This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: BlcHP9a40t1XyMaPFBFnKTpmdwdDMcviLELGQuXcUis= Subject key identifier: 0E:0E:16:24:57:81:C7:C1:EE:52:C0:E5:A4:69:60:39:45:7B:0C:3D Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 02D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 02D4 Signing time: Fri 19 Dec 2025 00:34:57 +0000 Manifest this update: Fri 19 Dec 2025 00:34:56 +0000 Manifest next update: Fri 26 Dec 2025 00:34:56 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: XKoWp1pvSwrCvFpeQdwqsBsypgKklTrWdvVn3lh66KI=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Dec 19 00:34:56 2025 GMT Not After : Dec 26 00:34:56 2025 GMT Subject: CN=69449db1-76d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8d:e8:76:09:f5:1c:cc:8c:19:a0:54:8c:7a: df:fb:c1:b5:ad:f9:fb:79:0e:a8:c0:6e:c4:c3:d6: c6:4b:27:99:ed:78:0e:b0:95:4b:4e:aa:ad:fc:c6: dc:cd:12:fe:ce:99:46:8d:27:44:5f:f2:fe:5f:8c: 96:c9:8a:e5:16:5d:ab:d3:a5:19:4c:53:44:a9:5e: 22:97:68:5d:6b:be:5f:e3:93:6b:7d:39:c6:13:a0: ae:3b:ef:53:9c:ed:b9:69:82:91:c1:33:80:c5:2f: df:6b:28:b7:1f:e5:27:9b:af:80:9d:5b:97:89:29: 61:bc:b9:6c:dd:9a:9b:da:1b:ab:15:a3:d7:e3:ca: b4:29:00:c6:51:50:90:05:c3:4c:5e:e6:0c:25:91: ec:8e:c9:cb:bd:f9:ee:cc:25:ef:12:74:7c:38:71: 10:32:dd:bf:dc:6b:8d:40:e0:d8:62:69:e4:76:c3: 14:aa:7d:8f:8d:42:8a:79:1a:2f:53:46:7e:d1:58: 4a:c2:8e:bd:41:43:88:57:58:af:58:73:74:4f:d3: 98:63:31:76:04:0e:aa:28:d9:32:63:c9:39:93:1d: fc:a9:fc:6c:21:47:7a:fb:fa:a3:cc:d4:03:27:5d: 81:b1:08:fb:c6:13:c5:91:23:2e:9b:c2:44:1a:d2: bc:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0E:16:24:57:81:C7:C1:EE:52:C0:E5:A4:69:60:39:45:7B:0C:3D X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:94:b3:09:20:08:60:71:0f:82:ab:59:57:6e:bf:61:fc:dc: ca:30:86:aa:f5:4c:9b:f1:4e:c9:44:6e:98:25:a1:67:e0:04: 0e:58:c2:1e:42:80:f5:5e:1a:0d:5f:a8:76:be:03:ed:b9:ba: 26:2e:6b:35:3a:4e:1f:71:3d:af:9f:53:b2:76:d7:c1:bb:1a: 49:24:70:9b:84:5d:09:8c:d1:a4:7f:40:2e:18:4e:e5:6a:fa: aa:a4:72:94:d0:3a:9c:51:ab:5d:cc:ad:46:2d:0f:35:b8:a9: 5f:36:09:42:a6:8e:47:68:e0:ef:f5:ef:3c:d2:4d:23:01:df: f9:0f:fb:6a:18:4e:9d:01:99:a5:41:0f:12:d7:b0:4a:66:46: 31:cf:d9:06:fb:bc:4a:1e:dc:16:88:0c:c2:9b:2b:da:21:68: 22:80:59:29:be:3b:9f:ee:2c:d4:c1:b4:ea:a8:4a:7e:5c:c3: 97:dd:3e:0f:cf:85:1c:0d:79:cf:50:c5:17:f2:a2:1e:fb:99: 75:af:c4:36:65:5d:c5:16:e1:2b:b4:0c:99:db:37:1e:35:aa: df:75:41:9b:31:03:66:99:16:ff:76:a6:d7:54:81:e0:fa:0c: 8e:23:e4:56:49:2a:f6:96:10:4d:73:2b:ba:56:6f:04:f5:2c: 7c:c5:07:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUxMjE5MDAzNDU2WhcNMjUxMjI2MDAzNDU2WjAYMRYwFAYD VQQDDA02OTQ0OWRiMS03NmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt43odgn1HMyMGaBUjHrf+8G1rfn7eQ6owG7Ew9bGSyeZ7XgOsJVLTqqt/Mbc zRL+zplGjSdEX/L+X4yWyYrlFl2r06UZTFNEqV4il2hda75f45NrfTnGE6CuO+9T nO25aYKRwTOAxS/fayi3H+Unm6+AnVuXiSlhvLls3Zqb2hurFaPX48q0KQDGUVCQ BcNMXuYMJZHsjsnLvfnuzCXvEnR8OHEQMt2/3GuNQODYYmnkdsMUqn2PjUKKeRov U0Z+0VhKwo69QUOIV1ivWHN0T9OYYzF2BA6qKNkyY8k5kx38qfxsIUd6+/qjzNQD J12BsQj7xhPFkSMum8JEGtK8bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4OFiRX gcfB7lLA5aRpYDlFeww9MB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKlLMJIAhgcQ+Cq1lXbr9h/NzKMIaq9Uyb8U7JRG6YJaFn4AQOWMIe QoD1XhoNX6h2vgPtubomLms1Ok4fcT2vn1OydtfBuxpJJHCbhF0JjNGkf0AuGE7l avqqpHKU0DqcUatdzK1GLQ81uKlfNglCpo5HaODv9e880k0jAd/5D/tqGE6dAZml QQ8S17BKZkYxz9kG+7xKHtwWiAzCmyvaIWgigFkpvjuf7izUwbTqqEp+XMOX3T4P z4UcDXnPUMUX8qIe+5l1r8Q2ZV3FFuErtAyZ2zceNarfdUGbMQNmmRb/dqbXVIHg +gyOI+RWSSr2lhBNcyu6Vm8E9Sx8xQed -----END CERTIFICATE-----Generated at Fri Dec 19 19:53:35 2025 by rpki-client