This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: W6XTVXxECdmbU6L5cToop+Qi0zDZXkHelmIBipiCSr8= Subject key identifier: A5:7B:1A:86:B5:1B:5D:F7:3E:4C:A1:10:64:77:FC:00:96:21:F0:89 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 0404 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 03F2 Signing time: Thu 18 Dec 2025 23:49:22 +0000 Manifest this update: Thu 18 Dec 2025 23:49:21 +0000 Manifest next update: Thu 25 Dec 2025 23:49:21 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: D4E4zpJRsaO0f9et4PpPhbvj9k8+537M59oe8V++uO8=) 2: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 3: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) 4: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 5: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 6: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Dec 18 23:49:21 2025 GMT Not After : Dec 25 23:49:21 2025 GMT Subject: CN=69449302-19b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8e:46:d1:ab:26:2d:29:25:32:ec:3f:dd:52: 3f:d9:80:40:75:cb:72:8b:e8:b7:41:e4:82:bf:9a: 6e:65:0d:58:c6:81:2e:b8:31:64:22:88:fb:4b:5b: 19:d4:20:89:42:62:16:78:f3:32:aa:eb:14:77:82: 17:0d:01:5d:49:21:ce:0f:59:5b:71:cc:39:2e:83: a6:cb:7e:68:cb:dc:45:e0:f3:b9:77:eb:58:51:27: 29:b3:55:28:69:32:67:c8:0a:77:27:34:3f:26:d1: 4a:33:65:f8:a7:e9:ba:46:4f:d0:2e:6c:b2:7f:5d: a2:9f:d9:38:3f:cb:3d:5b:52:6c:dc:1a:7a:fd:b5: af:f7:0c:57:11:4f:67:e8:17:08:45:d1:eb:91:78: 42:e3:0c:8e:95:24:db:4f:cf:0e:33:27:ab:4b:bb: 4b:54:d9:64:e8:9f:27:b2:ad:ff:00:ce:c8:54:3c: 01:21:0a:8d:c0:36:51:23:bf:32:7f:cf:09:46:4d: 6c:98:5b:60:a3:89:ff:40:bd:12:f9:12:70:47:df: e2:74:fe:b8:5c:b3:04:39:6a:15:a5:2f:27:b9:f5: f5:7a:1d:1b:d3:d4:18:93:71:eb:10:91:aa:e0:69: 7f:82:f7:ed:36:11:af:f8:3d:57:25:c0:b8:cc:c1: 87:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7B:1A:86:B5:1B:5D:F7:3E:4C:A1:10:64:77:FC:00:96:21:F0:89 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:72:2a:18:2f:66:a5:78:77:d5:d3:b8:4b:3b:ad:6b:8d:31: 49:15:90:12:c6:24:43:6f:85:26:4d:bd:e1:b5:b8:f5:75:53: c9:df:24:7f:26:e8:3e:47:3d:b2:76:cd:f5:dc:ea:b4:15:32: e5:00:99:61:14:41:0d:e7:97:bc:56:d6:67:a1:41:2a:3a:e2: 79:92:51:59:fd:1c:bc:8b:77:69:2a:82:a8:79:d0:38:14:8a: 95:8e:81:2f:c1:e4:6f:f5:48:fc:da:e7:56:01:45:67:19:6d: f4:6d:ea:a0:01:f2:0e:c3:db:d6:a6:1c:6a:e0:4b:75:c4:fe: f2:98:25:a7:33:60:0b:37:3c:38:52:ac:16:c2:41:35:34:52: 35:45:1c:d7:64:29:4b:ea:1c:f7:cf:c8:e2:3a:46:ae:bf:49: d3:1f:13:fe:15:58:3e:16:10:9a:a3:4c:b8:73:f7:e8:40:4c: 81:bb:f8:83:f3:e6:a6:88:f6:54:84:30:c7:cd:e1:8a:3f:77: c1:47:84:06:4e:7e:18:02:a4:fe:03:c9:e1:57:24:fe:69:08: 40:a5:72:3a:65:09:73:e5:e0:2d:7d:6e:02:00:50:cb:3e:66: b0:00:be:fb:cd:77:66:50:8c:5e:f6:6e:8e:58:45:b2:56:bc: 3f:2c:b4:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUxMjE4MjM0OTIxWhcNMjUxMjI1MjM0OTIxWjAYMRYwFAYD VQQDDA02OTQ0OTMwMi0xOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1I5G0asmLSklMuw/3VI/2YBAdctyi+i3QeSCv5puZQ1YxoEuuDFkIoj7S1sZ 1CCJQmIWePMyqusUd4IXDQFdSSHOD1lbccw5LoOmy35oy9xF4PO5d+tYUScps1Uo aTJnyAp3JzQ/JtFKM2X4p+m6Rk/QLmyyf12in9k4P8s9W1Js3Bp6/bWv9wxXEU9n 6BcIRdHrkXhC4wyOlSTbT88OMyerS7tLVNlk6J8nsq3/AM7IVDwBIQqNwDZRI78y f88JRk1smFtgo4n/QL0S+RJwR9/idP64XLMEOWoVpS8nufX1eh0b09QYk3HrEJGq 4Gl/gvftNhGv+D1XJcC4zMGHeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKV7Goa1 G133PkyhEGR3/ACWIfCJMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFcioYL2aleHfV07hLO61rjTFJFZASxiRDb4UmTb3htbj1dVPJ3yR/ Jug+Rz2yds313Oq0FTLlAJlhFEEN55e8VtZnoUEqOuJ5klFZ/Ry8i3dpKoKoedA4 FIqVjoEvweRv9Uj82udWAUVnGW30beqgAfIOw9vWphxq4Et1xP7ymCWnM2ALNzw4 UqwWwkE1NFI1RRzXZClL6hz3z8jiOkauv0nTHxP+FVg+FhCao0y4c/foQEyBu/iD 8+amiPZUhDDHzeGKP3fBR4QGTn4YAqT+A8nhVyT+aQhApXI6ZQlz5eAtfW4CAFDL PmawAL77zXdmUIxe9m6OWEWyVrw/LLTq -----END CERTIFICATE-----Generated at Sat Dec 20 05:16:54 2025 by rpki-client