This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: bhf6FKZrwv01juZDNP8NLwMJzCge3d/fMHpLP9k5N+M= Subject key identifier: 52:A6:E2:8F:EA:EE:FC:2A:EE:5C:C9:7C:FB:E1:ED:15:26:D7:18:EF Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 04A3 Signing time: Wed 31 Dec 2025 00:07:04 +0000 Manifest this update: Wed 31 Dec 2025 00:07:04 +0000 Manifest next update: Wed 07 Jan 2026 00:07:04 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: 0EMh8UKLolZAqXTxoFlQUChrbvI+NA3UfWQhv6BHfhk=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: 7mnEbW853H0TtxSAAqitSldZ+gKZe1bS6fxCspOc670=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 00:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Dec 31 00:07:04 2025 GMT Not After : Jan 7 00:07:04 2026 GMT Subject: CN=69546928-31c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ed:36:c1:70:6c:9c:81:e7:1f:5f:13:46:bb: 07:0f:cf:db:9b:8b:5e:f2:ca:b4:fd:29:cf:34:f7: 58:f5:88:e2:12:07:cc:56:86:e4:9c:a0:65:57:26: 29:95:cc:17:34:67:f2:ab:0b:74:c9:77:06:7b:2d: 67:56:11:2a:4b:db:11:9f:92:9a:a1:b4:6d:b9:4e: 96:58:5f:8d:f5:d4:5f:64:bc:fc:9c:a2:12:81:80: 46:af:e9:82:75:a3:c4:0f:5d:7f:e9:86:5c:11:4a: 60:ae:0d:01:8c:4b:ef:4a:96:e2:5b:ba:d8:7d:fc: 6c:a6:26:ac:8e:44:84:16:74:ec:85:04:76:a0:61: 2d:a5:38:94:ef:d0:40:83:06:b4:74:89:3e:c6:a4: 93:2a:ef:cb:3d:8d:2b:14:c2:d3:38:0b:8e:75:11: a8:95:5e:89:12:f6:0d:f5:14:ee:21:f3:d2:6a:e4: f3:f2:e0:13:7e:bc:bc:cb:c1:af:62:02:77:39:c7: ce:c8:1a:c4:28:a3:47:f7:24:70:db:ad:6e:f2:1b: 8a:d2:32:28:7c:be:07:4f:99:62:9b:2a:9c:d1:7d: b8:f0:86:7c:17:8a:5a:0e:96:62:a2:d5:3a:6a:cb: 85:8c:7b:7c:62:85:b2:e4:28:5a:2f:3b:c0:36:3d: 1d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A6:E2:8F:EA:EE:FC:2A:EE:5C:C9:7C:FB:E1:ED:15:26:D7:18:EF X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b7:4f:ac:65:71:7b:75:14:a6:f6:2d:d8:4b:37:fa:e0:c9: 13:ca:dd:59:f3:ab:a1:6b:a2:60:82:55:ed:a5:30:40:90:e7: 74:ae:e3:ce:92:10:95:a1:48:28:db:b7:7c:54:aa:2c:e0:6a: 4d:8f:72:14:56:0d:31:6e:1a:bb:ae:74:7e:37:d4:e7:92:f1: c4:3c:9f:b6:ad:40:0d:84:86:26:ee:56:3c:61:7d:e3:4f:a9: e0:09:e8:06:36:fb:f5:ca:93:58:3d:71:46:23:40:d2:1e:c1: 2e:2f:85:7e:07:10:88:e6:02:26:73:9a:0d:04:40:53:d3:80: 8d:3f:a9:50:8e:ac:88:10:f3:4d:ed:43:83:83:36:d7:dd:80: f9:8d:4e:1a:de:90:c0:44:4d:e2:d3:c7:cf:66:ab:39:28:a3: d7:f7:89:63:ac:be:79:5f:db:b2:59:a6:73:d9:c4:92:5a:3d: f1:e4:e9:4b:b1:a3:31:ea:b9:d9:dc:3b:d8:03:65:a4:cd:89: 8c:8f:5a:e9:ec:5c:60:63:31:62:73:87:29:bf:f8:41:e5:87: a7:b6:9b:44:21:78:c6:85:74:68:9d:91:48:a5:4e:e7:4a:8d: cc:d7:40:d6:1f:88:f7:58:47:92:be:c7:22:95:29:a9:31:30: d8:ec:a3:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUxMjMxMDAwNzA0WhcNMjYwMTA3MDAwNzA0WjAYMRYwFAYD VQQDDA02OTU0NjkyOC0zMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve02wXBsnIHnH18TRrsHD8/bm4te8sq0/SnPNPdY9YjiEgfMVobknKBlVyYp lcwXNGfyqwt0yXcGey1nVhEqS9sRn5KaobRtuU6WWF+N9dRfZLz8nKISgYBGr+mC daPED11/6YZcEUpgrg0BjEvvSpbiW7rYffxspiasjkSEFnTshQR2oGEtpTiU79BA gwa0dIk+xqSTKu/LPY0rFMLTOAuOdRGolV6JEvYN9RTuIfPSauTz8uATfry8y8Gv YgJ3OcfOyBrEKKNH9yRw261u8huK0jIofL4HT5limyqc0X248IZ8F4paDpZiotU6 asuFjHt8YoWy5ChaLzvANj0dBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKm4o/q 7vwq7lzJfPvh7RUm1xjvMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFt0+sZXF7dRSm9i3YSzf64MkTyt1Z86uha6JgglXtpTBAkOd0ruPO khCVoUgo27d8VKos4GpNj3IUVg0xbhq7rnR+N9TnkvHEPJ+2rUANhIYm7lY8YX3j T6ngCegGNvv1ypNYPXFGI0DSHsEuL4V+BxCI5gImc5oNBEBT04CNP6lQjqyIEPNN 7UODgzbX3YD5jU4a3pDARE3i08fPZqs5KKPX94ljrL55X9uyWaZz2cSSWj3x5OlL saMx6rnZ3DvYA2WkzYmMj1rp7FxgYzFic4cpv/hB5YentptEIXjGhXRonZFIpU7n So3M10DWH4j3WEeSvscilSmpMTDY7KOD -----END CERTIFICATE-----Generated at Wed Dec 31 09:29:59 2025 by rpki-client