This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft File: GhajkdMlFwt7hcS_x4VaF300e24.mft (raw, json) Hash identifier: tzMbdeCZUncT4z/EEAkfJbX8T+DNzuzcEdbKp7T1Tbg= Subject key identifier: 91:DC:CF:D3:49:F9:D7:12:6E:CC:22:3F:7F:BD:28:3F:52:13:A5:A7 Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E Certificate issuer: /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft Manifest number: 57 Signing time: Tue 23 Dec 2025 06:03:34 +0000 Manifest this update: Tue 23 Dec 2025 06:03:34 +0000 Manifest next update: Tue 30 Dec 2025 06:03:34 +0000 Files and hashes: 1: GhajkdMlFwt7hcS_x4VaF300e24.crl (hash: /P3Kgu546rpuV1dJ3r4iY4E5i77YktppM4MX9cPOkns=) 2: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (hash: 92wZUBl6JW7t9Lz6VY8NqyCC30dn+5kR/99dMirbOek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Validity Not Before: Dec 23 06:03:34 2025 GMT Not After : Dec 30 06:03:34 2025 GMT Subject: CN=694a30b6-e67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:6f:3a:fa:cb:d8:db:73:bd:6c:bf:38:19: ce:a2:76:ba:ce:5f:42:05:88:73:32:68:0f:42:91: f2:71:c2:44:0e:94:fd:ae:45:7b:bc:e8:db:ac:37: 97:9b:6d:7a:ac:3e:8c:17:a5:2a:30:76:59:f2:28: 89:59:fb:9b:45:2f:44:ce:8a:eb:75:5a:ff:e3:5e: 2d:8f:09:69:6c:23:65:78:5c:2a:14:42:76:0a:72: a0:e9:5f:46:d4:d0:4c:3a:50:46:3e:f7:90:3e:92: 63:e6:93:48:c0:6b:cd:39:95:b9:f6:90:db:c7:2f: 48:86:e2:10:6e:9d:3c:08:64:da:c3:62:b0:ae:d0: be:d2:a6:2d:c5:b4:7a:75:93:26:85:eb:05:dc:81: 78:46:16:a1:8f:9d:84:d5:8d:a1:90:15:4c:68:46: 76:ae:86:86:37:15:71:a7:6b:ff:e5:c1:f6:ca:00: 56:56:fa:1f:ff:89:27:ef:56:bc:7a:ad:30:bf:68: 55:f3:44:c1:dc:dc:10:5e:33:3c:16:26:d4:7c:78: 5a:e7:90:df:7d:22:0d:50:ae:49:7a:10:b6:bf:72: 7c:a5:04:43:f4:2a:6d:5e:27:4b:f0:ac:9a:14:49: e4:35:e0:48:48:2a:e5:5f:25:68:2d:6d:dd:2f:da: 4f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DC:CF:D3:49:F9:D7:12:6E:CC:22:3F:7F:BD:28:3F:52:13:A5:A7 X509v3 Authority Key Identifier: keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ff:e2:9a:c0:1f:8b:03:b6:99:58:31:69:4e:c7:5f:8c:b8: 5c:a0:fb:65:b2:5f:d9:1d:fd:6f:ae:5b:7b:04:81:8d:b7:0d: d1:c9:45:db:b9:09:fe:89:6a:d7:c7:14:52:dc:99:e9:9a:dc: 68:88:ea:a4:85:bb:0e:83:b7:5e:7c:05:bd:b2:10:ab:f1:9d: 67:68:65:1a:ea:47:8e:ec:d5:76:ec:d5:28:4e:db:fe:f8:f0: bf:79:14:54:89:1d:b0:7d:cb:ef:e5:d3:70:3d:c4:51:03:ba: e3:b7:86:29:83:d5:56:44:5a:a6:77:3d:f6:c0:43:2f:b3:e0: 9a:75:8b:bd:78:12:1a:4d:7e:bc:74:69:05:9c:97:e7:32:a3: 4e:84:17:9c:b3:a3:ee:1b:e1:4a:05:14:9c:b3:38:f9:8e:15: bb:fa:3f:07:01:93:ce:f6:7e:da:bc:c6:34:8f:30:70:66:86: 21:76:ca:aa:99:27:df:83:90:5a:a7:ff:32:f3:c4:4c:9e:53: 15:fb:e1:d5:2b:b8:6a:70:09:a8:35:2f:4f:91:f5:e1:f1:66: 86:34:c8:cd:ab:db:b6:14:02:0a:19:08:10:65:22:54:39:82: 64:dc:9e:fa:2b:9c:26:54:a4:67:fa:16:43:d5:69:a7:c5:0d: 84:f3:81:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjUxMDExMC8GA1UEBRMoMUExNkEzOTFEMzI1MTcwQjdCODVDNEJGQzc4NTVBMTc3 RDM0N0I2RTAeFw0yNTEyMjMwNjAzMzRaFw0yNTEyMzAwNjAzMzRaMBgxFjAUBgNV BAMMDTY5NGEzMGI2LWU2N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWE286+svY23O9bL84Gc6idrrOX0IFiHMyaA9CkfJxwkQOlP2uRXu86NusN5eb bXqsPowXpSowdlnyKIlZ+5tFL0TOiut1Wv/jXi2PCWlsI2V4XCoUQnYKcqDpX0bU 0Ew6UEY+95A+kmPmk0jAa805lbn2kNvHL0iG4hBunTwIZNrDYrCu0L7Spi3FtHp1 kyaF6wXcgXhGFqGPnYTVjaGQFUxoRnauhoY3FXGna//lwfbKAFZW+h//iSfvVrx6 rTC/aFXzRMHc3BBeMzwWJtR8eFrnkN99Ig1Qrkl6ELa/cnylBEP0Km1eJ0vwrJoU SeQ14EhIKuVfJWgtbd0v2k+NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkdzP00n5 1xJuzCI/f70oP1ITpacwHwYDVR0jBBgwFoAUGhajkdMlFwt7hcS/x4VaF300e24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNTEwLzE4ODJEMEU2NUQ4 MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0N2hjU194NFZhRjMwMGUy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2hhamtkTWxGd3Q3aGNTX3g0VmFGMzAwZTI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC NTEwLzE4ODJEMEU2NUQ4MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0 N2hjU194NFZhRjMwMGUyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGv/4prAH4sDtplYMWlOx1+MuFyg+2WyX9kd/W+uW3sEgY23DdHJRdu5 Cf6JatfHFFLcmema3GiI6qSFuw6Dt158Bb2yEKvxnWdoZRrqR47s1Xbs1ShO2/74 8L95FFSJHbB9y+/l03A9xFEDuuO3himD1VZEWqZ3PfbAQy+z4Jp1i714EhpNfrx0 aQWcl+cyo06EF5yzo+4b4UoFFJyzOPmOFbv6PwcBk872ftq8xjSPMHBmhiF2yqqZ J9+DkFqn/zLzxEyeUxX74dUruGpwCag1L0+R9eHxZoY0yM2r27YUAgoZCBBlIlQ5 gmTcnvornCZUpGf6FkPVaafFDYTzgeM= -----END CERTIFICATE-----Generated at Wed Dec 24 21:20:32 2025 by rpki-client