This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: oR3FeUEdI8fUN8KWNu1oTW41syhkGsN4VifCfqugCCk= Subject key identifier: E0:C6:BB:F8:FC:5B:8E:D0:1F:7C:14:CA:D4:3E:F6:94:4C:62:44:B6 Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: A5 Signing time: Fri 19 Dec 2025 05:19:52 +0000 Manifest this update: Fri 19 Dec 2025 05:19:51 +0000 Manifest next update: Fri 26 Dec 2025 05:19:51 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: MCFltL0P3wQViresLfYmtOh6FXW3V5OAPseJPgn2a6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Dec 19 05:19:51 2025 GMT Not After : Dec 26 05:19:51 2025 GMT Subject: CN=6944e078-b031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:44:01:1a:0b:b2:8d:c2:5b:c2:ab:97:d3:f2: d5:f2:ca:02:cd:39:88:c9:2e:67:46:03:87:9b:40: 9b:65:f7:f9:bc:f8:59:45:5f:d4:18:1e:ea:da:e4: 29:10:a0:e2:23:36:12:ab:96:73:36:41:0a:0a:78: c2:45:15:f4:06:27:31:38:61:8b:d2:43:55:7a:4b: 1e:91:33:09:8e:a3:5b:3a:b1:cf:69:6a:2c:fd:98: 44:3f:1f:a5:ad:1f:23:12:7e:fb:ca:2b:23:5e:fe: eb:7a:3f:d8:d6:aa:1d:3e:df:13:64:8f:5f:d8:51: 88:21:3e:93:d4:8e:bc:76:4a:a6:02:19:49:44:47: f8:6e:2b:7e:df:8c:9a:17:b1:1d:51:79:a8:66:02: 3b:f3:b2:c8:8e:02:87:5d:c2:b4:fd:fe:eb:39:8b: 68:a9:c9:a2:51:a6:3b:e6:6c:45:95:a0:4f:02:05: a8:59:1a:25:3d:46:24:38:07:f8:7a:0f:df:48:08: 04:8f:2a:f1:e5:4e:c1:47:a2:56:4c:c0:05:7b:4e: 9f:53:9e:c7:71:3e:3e:b4:f3:53:69:af:60:1e:93: 10:aa:88:f7:c2:c7:df:a9:5f:83:32:98:15:6f:2b: d6:52:d8:da:25:29:e3:3c:18:87:2a:ed:ed:cc:a3: 2d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C6:BB:F8:FC:5B:8E:D0:1F:7C:14:CA:D4:3E:F6:94:4C:62:44:B6 X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:59:f1:98:92:ca:d8:16:a8:df:f4:72:f0:d6:0d:b9:64:a4: ea:e2:f8:77:e4:8e:74:1b:2e:b9:6c:29:03:e8:7e:ab:b5:63: 6a:8b:48:03:d6:15:d5:77:23:65:7d:56:05:eb:a7:06:3d:b9: 5b:1d:6a:c7:a9:2a:4b:d7:8c:31:c4:dd:4d:de:e4:9e:53:7f: 8b:71:0b:05:3c:9b:48:86:9c:bd:b3:0e:e2:73:dc:4b:d7:c6: 5d:e0:58:13:4b:37:0f:1a:db:40:41:b0:43:f8:29:6f:3a:9c: 16:76:d1:dd:fd:6d:e7:fe:00:38:45:80:e6:7c:5c:a1:49:ea: 37:e1:9a:6a:d2:aa:37:5e:46:1a:b7:f4:bd:7a:12:e8:3a:f1: 6c:90:38:a2:cf:20:69:ba:98:e8:fa:cb:11:62:d7:4a:2f:8c: 6a:14:27:6b:e6:f5:c1:b4:4b:4f:ed:46:7f:16:0d:0b:5a:9a: bb:bf:c5:04:fb:d1:ef:82:eb:3d:6f:11:28:32:d4:b5:1d:52: 29:9b:dc:6a:3e:37:90:03:de:fd:64:a4:9e:e1:f3:b0:d5:5b: 22:4a:36:27:c5:ba:15:de:b9:d5:0d:86:62:45:fc:e4:94:5f: 4e:d3:60:d8:d8:de:a0:b2:4f:22:58:7e:86:4c:b5:02:6c:31: fe:dd:df:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzNTcxMTAvBgNVBAUTKDE4MEEzNTIyRTIwNTBDNUYxRTA4NzM1MzlCMTJENkQy MzEyQTIwMUEwHhcNMjUxMjE5MDUxOTUxWhcNMjUxMjI2MDUxOTUxWjAYMRYwFAYD VQQDDA02OTQ0ZTA3OC1iMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkQBGguyjcJbwquX0/LV8soCzTmIyS5nRgOHm0CbZff5vPhZRV/UGB7q2uQp EKDiIzYSq5ZzNkEKCnjCRRX0BicxOGGL0kNVeksekTMJjqNbOrHPaWos/ZhEPx+l rR8jEn77yisjXv7rej/Y1qodPt8TZI9f2FGIIT6T1I68dkqmAhlJREf4bit+34ya F7EdUXmoZgI787LIjgKHXcK0/f7rOYtoqcmiUaY75mxFlaBPAgWoWRolPUYkOAf4 eg/fSAgEjyrx5U7BR6JWTMAFe06fU57HcT4+tPNTaa9gHpMQqoj3wsffqV+DMpgV byvWUtjaJSnjPBiHKu3tzKMtLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODGu/j8 W47QH3wUytQ+9pRMYkS2MB8GA1UdIwQYMBaAFBgKNSLiBQxfHghzU5sS1tIxKiAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODM1Ny8xREE1Q0M1NkRG OEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRGOGVDSE5UbXhMVzBqRXFJ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODM1Ny8xREE1Q0M1NkRGOEExMUVGODc0NzJCNzRDNEY5QUUwMi9HQW8xSXVJRkRG OGVDSE5UbXhMVzBqRXFJQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHWfGYksrYFqjf9HLw1g25ZKTq4vh35I50Gy65bCkD6H6rtWNqi0gD 1hXVdyNlfVYF66cGPblbHWrHqSpL14wxxN1N3uSeU3+LcQsFPJtIhpy9sw7ic9xL 18Zd4FgTSzcPGttAQbBD+ClvOpwWdtHd/W3n/gA4RYDmfFyhSeo34Zpq0qo3XkYa t/S9ehLoOvFskDiizyBpupjo+ssRYtdKL4xqFCdr5vXBtEtP7UZ/Fg0LWpq7v8UE +9Hvgus9bxEoMtS1HVIpm9xqPjeQA979ZKSe4fOw1VsiSjYnxboV3rnVDYZiRfzk lF9O02DY2N6gsk8iWH6GTLUCbDH+3d+u -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:12 2025 by rpki-client