This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: kpyWqDOX/5YYcxaP0zxYsX/WIQ/I0kVtWd1DqNOw2gI= Subject key identifier: 72:6F:CB:A9:57:CE:79:B8:6D:12:00:00:EA:02:5E:CB:EF:A5:EC:D4 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 0229 Signing time: Tue 23 Dec 2025 01:08:22 +0000 Manifest this update: Tue 23 Dec 2025 01:08:21 +0000 Manifest next update: Tue 30 Dec 2025 01:08:21 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: CLKkFFUoEKMJTgJXhFWV6tOhBki9g593saGp4zF7fbA=) 2: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: V+A9+3TWv6PDJfONkiYGSLwYtuk75uf9VZIwDYRykJo=) 3: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: GzbxM9C1MjlQY8/LbZ9rlFb8KN037sgMyJVoACbdjQg=) 4: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: 8XCBqH3UeeuDPYwwqRpO+AoZOfKPyRMZ7ican69IhKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Dec 23 01:08:21 2025 GMT Not After : Dec 30 01:08:21 2025 GMT Subject: CN=6949eb86-e17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9d:1d:b3:66:57:21:ad:dd:e4:53:d5:9e:5b: 65:e2:c5:60:1b:d8:87:5e:cc:b9:c6:4d:77:f8:30: 45:f5:f0:c0:15:3c:68:f7:3a:7b:12:70:98:eb:d0: 82:bb:32:2c:9f:d0:35:70:85:eb:03:17:1e:38:98: bc:02:94:20:e4:88:8e:e0:a3:bc:c8:c1:9e:d9:98: b4:de:2b:db:b0:4a:9d:57:f8:4d:b0:06:c1:4a:cd: 73:cc:db:d2:e4:ba:6b:69:55:eb:02:0e:ca:f2:49: 4c:27:5a:4b:d0:2b:7f:8f:02:b0:87:ed:14:62:81: 55:08:69:e3:5a:5d:36:61:b9:c6:4d:34:47:7e:e7: 3d:20:6b:43:07:25:03:74:57:6f:bb:a0:88:96:fe: bd:a7:c0:94:ab:48:3a:4d:f2:fd:e2:74:f7:42:b3: 2b:3f:fa:e4:5e:d6:a3:d8:23:0e:28:92:3e:09:1d: 3e:57:76:1f:27:a6:ef:3c:c3:d1:24:83:61:b7:ed: 8c:f7:5f:e0:75:66:09:f8:ac:51:63:a8:b3:d7:3f: 94:59:99:10:57:0d:2d:5e:ab:a2:b8:84:10:72:80: 7f:f9:c5:d5:5c:fb:9b:50:c0:25:28:33:9f:31:bb: dc:fe:f7:e8:a4:89:f6:bd:ed:39:23:73:fe:d4:7e: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6F:CB:A9:57:CE:79:B8:6D:12:00:00:EA:02:5E:CB:EF:A5:EC:D4 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:85:94:bf:4b:da:75:de:19:49:6a:cc:b9:fd:7b:92:3e:81: 62:36:86:68:00:a1:94:53:a6:72:55:b5:ec:f8:b5:70:ae:22: 39:aa:e1:16:c9:bd:a1:88:52:95:eb:00:19:3d:31:9f:a9:8e: 41:8b:4e:bc:52:63:d7:6e:3e:a6:c6:b0:20:44:c8:af:5d:55: 29:2a:fb:08:6f:1b:6d:0e:5a:19:f8:b0:81:0f:c3:e7:10:9a: 61:86:8f:b3:96:c2:3b:d6:68:de:bb:c6:41:cc:5a:e4:59:34: f7:4f:df:bf:a1:3a:b7:46:72:ca:a7:81:02:3b:6e:0a:26:92: c3:71:d1:61:48:88:69:b5:16:8b:9a:c2:2d:57:90:67:37:f6: 32:5a:6b:6b:33:fb:f1:46:04:09:7b:7e:37:e9:a0:a5:2a:dd: 8b:7f:7c:ca:c7:e2:cd:6c:6e:71:3e:ae:cf:8f:48:f1:8f:7f: d2:31:71:27:22:b5:57:14:85:54:34:c9:3f:d0:f7:7c:57:fa: c7:79:83:f2:49:7d:5a:a1:10:d9:7c:d1:16:eb:f9:0a:db:15: 4c:91:65:4b:83:d3:64:0d:38:a3:60:e1:51:03:67:a0:82:19: 8c:e6:f3:07:1c:28:5b:81:8c:a5:e2:15:76:e1:f8:88:1b:05: b6:ba:03:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUxMjIzMDEwODIxWhcNMjUxMjMwMDEwODIxWjAYMRYwFAYD VQQDDA02OTQ5ZWI4Ni1lMTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA550ds2ZXIa3d5FPVnltl4sVgG9iHXsy5xk13+DBF9fDAFTxo9zp7EnCY69CC uzIsn9A1cIXrAxceOJi8ApQg5IiO4KO8yMGe2Zi03ivbsEqdV/hNsAbBSs1zzNvS 5LpraVXrAg7K8klMJ1pL0Ct/jwKwh+0UYoFVCGnjWl02YbnGTTRHfuc9IGtDByUD dFdvu6CIlv69p8CUq0g6TfL94nT3QrMrP/rkXtaj2CMOKJI+CR0+V3YfJ6bvPMPR JINht+2M91/gdWYJ+KxRY6iz1z+UWZkQVw0tXquiuIQQcoB/+cXVXPubUMAlKDOf Mbvc/vfopIn2ve05I3P+1H6X+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJvy6lX znm4bRIAAOoCXsvvpezUMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBthZS/S9p13hlJasy5/XuSPoFiNoZoAKGUU6ZyVbXs+LVwriI5quEW yb2hiFKV6wAZPTGfqY5Bi068UmPXbj6mxrAgRMivXVUpKvsIbxttDloZ+LCBD8Pn EJphho+zlsI71mjeu8ZBzFrkWTT3T9+/oTq3RnLKp4ECO24KJpLDcdFhSIhptRaL msItV5BnN/YyWmtrM/vxRgQJe3436aClKt2Lf3zKx+LNbG5xPq7Pj0jxj3/SMXEn IrVXFIVUNMk/0Pd8V/rHeYPySX1aoRDZfNEW6/kK2xVMkWVLg9NkDTijYOFRA2eg ghmM5vMHHChbgYyl4hV24fiIGwW2ugPi -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:21 2025 by rpki-client