This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft File: GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft (raw, json) Hash identifier: +hB9mvUx5iJMQOvgMKGCke4xEeQ48ch1sZqktQMgkoM= Subject key identifier: D2:1D:B6:6D:9B:64:C8:41:CA:F2:90:01:A1:FE:14:DA:A4:71:56:28 Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft Manifest number: 28 Signing time: Tue 23 Dec 2025 06:35:37 +0000 Manifest this update: Tue 23 Dec 2025 06:35:36 +0000 Manifest next update: Tue 30 Dec 2025 06:35:36 +0000 Files and hashes: 1: GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl (hash: oJqX2MXrQzyOPSzLueUAZMUR4rMmEuS6qHl5yIcgv2k=) 2: 6D5A36FCB2FB11F0861C2754C4F9AE02.roa (hash: OEUGMrYO6pAbSO+UePFCHSKCBYTSreP7y03ptjqbGzQ=) 3: CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa (hash: k70gEb/vQZKVsEmAPsgRGzBkI7JP9upXlyJ2H32aUps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Validity Not Before: Dec 23 06:35:36 2025 GMT Not After : Dec 30 06:35:36 2025 GMT Subject: CN=694a3838-46c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cd:eb:15:51:ca:ae:ab:97:52:b2:1b:7a:ac: 64:68:7d:19:29:70:80:1c:f8:b8:98:f3:e9:db:d3: 0c:0e:3c:d3:07:11:e7:99:37:57:3d:48:11:9b:a7: 53:f2:bf:29:31:82:fc:8d:23:9e:82:51:49:f1:3f: db:25:3d:68:50:98:e7:76:dc:2d:98:01:76:5b:69: 6a:2a:77:fe:4a:d0:93:7f:1a:35:94:5e:7f:1e:9f: dd:9c:d5:95:cc:ba:c7:28:05:60:44:14:61:12:13: 0d:b5:52:2c:d0:02:ce:16:98:bc:5f:82:05:89:6d: 61:51:5d:75:05:82:7d:56:ea:0b:59:b7:17:05:dc: f7:aa:e1:95:86:c3:30:47:df:8d:5d:b7:b3:0e:e0: cc:b6:32:66:53:51:32:de:1b:35:f0:ce:2e:dc:10: 80:be:30:bd:9b:df:8e:9b:d0:2d:e3:13:66:96:04: ae:7f:99:ba:0b:63:7f:bd:b7:b7:a2:fc:5d:13:40: e0:2b:4b:20:f0:e0:d5:4b:93:a1:4b:ee:56:23:98: 78:0a:6e:67:b3:7d:a6:65:d0:b9:cc:3c:33:d3:ce: 75:ec:85:6b:bf:dc:3c:6e:58:23:92:6a:49:6d:14: b5:de:90:a0:b0:2d:df:8c:0b:2c:cb:de:14:16:74: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1D:B6:6D:9B:64:C8:41:CA:F2:90:01:A1:FE:14:DA:A4:71:56:28 X509v3 Authority Key Identifier: keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1b:1c:33:72:51:18:4f:68:ce:44:76:8c:44:22:bd:48:cd: 62:0d:73:e8:b8:68:e3:05:13:8f:f5:6c:a4:0a:b9:ae:20:c2: 16:43:f2:c5:e1:ae:98:65:ff:b3:ad:fd:d5:2c:04:0e:4a:24: 9d:a0:a3:7a:2a:3a:38:6e:ec:23:5c:17:e9:d7:d2:eb:1d:f0: 62:0b:17:48:22:59:e8:a1:5f:90:0a:66:d8:3b:70:1f:b8:21: 55:ee:8b:6e:18:c8:02:fb:83:a8:8a:bf:13:19:f2:63:15:a8: c3:80:8e:b9:ff:45:56:5a:3e:1c:02:53:3c:a2:30:41:f9:53: 58:35:9f:d4:1d:4e:2c:a5:1e:49:62:22:3e:62:06:ba:12:f8: 94:ad:dc:65:3f:f6:8d:fc:4d:18:f8:59:65:cb:8f:1b:03:50: 63:5e:73:fb:b2:85:54:31:26:f2:90:48:83:9c:4b:18:09:e1: 51:d4:e6:64:aa:12:e5:ca:3b:1a:90:c2:5e:e2:31:26:0e:5f: 7f:c2:73:7f:69:a1:4f:33:af:89:df:81:06:80:ca:d9:b3:85: e7:7b:e4:e6:f4:49:08:53:61:23:e9:64:d2:a3:86:a1:96:7a: 40:c9:47:a4:cc:9e:69:41:2a:24:92:dc:a1:6c:0d:54:23:8f: 52:21:61:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDY1NjExMC8GA1UEBRMoMTlFMDVBRkQxRTZCMzYyNTRBNUNCMTUwMzYzOTM4NEI2 QTIyQTgyNjAeFw0yNTEyMjMwNjM1MzZaFw0yNTEyMzAwNjM1MzZaMBgxFjAUBgNV BAMMDTY5NGEzODM4LTQ2YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqzesVUcquq5dSsht6rGRofRkpcIAc+LiY8+nb0wwOPNMHEeeZN1c9SBGbp1Py vykxgvyNI56CUUnxP9slPWhQmOd23C2YAXZbaWoqd/5K0JN/GjWUXn8en92c1ZXM uscoBWBEFGESEw21UizQAs4WmLxfggWJbWFRXXUFgn1W6gtZtxcF3Peq4ZWGwzBH 341dt7MO4My2MmZTUTLeGzXwzi7cEIC+ML2b346b0C3jE2aWBK5/mboLY3+9t7ei /F0TQOArSyDw4NVLk6FL7lYjmHgKbmezfaZl0LnMPDPTznXshWu/3DxuWCOSaklt FLXekKCwLd+MCyzL3hQWdK/lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0h22bZtk yEHK8pABof4U2qRxVigwHwYDVR0jBBgwFoAUGeBa/R5rNiVKXLFQNjk4S2oiqCYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwNjU2LzRBNzA5NTY0QjAw RDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlWS1hMRlFOams0UzJvaXFD WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2VCYV9SNXJOaVZLWExGUU5qazRTMm9pcUNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw NjU2LzRBNzA5NTY0QjAwRDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlW S1hMRlFOams0UzJvaXFDWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJIbHDNyURhPaM5EdoxEIr1IzWINc+i4aOMFE4/1bKQKua4gwhZD8sXh rphl/7Ot/dUsBA5KJJ2go3oqOjhu7CNcF+nX0usd8GILF0giWeihX5AKZtg7cB+4 IVXui24YyAL7g6iKvxMZ8mMVqMOAjrn/RVZaPhwCUzyiMEH5U1g1n9QdTiylHkli Ij5iBroS+JSt3GU/9o38TRj4WWXLjxsDUGNec/uyhVQxJvKQSIOcSxgJ4VHU5mSq EuXKOxqQwl7iMSYOX3/Cc39poU8zr4nfgQaAytmzhed75Ob0SQhTYSPpZNKjhqGW ekDJR6TMnmlBKiSS3KFsDVQjj1IhYVE= -----END CERTIFICATE-----Generated at Thu Dec 25 00:56:07 2025 by rpki-client