This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: nWGhLglM/K3b4/NoDvsfd6M8hjZuem89g//I/yFq+Y8= Subject key identifier: 40:05:41:34:4C:00:4E:B2:63:4B:6F:1D:15:5C:F2:51:CD:D3:B9:B6 Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 34F2 Signing time: Mon 22 Dec 2025 14:33:22 +0000 Manifest this update: Mon 22 Dec 2025 14:33:22 +0000 Manifest next update: Mon 29 Dec 2025 14:33:22 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: VUbu1VXXcxb9wuNFNB8IOCvc0CjI2xmeA3dqqQ5pEaM=) 2: 2021C6F6795E11F0B07E6E6BC4F9AE02.roa (hash: /tr9Ms57wuKfsw+OEtuIOe0iJR3426UBPMZCKa1pr2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Dec 22 14:33:22 2025 GMT Not After : Dec 29 14:33:22 2025 GMT Subject: CN=694956b2-a777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4d:f6:9c:50:d8:e4:2a:53:22:9a:a2:64:38: f0:74:85:0f:92:c4:f4:7c:7f:fb:3c:2b:01:45:75: 9e:79:ca:e4:62:2d:41:7b:f4:ef:21:23:cc:60:50: aa:12:da:4e:fa:fd:b5:aa:50:02:85:78:06:5b:4e: 40:93:b8:d6:bc:12:04:e0:49:d9:d4:5e:62:35:2c: 67:8f:c3:1a:8a:64:65:4c:10:a6:6b:a8:04:92:57: 9f:db:79:e6:55:1a:7e:6d:9f:e3:04:54:b4:11:76: 4a:1c:a1:1a:3f:26:0d:f6:f8:89:30:d9:79:bd:dd: 63:e6:8c:14:a3:08:41:25:5a:d3:0e:ec:d4:52:60: bb:21:c3:66:57:ea:28:e9:c3:9e:b6:f0:38:1d:f7: aa:e8:de:55:cd:32:1a:94:23:2d:cd:bd:cf:21:17: d5:ae:10:c4:bf:a8:6e:fd:90:74:91:66:e6:ba:14: 6b:05:4e:5c:50:dc:23:54:ff:fb:18:b3:1a:5c:1c: 55:7c:9d:70:d0:4f:6f:2f:b4:88:d0:77:f5:76:79: 3b:ba:59:11:7a:6d:44:1f:b1:41:73:f7:61:61:06: 89:eb:c4:6c:44:44:76:1e:44:c4:87:45:d4:1c:8c: 65:b1:9c:2f:f5:ae:39:72:30:80:26:a1:ee:75:e4: 8f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:05:41:34:4C:00:4E:B2:63:4B:6F:1D:15:5C:F2:51:CD:D3:B9:B6 X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d2:18:3c:4b:c3:db:81:d5:44:b5:91:0f:a3:89:11:d1:43: 09:65:fc:a9:9f:07:ad:55:45:e2:df:3f:08:44:73:86:e1:81: 66:e3:4f:d1:5a:5d:f0:1b:74:2c:88:10:6c:58:58:5b:b2:f6: c2:bc:55:59:fe:65:71:1b:09:62:13:cc:84:b8:e7:7b:35:22: 32:62:6c:44:79:21:79:fa:15:86:c6:00:34:90:c3:8a:16:bb: 28:33:c1:23:eb:d5:26:25:e0:df:ed:93:6b:6b:ae:e8:27:45: fd:c7:d6:11:9e:3f:59:6f:a5:50:60:fe:f2:ec:ff:80:57:ad: 52:fd:c1:3b:0a:40:ae:2c:db:5c:b9:ce:68:a3:cc:b9:f8:97: 66:55:d3:d9:e5:b6:02:ab:48:d1:34:24:14:f1:1e:73:a6:77: e6:8e:63:66:42:08:01:bd:59:07:90:2a:95:08:0f:2f:c3:95: 95:57:8b:0e:3e:09:88:6a:c3:09:3a:a2:14:a7:ae:52:98:a1: b7:cb:65:ff:76:d3:43:80:5b:d2:3c:44:01:d2:91:fa:fc:5f: 1e:a5:64:73:94:27:a9:a5:d7:5f:e0:4e:27:58:83:c7:92:af: 74:2e:f1:8e:52:e8:30:dd:ea:de:d3:57:4b:f3:04:1c:e1:32: ef:58:38:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUxMjIyMTQzMzIyWhcNMjUxMjI5MTQzMzIyWjAYMRYwFAYD VQQDDA02OTQ5NTZiMi1hNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5032nFDY5CpTIpqiZDjwdIUPksT0fH/7PCsBRXWeecrkYi1Be/TvISPMYFCq EtpO+v21qlAChXgGW05Ak7jWvBIE4EnZ1F5iNSxnj8MaimRlTBCma6gEklef23nm VRp+bZ/jBFS0EXZKHKEaPyYN9viJMNl5vd1j5owUowhBJVrTDuzUUmC7IcNmV+oo 6cOetvA4Hfeq6N5VzTIalCMtzb3PIRfVrhDEv6hu/ZB0kWbmuhRrBU5cUNwjVP/7 GLMaXBxVfJ1w0E9vL7SI0Hf1dnk7ulkRem1EH7FBc/dhYQaJ68RsRER2HkTEh0XU HIxlsZwv9a45cjCAJqHudeSP2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAFQTRM AE6yY0tvHRVc8lHN07m2MB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn0hg8S8PbgdVEtZEPo4kR0UMJZfypnwetVUXi3z8IRHOG4YFm40/R Wl3wG3QsiBBsWFhbsvbCvFVZ/mVxGwliE8yEuOd7NSIyYmxEeSF5+hWGxgA0kMOK FrsoM8Ej69UmJeDf7ZNra67oJ0X9x9YRnj9Zb6VQYP7y7P+AV61S/cE7CkCuLNtc uc5oo8y5+JdmVdPZ5bYCq0jRNCQU8R5zpnfmjmNmQggBvVkHkCqVCA8vw5WVV4sO PgmIasMJOqIUp65SmKG3y2X/dtNDgFvSPEQB0pH6/F8epWRzlCeppddf4E4nWIPH kq90LvGOUugw3ere01dL8wQc4TLvWDgh -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:48 2025 by rpki-client