This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json) Hash identifier: zH7UaSjHwki1MZOYbp2WSlTJdXsqrBNlFdD/iR2MkbU= Subject key identifier: 02:64:08:5D:0E:AE:FD:F5:B8:E0:06:5C:0F:CD:4D:D8:B5:01:7F:D5 Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0D88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft Manifest number: 0D81 Signing time: Fri 26 Dec 2025 17:35:04 +0000 Manifest this update: Fri 26 Dec 2025 17:35:04 +0000 Manifest next update: Fri 02 Jan 2026 17:35:04 +0000 Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: LXyPN/wUI9dasSeBGQ4bRBfT+Trf43Uaks11XRN+gxg=) 2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: b+YvMULskW1aqcLGiau9z7PDlxuascZM6xtTvuLKH/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 17:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5, serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: Dec 26 17:35:04 2025 GMT Not After : Jan 2 17:35:04 2026 GMT Subject: CN=694ec748-313e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:02:9c:34:b1:f2:a4:de:9c:0a:ce:81:11:e9: 36:d7:6c:90:c0:b8:f6:96:8c:b8:56:65:fe:be:8c: c7:24:77:86:85:73:8b:86:14:bb:88:09:da:a6:af: d1:76:ab:50:51:d9:42:a2:61:06:3c:f9:55:53:61: a0:0d:aa:50:c7:b2:4d:b8:eb:80:b5:78:3a:b1:67: 45:cc:83:0f:f9:fb:53:db:32:57:aa:79:c2:25:05: 47:eb:25:fd:ac:75:af:08:5c:7a:b4:fa:f1:b9:6c: 3b:56:91:ac:23:fa:81:8a:e7:ba:af:b3:7b:98:03: b6:30:a7:7d:d6:11:05:de:41:30:d2:b3:4a:9f:06: 82:22:52:6e:10:42:63:ba:87:51:b8:ea:66:5c:b7: 81:f5:c8:0f:cb:2d:fb:cc:31:a3:ee:db:04:02:3e: 1b:a0:fa:5b:3e:f6:67:44:3e:93:6e:14:86:19:87: 58:ff:8d:2c:d4:9b:2b:75:50:e9:69:87:f1:fd:41: 92:8e:58:85:6f:5a:db:b5:36:bc:31:55:cd:7f:ea: 2d:3b:5e:26:30:fb:63:6b:f1:42:a9:48:36:c1:1e: 22:a1:19:bc:77:f7:3c:5b:1d:9d:f3:49:21:a9:fe: 53:37:10:ca:65:a5:e1:19:43:c8:56:8e:b1:a9:80: de:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:64:08:5D:0E:AE:FD:F5:B8:E0:06:5C:0F:CD:4D:D8:B5:01:7F:D5 X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:5b:d3:58:40:ad:47:99:a4:32:47:72:cc:2b:57:f2:21:8f: 8a:8c:8b:bc:a8:09:13:b8:91:f2:58:ea:36:cf:65:2a:ae:dc: 7d:51:ac:9f:2d:0b:92:b9:bb:5f:45:8b:25:8c:a0:50:c6:f8: 4f:5d:3b:a1:76:b7:71:8e:f4:da:7d:b5:2a:fd:2e:ce:a6:36: 2f:dc:55:8e:35:0e:15:60:2e:ca:60:f4:c1:e0:e1:fa:3b:0a: c0:69:2d:98:e8:04:6a:b3:5c:36:e1:9d:06:7f:8b:7b:e2:8c: c2:31:ef:f6:65:d7:e1:ea:59:29:6a:25:34:b7:1f:af:52:06: 70:11:f9:f7:8b:45:29:5a:1b:fc:37:6c:5b:e2:ea:a4:02:f3: ea:1f:cf:c8:87:bf:2a:f3:88:70:ee:55:5b:6f:0c:7a:7f:f7: 2c:17:cc:66:cb:f5:4e:9a:01:56:73:a6:30:06:0d:28:0a:02: 5f:10:6f:b7:33:30:dd:49:9c:7b:64:01:05:01:b6:3e:72:3b: e2:0a:e3:ec:eb:87:98:31:63:b7:f4:f9:37:4e:15:55:1e:5a: 5f:56:37:c7:82:31:4c:29:d3:a2:3d:f8:73:43:d2:fc:c1:8a: e3:23:a2:77:b5:4f:08:38:8f:c0:02:f5:da:52:b9:53:3d:37: 1f:f9:1b:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjUxMjI2MTczNTA0WhcNMjYwMTAyMTczNTA0WjAYMRYwFAYD VQQDDA02OTRlYzc0OC0zMTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wKcNLHypN6cCs6BEek212yQwLj2loy4VmX+vozHJHeGhXOLhhS7iAnapq/R dqtQUdlComEGPPlVU2GgDapQx7JNuOuAtXg6sWdFzIMP+ftT2zJXqnnCJQVH6yX9 rHWvCFx6tPrxuWw7VpGsI/qBiue6r7N7mAO2MKd91hEF3kEw0rNKnwaCIlJuEEJj uodRuOpmXLeB9cgPyy37zDGj7tsEAj4boPpbPvZnRD6TbhSGGYdY/40s1JsrdVDp aYfx/UGSjliFb1rbtTa8MVXNf+otO14mMPtja/FCqUg2wR4ioRm8d/c8Wx2d80kh qf5TNxDKZaXhGUPIVo6xqYDekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJkCF0O rv31uOAGXA/NTdi1AX/VMB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGNS8xRUM0RTA5QURCNzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1I N3ZpN19ZZFBjNDV0cWpWWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1W9NYQK1HmaQyR3LMK1fyIY+KjIu8qAkTuJHyWOo2z2Uqrtx9Uayf LQuSubtfRYsljKBQxvhPXTuhdrdxjvTafbUq/S7OpjYv3FWONQ4VYC7KYPTB4OH6 OwrAaS2Y6ARqs1w24Z0Gf4t74ozCMe/2Zdfh6lkpaiU0tx+vUgZwEfn3i0UpWhv8 N2xb4uqkAvPqH8/Ih78q84hw7lVbbwx6f/csF8xmy/VOmgFWc6YwBg0oCgJfEG+3 MzDdSZx7ZAEFAbY+cjviCuPs64eYMWO39Pk3ThVVHlpfVjfHgjFMKdOiPfhzQ9L8 wYrjI6J3tU8IOI/AAvXaUrlTPTcf+Rvy -----END CERTIFICATE-----Generated at Sat Dec 27 02:48:30 2025 by rpki-client