This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft File: GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft (raw, json) Hash identifier: GPGLCYZXYmT1S8bK46KJVK+Dv2sgcuwKGBtsg+0N658= Subject key identifier: F8:0F:A5:F9:22:3B:43:8C:5C:AB:AE:5E:42:C5:53:9B:D6:45:A9:EA Authority key identifier: 18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 Certificate issuer: /CN=A917EA7F/serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft Manifest number: 07F9 Signing time: Mon 22 Dec 2025 20:23:05 +0000 Manifest this update: Mon 22 Dec 2025 20:23:04 +0000 Manifest next update: Mon 29 Dec 2025 20:23:04 +0000 Files and hashes: 1: GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl (hash: XZj0ttHC3enfAByp3eIJgLiJgHZFlJnN+OCxQFvdXhk=) 2: 1994E0780B5B11EB80C8B15FC4F9AE02.roa (hash: BcBBZ1IV+bokAtTZ3iUNiKgQOrGhBIBLoYEFwdHdcHQ=) 3: 18E7B6C80B5B11EB80C8B15FC4F9AE02.roa (hash: hLP1YV65RYOfP9UTV36s4plQryfXd3KAYO5xxCl+fH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EA7F, serialNumber=18442A116C30101BEC8C89F4501978C092036BB8 Validity Not Before: Dec 22 20:23:04 2025 GMT Not After : Dec 29 20:23:04 2025 GMT Subject: CN=6949a8a8-ddfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b7:cc:9b:a2:b7:4f:57:e9:7e:52:32:4c:18: a1:b5:8e:0d:b4:56:c7:cd:1a:89:75:43:43:12:bf: 0d:56:59:60:15:0e:0b:36:da:38:9e:5b:60:b8:38: 55:e3:d6:92:7c:bd:32:1e:a4:27:c8:bb:05:c3:50: 49:66:a5:9d:4a:df:3f:a3:6e:29:8f:48:1c:fe:11: 45:0f:e1:dd:03:24:2b:a0:72:ca:ac:16:c3:1d:c1: e5:bc:91:b3:4c:33:99:17:a9:86:b5:5e:f4:4c:ed: 74:da:73:e5:ee:51:e7:d4:e2:a5:36:6b:a4:a8:da: 71:75:57:d8:54:2a:29:90:fc:ca:63:5c:80:06:8d: 8c:ce:31:85:df:0b:bb:98:41:eb:82:78:a9:09:43: 37:f2:7d:bf:3d:55:28:49:6c:e6:f8:ff:d0:f9:dd: 82:2b:d3:71:e1:b8:d0:62:bc:83:27:8b:fc:c0:eb: 69:da:2f:21:e1:44:6b:dc:05:2f:73:e6:68:89:c0: 1e:5f:85:a9:c0:82:c9:3a:65:1a:22:bb:6c:25:2d: 03:b8:da:4e:e5:5c:9b:df:53:82:cf:08:ef:3e:80: b9:25:5c:3e:f6:e1:56:cd:a2:8c:5e:a7:74:fc:2a: 5e:a2:44:7b:88:01:83:88:53:f8:64:de:4f:b9:13: 36:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0F:A5:F9:22:3B:43:8C:5C:AB:AE:5E:42:C5:53:9B:D6:45:A9:EA X509v3 Authority Key Identifier: keyid:18:44:2A:11:6C:30:10:1B:EC:8C:89:F4:50:19:78:C0:92:03:6B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GEQqEWwwEBvsjIn0UBl4wJIDa7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EA7F/E964AF4C0B5911EB93590A5FC4F9AE02/GEQqEWwwEBvsjIn0UBl4wJIDa7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:43:0e:bb:22:d4:ee:48:57:10:71:e5:11:51:e1:3a:d0:44: 