This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: gxUPiEZiRml4cpS4GgbBAtqTJ/gIgpBDibwDlNF9b5Y= Subject key identifier: 9F:CB:D1:53:67:70:2A:C6:72:9F:DC:9A:F8:38:A4:88:0D:D6:12:CC Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 076B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 285E Signing time: Thu 18 Dec 2025 15:52:01 +0000 Manifest this update: Thu 18 Dec 2025 15:52:00 +0000 Manifest next update: Thu 25 Dec 2025 15:52:00 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: K3K/eqifCRmqIBoGnpns1D+EpzvfH7/uIsoCRwQa2lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: Dec 18 15:52:00 2025 GMT Not After : Dec 25 15:52:00 2025 GMT Subject: CN=69442321-cd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:61:77:75:9d:d9:16:ad:77:c5:31:49:bd: 36:66:a9:f1:84:c3:15:6d:04:27:24:24:a5:8a:b2: dd:e3:17:ea:47:e4:1d:e8:c7:2b:f0:bc:42:77:9c: 11:1a:fd:6b:8f:40:d0:b7:0c:74:c7:a1:8a:53:e3: df:81:44:10:69:3d:64:ea:ca:85:09:dc:ab:1e:08: 24:e0:3d:e3:59:a7:27:57:e7:63:2e:41:2a:e9:43: 73:b4:ca:9b:dd:ff:17:3e:bc:84:1b:44:20:ad:98: f7:6f:f3:f5:6a:8f:3d:73:7b:89:e2:05:32:7a:91: 60:02:a0:a1:55:7f:b7:45:2e:29:a2:19:1b:84:97: c7:2e:60:df:cb:24:41:00:92:59:2d:17:e3:e7:8b: be:f5:64:45:76:4a:ba:58:d9:b4:ed:8e:ea:6f:6e: c9:b5:e9:c5:8f:c7:97:ac:0a:56:7c:a4:0a:6e:de: 07:74:5b:c6:ba:34:7b:a8:c3:2c:c7:65:02:28:1b: d4:a8:0a:f6:4e:d2:15:f6:01:09:69:b2:b7:35:81: 7e:7c:dc:78:fb:f4:6d:c0:48:fd:6f:ab:b6:a3:a4: 46:fa:21:77:55:e7:9c:60:91:5c:bb:a5:1d:11:53: 7a:42:2f:40:cd:b9:e9:79:4d:ad:9d:d2:a6:ad:87: 6f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:CB:D1:53:67:70:2A:C6:72:9F:DC:9A:F8:38:A4:88:0D:D6:12:CC X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:36:ed:7c:3e:68:b5:06:b0:05:30:db:44:48:06:e9:d8:bb: 24:c6:2b:8a:0c:d7:80:f6:e6:d3:0e:6b:00:ca:ca:8a:af:aa: de:6b:4d:f3:05:e9:27:15:e3:92:6f:8d:b8:7b:be:0c:9f:15: 37:d1:51:98:c0:c7:18:fb:7e:2f:5b:b5:16:a6:8c:0a:dc:20: 4e:35:6c:ed:66:7b:95:b5:79:b8:e2:e1:83:42:a2:cb:ac:65: 8a:b5:26:73:a6:b4:dd:93:56:3f:2a:c8:71:77:56:ba:85:de: a4:51:33:47:86:11:13:cc:26:6c:f4:6c:47:54:89:10:e9:60: 78:e2:e9:cc:39:b6:2f:b9:dc:ce:54:de:10:c8:82:d8:dc:d8: 1c:72:78:5f:3a:23:5e:10:3c:c7:5c:8d:e7:bc:d2:6c:2e:22: 6a:17:cd:e0:e4:d9:98:7c:57:8b:9b:a1:f4:d3:3a:5a:af:9f: 6e:d0:40:5b:35:ca:7a:fc:0b:8c:a4:2e:0e:0c:88:be:00:57: 87:14:04:c6:dd:23:18:1c:df:bf:09:0c:a6:fa:32:4d:8c:b3: fb:f6:ad:3f:d2:bc:4c:99:31:8f:d6:dc:ae:41:4a:be:28:ce: 60:30:39:be:c8:f9:e9:29:27:2f:e2:eb:1d:7a:16:01:a3:12: e8:b1:37:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjUxMjE4MTU1MjAwWhcNMjUxMjI1MTU1MjAwWjAYMRYwFAYD VQQDDA02OTQ0MjMyMS1jZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/9hd3Wd2Ratd8UxSb02ZqnxhMMVbQQnJCSlirLd4xfqR+Qd6Mcr8LxCd5wR Gv1rj0DQtwx0x6GKU+PfgUQQaT1k6sqFCdyrHggk4D3jWacnV+djLkEq6UNztMqb 3f8XPryEG0QgrZj3b/P1ao89c3uJ4gUyepFgAqChVX+3RS4pohkbhJfHLmDfyyRB AJJZLRfj54u+9WRFdkq6WNm07Y7qb27JtenFj8eXrApWfKQKbt4HdFvGujR7qMMs x2UCKBvUqAr2TtIV9gEJabK3NYF+fNx4+/RtwEj9b6u2o6RG+iF3VeecYJFcu6Ud EVN6Qi9AzbnpeU2tndKmrYdvZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/L0VNn cCrGcp/cmvg4pIgN1hLMMB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUNu18Pmi1BrAFMNtESAbp2LskxiuKDNeA9ubTDmsAysqKr6rea03z BeknFeOSb424e74MnxU30VGYwMcY+34vW7UWpowK3CBONWztZnuVtXm44uGDQqLL rGWKtSZzprTdk1Y/Kshxd1a6hd6kUTNHhhETzCZs9GxHVIkQ6WB44unMObYvudzO VN4QyILY3NgccnhfOiNeEDzHXI3nvNJsLiJqF83g5NmYfFeLm6H00zpar59u0EBb Ncp6/AuMpC4ODIi+AFeHFATG3SMYHN+/CQym+jJNjLP79q0/0rxMmTGP1tyuQUq+ KM5gMDm+yPnpKScv4usdehYBoxLosTc1 -----END CERTIFICATE-----Generated at Fri Dec 19 23:53:22 2025 by rpki-client