This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft File: gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft (raw, json) Hash identifier: XBYPL1pRtOGFsBUq0/yP3tbF+xIIazxyZWw59VrCwEA= Subject key identifier: F0:EF:8F:AF:C9:99:27:EF:BE:64:48:71:FF:6F:E6:84:CE:38:E2:76 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft Manifest number: 0B82 Signing time: Sat 20 Dec 2025 18:40:28 +0000 Manifest this update: Sat 20 Dec 2025 18:40:27 +0000 Manifest next update: Sat 27 Dec 2025 18:40:27 +0000 Files and hashes: 1: gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl (hash: Q29T1Emg0cSnygvag8ouUsD3a/Z/6XkFHgLo8Qg9ep8=) 2: 89340B10B5E011EE91DD4D53C4F9AE02.roa (hash: Q9mMB9C2C5zqftIwQCLURXaOhu4FrV/pPVzwERgSn2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2964 (0xb94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Dec 20 18:40:27 2025 GMT Not After : Dec 27 18:40:27 2025 GMT Subject: CN=6946ed9c-f080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:21:5b:d8:7c:51:72:1e:1f:8f:f6:dc:ad:d2: c8:ff:f1:eb:59:01:f2:04:11:4a:71:94:6a:bd:d9: a3:d2:46:0d:7d:50:d0:a3:2c:1b:ca:a1:12:a9:19: 1f:15:97:2b:5b:b8:f7:cb:02:35:98:79:9c:14:fd: ea:01:5d:36:30:10:38:a8:c6:9f:52:a3:f7:80:7f: 16:fc:7f:07:5a:fa:67:57:dd:bd:ac:b9:2d:d9:14: 2e:8a:77:24:cf:34:d3:36:8d:50:c2:fa:ba:33:48: 9d:45:10:37:70:16:43:a7:f5:1f:62:5e:ff:fb:95: 66:35:2f:7d:f9:da:89:c9:74:ef:77:a0:b4:35:96: 57:bd:fa:99:94:00:6f:54:19:5f:d4:5f:94:fe:41: 97:c6:e4:79:40:09:d7:ea:0a:9e:1e:09:16:a8:fb: c9:1a:d0:c8:3c:00:bc:24:c4:2a:43:a1:c8:b4:d9: d2:4b:78:ba:44:2d:f9:e9:d9:ef:23:35:86:66:99: 01:17:20:0b:85:e7:ec:c1:36:e5:2d:13:08:3e:1c: 60:f5:6b:9a:ac:42:3e:6e:29:a9:8d:85:cb:59:54: d7:21:ab:73:b2:36:3e:d3:38:f6:fc:73:dc:99:eb: 89:e9:f7:db:b1:5d:f9:9d:e9:ff:9b:6d:79:4f:78: 2f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:EF:8F:AF:C9:99:27:EF:BE:64:48:71:FF:6F:E6:84:CE:38:E2:76 X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e8:42:77:e4:57:07:76:fa:24:23:d3:01:33:79:59:0e:3c: a4:ed:1b:a3:24:6d:bd:83:8e:39:45:39:ce:6e:39:9b:54:42: ce:53:11:78:9c:15:c0:22:a3:66:2e:bc:ec:e3:a3:a2:75:89: 9a:e3:c6:28:00:f5:6e:89:df:96:a1:a4:c8:fa:3d:4f:99:3c: 24:96:7d:a7:cb:7c:0e:e2:b6:90:5a:f3:64:11:49:85:ca:bd: aa:fb:14:1f:4d:d5:34:11:aa:80:27:e1:be:ee:7c:90:b6:09: 34:bd:ee:ce:bd:59:51:99:36:47:3c:69:03:a9:cc:22:ee:7b: 17:d7:bd:5d:9f:fc:53:04:b9:ec:eb:1d:c8:a9:61:69:bc:34: 3c:bf:df:e3:3c:9c:f2:c1:6c:6d:de:8e:a0:91:bd:ab:21:a4: a1:4b:75:72:64:ca:ec:c0:e3:a3:5a:98:46:30:b4:f7:4c:68: 1c:9c:82:09:a5:73:c2:68:ed:f1:22:1d:4b:ab:ca:c6:2b:02: 7b:8f:cf:ab:31:43:04:51:ab:cb:61:4a:bd:38:10:bf:7e:12: 0d:34:4b:95:d0:2d:3c:aa:26:99:ab:04:be:9a:8c:51:d5:02: 76:42:4c:26:83:90:e3:ca:7f:ed:8d:1e:a6:cd:9d:72:d1:2c: 69:9b:b7:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUxMjIwMTg0MDI3WhcNMjUxMjI3MTg0MDI3WjAYMRYwFAYD VQQDDA02OTQ2ZWQ5Yy1mMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviFb2HxRch4fj/bcrdLI//HrWQHyBBFKcZRqvdmj0kYNfVDQoywbyqESqRkf FZcrW7j3ywI1mHmcFP3qAV02MBA4qMafUqP3gH8W/H8HWvpnV929rLkt2RQuinck zzTTNo1Qwvq6M0idRRA3cBZDp/UfYl7/+5VmNS99+dqJyXTvd6C0NZZXvfqZlABv VBlf1F+U/kGXxuR5QAnX6gqeHgkWqPvJGtDIPAC8JMQqQ6HItNnSS3i6RC356dnv IzWGZpkBFyALhefswTblLRMIPhxg9WuarEI+bimpjYXLWVTXIatzsjY+0zj2/HPc meuJ6ffbsV35nen/m215T3gv8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDvj6/J mSfvvmRIcf9v5oTOOOJ2MB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTI5OS8yNjg5MEVEQTQyQzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2 aG9JN2FmUTNZazZjQUMza0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM6EJ35FcHdvokI9MBM3lZDjyk7RujJG29g445RTnObjmbVELOUxF4 nBXAIqNmLrzs46OidYma48YoAPVuid+WoaTI+j1PmTwkln2ny3wO4raQWvNkEUmF yr2q+xQfTdU0EaqAJ+G+7nyQtgk0ve7OvVlRmTZHPGkDqcwi7nsX171dn/xTBLns 6x3IqWFpvDQ8v9/jPJzywWxt3o6gkb2rIaShS3VyZMrswOOjWphGMLT3TGgcnIIJ pXPCaO3xIh1Lq8rGKwJ7j8+rMUMEUavLYUq9OBC/fhINNEuV0C08qiaZqwS+moxR 1QJ2Qkwmg5Djyn/tjR6mzZ1y0Sxpm7ef -----END CERTIFICATE-----Generated at Mon Dec 22 17:21:17 2025 by rpki-client