This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft File: GaNgWeMX739niFziUq7bkZWPXmg.mft (raw, json) Hash identifier: GIbILc2aAQVb6fHQV8LTKySoSM9JWpBsrGWPSkmfym4= Subject key identifier: C3:9B:1D:A0:50:EA:2E:F7:C8:24:55:A6:2F:47:3C:94:C3:C5:15:B7 Authority key identifier: 19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 Certificate issuer: /CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft Manifest number: 01AF Signing time: Mon 29 Dec 2025 02:17:12 +0000 Manifest this update: Mon 29 Dec 2025 02:17:11 +0000 Manifest next update: Mon 05 Jan 2026 02:17:11 +0000 Files and hashes: 1: GaNgWeMX739niFziUq7bkZWPXmg.crl (hash: ahea+g/tTZY422RW5Svhu+Wav/nkAUT01J41becdS00=) 2: BD9131004E2811EEBC65304DC4F9AE02.roa (hash: mDyA8en4O2HoFPMoiw1GIv6+nKDmPcew5/y5uXwGm88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 02:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D857, serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Validity Not Before: Dec 29 02:17:11 2025 GMT Not After : Jan 5 02:17:11 2026 GMT Subject: CN=6951e4a8-8a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7e:96:81:58:06:f2:1c:fa:da:96:1a:1f:4f: 02:cd:12:f1:56:01:8e:d1:70:57:dc:70:d0:fb:30: d1:bd:a2:be:76:70:3b:4b:dc:af:a5:68:78:fb:90: d7:dd:3c:10:d5:d7:52:6d:24:5b:ea:8a:26:5e:36: 22:47:58:2d:2c:2c:bf:d2:ff:4b:af:06:81:77:e5: 8e:84:e5:04:43:b0:9f:2a:9e:71:6f:49:11:b7:7f: 87:c1:1a:1c:dd:6c:f1:31:8b:8e:33:22:11:8c:7a: ea:79:66:6a:27:cf:b8:3c:ee:6a:c1:8a:77:3b:7e: d2:5e:33:d8:6b:42:24:e5:3b:7a:e3:46:29:d2:24: c3:b1:3d:95:ef:62:94:33:1a:ef:ce:fd:1f:39:ea: 30:0d:9e:e2:69:f3:8f:29:c3:cd:a6:35:80:48:94: ad:a3:d5:c5:8b:b1:52:a9:8e:87:ed:09:8f:44:95: c3:7d:d8:c2:f1:4c:4b:63:75:27:1a:7c:cb:37:5a: 73:24:f5:e9:54:c9:67:7a:74:23:89:ed:8a:51:2e: b5:ec:3e:ee:12:60:62:25:6e:c8:5d:56:f1:ee:d6: 8e:68:9f:e0:53:66:48:8a:28:8f:d3:1b:17:2c:8b: 40:55:d8:2c:34:24:78:0e:6e:7b:1b:33:0b:7c:7e: 07:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:9B:1D:A0:50:EA:2E:F7:C8:24:55:A6:2F:47:3C:94:C3:C5:15:B7 X509v3 Authority Key Identifier: keyid:19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:93:8f:b9:d4:e9:e9:69:0f:15:04:7e:b2:62:7e:81:f1:34: f2:ce:ee:fd:47:5f:cf:e8:89:58:62:f5:ec:33:55:42:9d:81: 53:59:d9:dd:4f:9a:6b:da:d8:dd:0e:e4:6e:b2:26:59:d4:d5: da:07:3a:33:2c:76:ff:c9:9d:93:50:4d:4d:6b:2b:7d:e4:2b: 91:20:5d:e7:b4:4a:5e:09:46:52:92:be:1d:fd:f2:df:89:38: 59:49:ae:f2:82:c3:43:3a:04:94:70:fc:82:79:eb:f6:f1:0e: e8:87:11:7f:56:05:f7:b2:70:f8:11:43:bd:bd:c4:de:26:91: c3:84:04:35:2a:2f:59:24:be:dd:f9:0c:25:2c:2f:41:6d:0f: 30:07:16:77:84:90:72:bd:f9:85:d8:1a:4b:16:9e:d7:e6:2f: a0:46:42:b6:c4:17:01:2f:ac:e5:c8:bc:df:4d:f3:28:05:59: fe:0b:c2:82:e6:60:fa:55:f4:96:1b:3e:5a:78:2b:ae:41:9f: 26:49:24:3f:cd:47:1c:1c:0c:6b:1a:22:bb:0a:af:dc:a3:b6: a2:67:bb:39:c7:82:42:f7:2d:d6:b2:be:43:49:0f:83:17:6e: 50:f0:e9:1b:db:0e:33:87:88:a6:31:c1:c2:f1:d0:fc:6a:05: 90:af:df:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q4NTcxMTAvBgNVBAUTKDE5QTM2MDU5RTMxN0VGN0Y2Nzg4NUNFMjUyQUVEQjkx OTU4RjVFNjgwHhcNMjUxMjI5MDIxNzExWhcNMjYwMTA1MDIxNzExWjAYMRYwFAYD VQQDDA02OTUxZTRhOC04YTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0n6WgVgG8hz62pYaH08CzRLxVgGO0XBX3HDQ+zDRvaK+dnA7S9yvpWh4+5DX 3TwQ1ddSbSRb6oomXjYiR1gtLCy/0v9LrwaBd+WOhOUEQ7CfKp5xb0kRt3+HwRoc 3WzxMYuOMyIRjHrqeWZqJ8+4PO5qwYp3O37SXjPYa0Ik5Tt640Yp0iTDsT2V72KU Mxrvzv0fOeowDZ7iafOPKcPNpjWASJSto9XFi7FSqY6H7QmPRJXDfdjC8UxLY3Un GnzLN1pzJPXpVMlnenQjie2KUS617D7uEmBiJW7IXVbx7taOaJ/gU2ZIiiiP0xsX LItAVdgsNCR4Dm57GzMLfH4HYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMObHaBQ 6i73yCRVpi9HPJTDxRW3MB8GA1UdIwQYMBaAFBmjYFnjF+9/Z4hc4lKu25GVj15o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDg1Ny82MUM1Q0RCODRF MjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDczOW5pRnppVXE3YmtaV1BY bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dhTmdXZU1YNzM5bmlGemlVcTdia1pXUFhtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDg1Ny82MUM1Q0RCODRFMjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDcz OW5pRnppVXE3YmtaV1BYbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABk4+51OnpaQ8VBH6yYn6B8TTyzu79R1/P6IlYYvXsM1VCnYFTWdnd T5pr2tjdDuRusiZZ1NXaBzozLHb/yZ2TUE1Nayt95CuRIF3ntEpeCUZSkr4d/fLf iThZSa7ygsNDOgSUcPyCeev28Q7ohxF/VgX3snD4EUO9vcTeJpHDhAQ1Ki9ZJL7d +QwlLC9BbQ8wBxZ3hJByvfmF2BpLFp7X5i+gRkK2xBcBL6zlyLzfTfMoBVn+C8KC 5mD6VfSWGz5aeCuuQZ8mSSQ/zUccHAxrGiK7Cq/co7aiZ7s5x4JC9y3Wsr5DSQ+D F25Q8Okb2w4zh4imMcHC8dD8agWQr9+g -----END CERTIFICATE-----Generated at Wed Dec 31 00:08:20 2025 by rpki-client