This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: KxIc8bc1Op/JOGtdu9TaeecIWtLCcHAvvS1MxP7gEZQ= Subject key identifier: 64:B4:DC:DC:BF:88:38:0E:02:26:F3:1C:AA:FD:E7:50:72:21:29:F9 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D5B Signing time: Wed 10 Dec 2025 15:47:22 +0000 Manifest this update: Wed 10 Dec 2025 15:47:22 +0000 Manifest next update: Wed 17 Dec 2025 15:47:22 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: bWHEmEohyMTWfbGT5hux1q61t2z2fRFfXQJt8H9dlY0=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 15:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7578 (0x1d9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Dec 10 15:47:22 2025 GMT Not After : Dec 17 15:47:22 2025 GMT Subject: CN=6939960a-78e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:aa:a1:84:48:9a:18:5d:f6:f6:58:a6:ce:33: 96:2b:55:5b:28:9a:14:e6:c1:11:53:c0:eb:ab:82: fa:b4:c1:b2:eb:0a:a7:8f:f5:75:4f:c5:26:20:4c: 08:5b:1b:6e:44:ea:4b:b6:af:fa:e2:b7:c9:9b:20: 42:48:ed:87:25:c1:8f:86:67:9c:e0:ac:66:99:24: 92:6f:24:f4:59:f5:67:0e:a2:1d:9c:1d:bc:95:2e: 57:99:9f:96:57:e2:18:b3:cb:d7:37:9b:8a:63:30: 6e:5e:ce:f0:ee:46:11:65:de:41:c5:2c:a0:cd:12: 7d:e9:5b:dd:39:43:4a:1b:73:9a:07:a8:57:c4:73: 16:e9:f0:ae:57:c0:40:bd:6f:ab:7d:55:50:e2:81: 68:d4:53:55:1a:b8:d5:cb:c6:04:ae:ce:fd:ad:1c: 59:b3:86:a4:d0:a2:bf:09:81:c8:46:64:54:2a:14: e7:72:55:e1:f3:58:95:2d:43:2a:cb:64:7f:28:83: 17:ca:d5:4c:3f:94:0a:7d:75:bb:d3:20:e1:87:c5: 37:cc:2d:63:49:4e:ac:0c:fb:a9:65:74:b8:8c:3b: 9b:ec:6e:0b:48:98:d3:16:08:f0:7d:4f:01:01:e7: 13:2a:45:00:61:31:e0:94:f1:e0:0f:80:16:e0:84: 02:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B4:DC:DC:BF:88:38:0E:02:26:F3:1C:AA:FD:E7:50:72:21:29:F9 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a1:d2:85:6f:4e:00:e4:b5:f2:11:7d:a1:6d:53:e4:d0:b4: b8:5f:99:24:90:af:84:f0:bc:8d:c4:28:84:0e:1d:fd:3b:d9: 82:bd:86:93:2f:51:1a:69:9a:02:f7:ad:f6:a7:32:07:6f:e3: 84:ae:14:5b:98:72:ad:b6:8c:9d:75:a3:77:b4:79:0a:d5:ab: b3:b0:8b:b1:3c:ea:e2:3e:76:44:03:d2:90:3c:f8:74:73:53: 01:89:1d:a1:59:6c:83:ff:53:2d:54:ce:b1:0e:a7:8b:76:da: 03:1d:73:36:c9:2c:0a:f3:4f:5a:64:eb:c2:65:ab:46:1c:2c: 73:12:11:99:68:7f:c7:46:fa:58:f4:58:02:e1:8b:90:f8:40: ec:bc:a4:04:c9:20:4e:40:ea:8a:d4:ed:6f:8f:3c:1c:32:cc: 58:2f:23:9a:e0:04:47:4a:56:62:f6:35:64:39:13:32:64:f5: 87:68:c1:8f:e8:8f:e6:04:01:74:4e:c5:67:cd:69:69:a8:6a: 1c:94:33:cb:15:50:78:3f:aa:8d:11:a4:ad:2b:cc:91:01:7c: 19:76:89:69:33:e0:07:49:a2:40:30:3c:d6:10:04:a2:4c:98: 37:dc:ea:46:b1:d2:6d:2c:84:f8:58:a8:b9:ad:c6:55:3c:00: 8a:b3:b3:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUxMjEwMTU0NzIyWhcNMjUxMjE3MTU0NzIyWjAYMRYwFAYD VQQDEw02OTM5OTYwYS03OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKqhhEiaGF329limzjOWK1VbKJoU5sERU8Drq4L6tMGy6wqnj/V1T8UmIEwI WxtuROpLtq/64rfJmyBCSO2HJcGPhmec4KxmmSSSbyT0WfVnDqIdnB28lS5XmZ+W V+IYs8vXN5uKYzBuXs7w7kYRZd5BxSygzRJ96VvdOUNKG3OaB6hXxHMW6fCuV8BA vW+rfVVQ4oFo1FNVGrjVy8YErs79rRxZs4ak0KK/CYHIRmRUKhTnclXh81iVLUMq y2R/KIMXytVMP5QKfXW70yDhh8U3zC1jSU6sDPupZXS4jDub7G4LSJjTFgjwfU8B AecTKkUAYTHglPHgD4AW4IQCNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGS03Ny/ iDgOAibzHKr951ByISn5MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQodKFb04A5LXyEX2hbVPk0LS4X5kkkK+E8LyNxCiEDh39O9mCvYaT L1EaaZoC9632pzIHb+OErhRbmHKttoyddaN3tHkK1auzsIuxPOriPnZEA9KQPPh0 c1MBiR2hWWyD/1MtVM6xDqeLdtoDHXM2ySwK809aZOvCZatGHCxzEhGZaH/HRvpY 9FgC4YuQ+EDsvKQEySBOQOqK1O1vjzwcMsxYLyOa4ARHSlZi9jVkORMyZPWHaMGP 6I/mBAF0TsVnzWlpqGoclDPLFVB4P6qNEaStK8yRAXwZdolpM+AHSaJAMDzWEASi TJg33OpGsdJtLIT4WKi5rcZVPACKs7Nu -----END CERTIFICATE-----Generated at Fri Dec 12 17:02:06 2025 by rpki-client