:be:de:6a:12:29:ff:d9:ab:62:d2: 6d:44:0c:89:d8:38:04:bc:66:d5:3c:ed:21:26:4e: f4:53:81:d3:d1:3a:78:10:31:cb:91:1c:19:6e:94: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4A:50:02:02:C5:D3:3E:1D:3F:48:81:9C:FF:68:45:EA:45:F2:E1 X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:66:fe:0b:df:dc:80:5a:39:5b:ce:8e:1a:c3:ff:76:f9:22: df:85:2d:cf:93:26:0a:be:ec:81:9d:f7:d4:51:43:24:dc:bc: 6c:2b:9d:ee:8b:f1:ea:0b:21:bd:21:e5:af:91:d1:18:3e:29: ca:29:6d:e3:a9:f7:06:b5:ee:ea:b0:9c:71:3c:73:70:1e:79: e1:11:f0:c8:c3:85:a3:38:94:a4:37:83:8a:5d:3a:f4:c9:58: 91:62:e4:68:0f:1c:4a:b0:2e:31:ad:0c:c0:fe:e0:f3:2a:3f: be:a7:49:da:12:2e:5c:f9:2c:d5:4f:9f:78:ee:e6:dd:3a:bd: 96:ee:9f:c8:a1:f9:7d:78:d7:56:ff:07:c3:13:1f:53:20:5e: 1c:9f:e4:df:23:ba:a5:8e:07:87:03:11:4b:ef:57:b8:ea:de: 8c:92:01:39:a9:55:62:23:80:b0:df:6e:b1:7a:30:89:a7:e8: e3:79:51:12:29:22:27:b2:1f:70:d2:79:2c:82:99:ff:3d:db: 87:0c:ed:1a:e0:f1:da:a3:d2:0c:54:59:d8:cd:6a:4b:af:cd: c2:b5:24:9a:9a:20:ff:de:4d:23:7b:5d:e3:91:7e:d8:71:81: d2:ab:4e:95:92:1c:25:5b:03:82:d5:42:af:6c:2f:3b:55:27: 19:e0:23:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUxMjIwMjMzNzIzWhcNMjUxMjI3MjMzNzIzWjAYMRYwFAYD VQQDDA02OTQ3MzMzNC01YzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgp/HBFKUcbGQBej4bIFI1ng24ReIrAHbC1/Ni6hQglPJFO6XgZ2gOQfMZ7e TaqaQXAHLaUdnift0EbhPxIkqglDTtd4UEhPjao6/pZuofyZ5pmYqF6YlGnz3AwO 5Pee/Ut70TYKu9qqHhHJTIL1WSGRUMkYLQNv01/CbhXIzL4s2XlAsWTgCBi0RRWR WOwBrFOanaHgS7nZ8FPop8IOLQd0xKEWGRMiIEaHIVSQfVA9svG1xk7UXi9+7xwe HlVpsjoM5XD3R0+Rk2N+OLlglGEILmP/577eahIp/9mrYtJtRAyJ2DgEvGbVPO0h Jk70U4HT0Tp4EDHLkRwZbpTafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVKUAIC xdM+HT9IgZz/aEXqRfLhMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NThDOS80MEUwQzBFRTkzNkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcw QjM3ZzEySTRSajhiYjBDdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGZv4L39yAWjlbzo4aw/92+SLfhS3PkyYKvuyBnffUUUMk3LxsK53u i/HqCyG9IeWvkdEYPinKKW3jqfcGte7qsJxxPHNwHnnhEfDIw4WjOJSkN4OKXTr0 yViRYuRoDxxKsC4xrQzA/uDzKj++p0naEi5c+SzVT5947ubdOr2W7p/Iofl9eNdW /wfDEx9TIF4cn+TfI7qljgeHAxFL71e46t6MkgE5qVViI4Cw326xejCJp+jjeVES KSInsh9w0nksgpn/PduHDO0a4PHao9IMVFnYzWpLr83CtSSamiD/3k0je13jkX7Y cYHSq06VkhwlWwOC1UKvbC87VScZ4CMS -----END CERTIFICATE-----Generated at Sun Dec 21 08:18:19 2025 by rpki-client