25:16:bf:ef:7f:b6:b1:fe:4a:f9:e8:5d:2f:36:45:5d:27:e4: 81:f7:cd:fd:c0:66:37:af:38:31:e1:9d:c0:2d:46:f1:67:aa: f6:24:34:12:2f:b7:49:c9:18:32:de:ad:ae:1d:11:a8:e1:24: 24:57:9b:20:02:78:d0:31:81:df:26:02:f0:e3:a1:8e:62:38: da:d2:9a:94:16:2c:b1:b0:ba:19:ec:1d:06:a9:47:ef:df:05: cc:df:f3:f5:5b:04:9e:1d:73:a3:8b:95:22:34:62:17:1b:7e: 7a:57:96:65:37:7f:c1:dd:1c:de:80:90:67:03:f7:9a:51:27: db:4b:1e:2e:ff:ac:5a:4f:4b:f0:87:9b:5e:d1:1f:0a:0e:38: 00:c0:b0:ae:34:9f:52:d2:6b:c5:ac:1a:86:bc:37:44:9e:01: 12:3c:e9:48:bc:7f:81:da:94:bf:8a:34:ea:a9:f6:3e:12:65: b5:71:e4:e1:1a:d1:31:04:c3:58:b7:96:54:e7:ad:f5:f8:d9: 55:81:e9:91:9c:e3:11:bd:52:ce:39:4d:eb:7e:bc:57:9d:d9: d4:0d:5a:a2:8e:1e:73:00:05:1d:0e:6a:bf:57:1e:31:de:e2: a6:fd:d7:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VBN0YxMTAvBgNVBAUTKDE4NDQyQTExNkMzMDEwMUJFQzhDODlGNDUwMTk3OEMw OTIwMzZCQjgwHhcNMjUxMjIyMjAyMzA0WhcNMjUxMjI5MjAyMzA0WjAYMRYwFAYD VQQDDA02OTQ5YThhOC1kZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LfMm6K3T1fpflIyTBihtY4NtFbHzRqJdUNDEr8NVllgFQ4LNto4nltguDhV 49aSfL0yHqQnyLsFw1BJZqWdSt8/o24pj0gc/hFFD+HdAyQroHLKrBbDHcHlvJGz TDOZF6mGtV70TO102nPl7lHn1OKlNmukqNpxdVfYVCopkPzKY1yABo2MzjGF3wu7 mEHrgnipCUM38n2/PVUoSWzm+P/Q+d2CK9Nx4bjQYryDJ4v8wOtp2i8h4URr3AUv c+ZoicAeX4WpwILJOmUaIrtsJS0DuNpO5Vyb31OCzwjvPoC5JVw+9uFWzaKMXqd0 /CpeokR7iAGDiFP4ZN5PuRM2/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgPpfki O0OMXKuuXkLFU5vWRanqMB8GA1UdIwQYMBaAFBhEKhFsMBAb7IyJ9FAZeMCSA2u4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUE3Ri9FOTY0QUY0QzBC NTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VCdnNqSW4wVUJsNHdKSURh N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dFUXFFV3d3RUJ2c2pJbjBVQmw0d0pJRGE3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUE3Ri9FOTY0QUY0QzBCNTkxMUVCOTM1OTBBNUZDNEY5QUUwMi9HRVFxRVd3d0VC dnNqSW4wVUJsNHdKSURhN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUQw67ItTuSFcQceURUeE60EQlFr/vf7ax/kr56F0vNkVdJ+SB9839 wGY3rzgx4Z3ALUbxZ6r2JDQSL7dJyRgy3q2uHRGo4SQkV5sgAnjQMYHfJgLw46GO Yjja0pqUFiyxsLoZ7B0GqUfv3wXM3/P1WwSeHXOji5UiNGIXG356V5ZlN3/B3Rze gJBnA/eaUSfbSx4u/6xaT0vwh5te0R8KDjgAwLCuNJ9S0mvFrBqGvDdEngESPOlI vH+B2pS/ijTqqfY+EmW1ceThGtExBMNYt5ZU5631+NlVgemRnOMRvVLOOU3rfrxX ndnUDVqijh5zAAUdDmq/Vx4x3uKm/dfO -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:40 2025 by rpki-client