This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft File: GaNgWeMX739niFziUq7bkZWPXmg.mft (raw, json) Hash identifier: SNP8+PjBR63nrlUEOH07dTempKbh2XWF22+8g1X1Y7s= Subject key identifier: AC:EB:E9:50:B8:05:33:58:45:C5:7E:F9:72:64:79:9E:DE:8D:61:BF Authority key identifier: 19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 Certificate issuer: /CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft Manifest number: 01AB Signing time: Sun 21 Dec 2025 02:26:18 +0000 Manifest this update: Sun 21 Dec 2025 02:26:17 +0000 Manifest next update: Sun 28 Dec 2025 02:26:17 +0000 Files and hashes: 1: GaNgWeMX739niFziUq7bkZWPXmg.crl (hash: 5VtG4kFWXYlH32AV9U9tJ3lEVltGbrjSud1UWWr44Sk=) 2: BD9131004E2811EEBC65304DC4F9AE02.roa (hash: mDyA8en4O2HoFPMoiw1GIv6+nKDmPcew5/y5uXwGm88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D857, serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Validity Not Before: Dec 21 02:26:17 2025 GMT Not After : Dec 28 02:26:17 2025 GMT Subject: CN=69475ac9-b4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f2:11:4a:40:fe:46:08:d1:12:6c:e8:ae:44: 98:0e:b3:f2:75:0c:67:3d:60:78:d1:48:d9:37:ff: d7:95:c5:3c:f1:fd:e8:50:6b:5e:49:a3:a4:a5:40: 0f:dd:10:9d:e4:1a:7a:95:ab:4a:d4:34:59:7a:52: 75:ac:04:25:25:dc:aa:81:a9:9a:7c:e5:02:5e:11: 42:83:c6:72:40:f3:e6:94:5a:ac:7b:52:eb:d3:62: c6:ba:6c:bc:11:60:f6:cf:42:15:88:c8:bc:b2:78: 8c:c8:e9:92:d2:ce:d4:69:ea:2e:88:c8:11:64:44: e2:7f:40:f2:0e:0c:56:5a:84:88:02:30:14:26:e3: f7:38:71:43:0f:29:85:0a:56:cc:32:e1:29:5b:0d: fc:f8:ee:33:e2:20:6c:2d:da:9e:28:63:30:f0:92: 10:b8:3f:08:32:1d:85:45:cf:f0:4e:22:03:88:37: e1:b2:14:6d:b4:ab:15:a7:d2:d5:90:77:d9:68:9d: 09:a2:81:48:a1:7d:91:ca:e4:b7:1d:ed:1d:91:44: 2d:20:18:f8:e8:2a:02:f4:d8:4f:01:c8:fe:80:ad: 20:8f:b1:e4:7d:d1:8c:ea:3c:34:92:e7:86:6c:f3: 22:2e:4b:61:7b:81:04:c0:c2:4f:06:3f:90:11:5f: 5b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:EB:E9:50:B8:05:33:58:45:C5:7E:F9:72:64:79:9E:DE:8D:61:BF X509v3 Authority Key Identifier: keyid:19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:10:b4:0f:27:f0:2b:85:7f:7f:c8:d2:c0:8d:2c:5c:33:ca: 09:6f:72:4e:3d:4d:df:8e:d9:e6:e8:54:64:b4:6b:7d:90:68: b7:c3:8b:2c:a0:59:84:71:5c:f7:23:48:ce:40:5a:52:d7:aa: 40:e8:39:15:51:8b:62:90:a9:36:e2:47:81:7c:45:6c:30:b9: c4:ce:86:7b:46:09:2c:b2:e7:b9:31:9e:5d:0f:15:84:c9:1a: 92:76:22:c4:a0:fb:15:08:f3:0f:f8:d5:ec:77:56:f9:48:84: d2:19:4e:aa:96:4e:05:ca:e5:a5:50:bd:e2:87:a1:77:12:7d: ec:0d:7f:86:fc:48:0b:ff:f1:d2:83:a4:38:eb:a1:34:07:2e: c9:b1:a4:d1:b3:6f:6e:e8:8b:1b:0e:2c:3d:be:2d:0d:71:8b: 80:86:e5:f1:81:c7:0a:e1:4d:0e:ad:7f:9b:64:0a:17:bc:9f: 58:a4:41:e0:ca:d0:19:3b:2d:8a:a0:0f:b0:59:fe:c9:29:79: c1:07:b5:f4:92:7d:54:bf:1a:6f:6c:40:49:f6:12:bf:6b:95: 41:31:bc:e8:68:5b:02:d6:78:a0:11:a0:a8:08:05:2b:b9:10: bb:a3:d7:1e:88:41:49:b1:49:2d:fe:1d:30:c3:5d:25:3c:02: fe:8d:2d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q4NTcxMTAvBgNVBAUTKDE5QTM2MDU5RTMxN0VGN0Y2Nzg4NUNFMjUyQUVEQjkx OTU4RjVFNjgwHhcNMjUxMjIxMDIyNjE3WhcNMjUxMjI4MDIyNjE3WjAYMRYwFAYD VQQDDA02OTQ3NWFjOS1iNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/IRSkD+RgjREmzorkSYDrPydQxnPWB40UjZN//XlcU88f3oUGteSaOkpUAP 3RCd5Bp6latK1DRZelJ1rAQlJdyqgamafOUCXhFCg8ZyQPPmlFqse1Lr02LGumy8 EWD2z0IViMi8sniMyOmS0s7UaeouiMgRZETif0DyDgxWWoSIAjAUJuP3OHFDDymF ClbMMuEpWw38+O4z4iBsLdqeKGMw8JIQuD8IMh2FRc/wTiIDiDfhshRttKsVp9LV kHfZaJ0JooFIoX2RyuS3He0dkUQtIBj46CoC9NhPAcj+gK0gj7HkfdGM6jw0kueG bPMiLkthe4EEwMJPBj+QEV9beQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzr6VC4 BTNYRcV++XJkeZ7ejWG/MB8GA1UdIwQYMBaAFBmjYFnjF+9/Z4hc4lKu25GVj15o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDg1Ny82MUM1Q0RCODRF MjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDczOW5pRnppVXE3YmtaV1BY bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dhTmdXZU1YNzM5bmlGemlVcTdia1pXUFhtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDg1Ny82MUM1Q0RCODRFMjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDcz OW5pRnppVXE3YmtaV1BYbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWELQPJ/ArhX9/yNLAjSxcM8oJb3JOPU3fjtnm6FRktGt9kGi3w4ss oFmEcVz3I0jOQFpS16pA6DkVUYtikKk24keBfEVsMLnEzoZ7Rgkssue5MZ5dDxWE yRqSdiLEoPsVCPMP+NXsd1b5SITSGU6qlk4FyuWlUL3ih6F3En3sDX+G/EgL//HS g6Q466E0By7JsaTRs29u6IsbDiw9vi0NcYuAhuXxgccK4U0OrX+bZAoXvJ9YpEHg ytAZOy2KoA+wWf7JKXnBB7X0kn1UvxpvbEBJ9hK/a5VBMbzoaFsC1nigEaCoCAUr uRC7o9ceiEFJsUkt/h0ww10lPAL+jS2M -----END CERTIFICATE-----Generated at Mon Dec 22 09:44:36 2025 by rpki-client