This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: hX258MJI5lYyqkSaiCZHj9dl3jByGNsaykijQgeEAJQ= Subject key identifier: E8:97:CD:30:94:6A:F3:9B:DD:87:60:37:59:D2:F8:4B:70:F6:DF:FB Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: E3 Signing time: Tue 23 Dec 2025 04:27:42 +0000 Manifest this update: Tue 23 Dec 2025 04:27:42 +0000 Manifest next update: Tue 30 Dec 2025 04:27:42 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: Xgoz3IonaoJd3w8ybjkAzWG9AQz80oGAAF+l0w08wEQ=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Dec 23 04:27:42 2025 GMT Not After : Dec 30 04:27:42 2025 GMT Subject: CN=694a1a3e-1f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:78:40:d4:9b:6a:02:01:98:76:8e:85:2a:ea: 8f:53:66:b6:17:3b:19:7f:38:a1:3c:b3:9f:4b:36: a3:f4:d5:1e:49:eb:04:17:57:5d:72:e3:76:4f:63: f5:91:e9:4b:64:31:54:14:8c:06:62:bc:d9:78:60: 86:9f:40:d5:05:5c:91:f1:3a:db:3c:01:fa:48:f8: 5a:15:b9:53:6f:23:8b:db:72:35:3a:38:c8:b1:2f: 31:35:62:3e:47:22:61:76:fa:89:97:ba:8f:bc:c0: 8b:bf:64:8d:c5:b5:df:78:9d:98:35:ef:aa:49:2c: 9e:dd:89:f6:1f:14:3f:1e:db:e7:90:64:aa:e5:99: 8c:e5:ee:40:a1:78:3d:d4:0d:15:70:6e:23:18:5b: 87:4a:95:17:82:0d:5b:0c:05:32:70:56:65:64:e4: c4:d1:57:3d:de:d4:a4:2c:23:00:ba:07:c1:c8:c5: 9f:5d:40:a4:0d:85:0b:23:71:ce:49:b4:b5:92:f2: e3:94:a1:6b:76:a9:5a:e3:9b:f0:1c:91:a6:b7:53: 7e:bb:6b:e6:ad:eb:ba:99:43:ca:f3:35:c5:d6:52: b0:df:7b:93:62:47:40:29:d0:3a:66:c4:e6:b4:38: 07:cc:4b:19:46:76:13:38:be:29:a2:e4:04:55:8f: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:97:CD:30:94:6A:F3:9B:DD:87:60:37:59:D2:F8:4B:70:F6:DF:FB X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:00:13:43:e9:c3:83:61:d1:6b:20:86:d2:9e:4c:1c:af:e3: 1b:1d:44:ff:8d:8f:14:e7:a2:9f:4b:4e:23:70:da:69:70:1f: 56:6c:40:36:e7:8f:d8:cd:31:7e:fb:07:3d:1d:2e:28:e8:d4: 88:64:27:ea:e3:aa:8c:aa:e7:a4:97:7a:c3:d9:57:e6:79:0c: ff:eb:c8:db:f6:77:d3:9a:c4:b9:7f:0b:b6:ee:5a:b6:38:8a: 20:ba:26:13:17:c3:71:cf:18:55:f2:74:b3:42:8f:6b:d2:6d: 1a:bd:f8:17:bc:eb:ab:13:c8:86:cc:ad:07:ec:a8:a5:c3:6b: 14:4c:b3:59:63:1c:37:db:fb:48:1b:50:0d:7f:3d:40:ce:f6: 37:ef:4d:62:b6:1d:12:e3:89:80:f9:3f:5a:64:52:8c:d2:52: 9f:66:0b:d9:c7:1d:46:7a:20:15:26:17:75:e9:16:85:3a:25: 4f:ec:4b:b6:e3:f9:58:07:66:37:6e:da:7d:b4:f3:19:d8:4f: 87:c7:c9:cb:3d:68:88:5d:b8:53:85:a3:4c:d9:85:2c:6c:85: e6:87:b9:70:5b:8a:54:17:ea:eb:de:a6:27:a7:9d:64:1b:07: 36:a7:ae:84:3f:1d:48:40:90:6e:c5:fa:be:36:41:41:4c:0e: 68:83:f2:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUxMjIzMDQyNzQyWhcNMjUxMjMwMDQyNzQyWjAYMRYwFAYD VQQDDA02OTRhMWEzZS0xZjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+XhA1JtqAgGYdo6FKuqPU2a2FzsZfzihPLOfSzaj9NUeSesEF1ddcuN2T2P1 kelLZDFUFIwGYrzZeGCGn0DVBVyR8TrbPAH6SPhaFblTbyOL23I1OjjIsS8xNWI+ RyJhdvqJl7qPvMCLv2SNxbXfeJ2YNe+qSSye3Yn2HxQ/HtvnkGSq5ZmM5e5AoXg9 1A0VcG4jGFuHSpUXgg1bDAUycFZlZOTE0Vc93tSkLCMAugfByMWfXUCkDYULI3HO SbS1kvLjlKFrdqla45vwHJGmt1N+u2vmreu6mUPK8zXF1lKw33uTYkdAKdA6ZsTm tDgHzEsZRnYTOL4pouQEVY/Q0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiXzTCU avOb3YdgN1nS+Etw9t/7MB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCABND6cODYdFrIIbSnkwcr+MbHUT/jY8U56KfS04jcNppcB9WbEA2 54/YzTF++wc9HS4o6NSIZCfq46qMquekl3rD2VfmeQz/68jb9nfTmsS5fwu27lq2 OIoguiYTF8NxzxhV8nSzQo9r0m0avfgXvOurE8iGzK0H7Kilw2sUTLNZYxw32/tI G1ANfz1AzvY3701ith0S44mA+T9aZFKM0lKfZgvZxx1GeiAVJhd16RaFOiVP7Eu2 4/lYB2Y3btp9tPMZ2E+Hx8nLPWiIXbhThaNM2YUsbIXmh7lwW4pUF+rr3qYnp51k Gwc2p66EPx1IQJBuxfq+NkFBTA5og/K5 -----END CERTIFICATE-----Generated at Wed Dec 24 23:00:08 2025 by rpki-client