This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: OD43gV4kzid4CykTx/puN4LmItznwXIXTTvxsof/qoo= Subject key identifier: F7:DF:DD:42:C5:82:84:F9:A3:31:64:76:85:BE:BC:93:29:E2:D1:16 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1D60 Signing time: Sat 20 Dec 2025 15:57:42 +0000 Manifest this update: Sat 20 Dec 2025 15:57:42 +0000 Manifest next update: Sat 27 Dec 2025 15:57:42 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: WWdNz07ZLD6t39X1690MJZqv1BFZfLNL3RYBJAVPOfo=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) 4: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 5: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 6: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7583 (0x1d9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Dec 20 15:57:42 2025 GMT Not After : Dec 27 15:57:42 2025 GMT Subject: CN=6946c776-d1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:52:aa:c5:d6:44:bb:a4:57:2f:91:56:c6: 22:d9:9b:2a:ae:9b:80:e0:0f:0b:df:f5:6e:91:72: 5f:76:d9:a5:73:8c:c8:88:26:70:22:7d:ce:c0:b7: 47:a9:34:e9:ff:32:f3:da:42:b7:00:2d:8a:f6:3b: f9:23:aa:27:28:4e:4e:b0:06:b2:7f:03:f9:de:7e: 00:2b:2c:45:a7:d4:45:c8:7e:5b:0b:56:82:4f:a2: 5d:e0:88:30:00:f7:3e:b4:0b:41:8b:14:0b:81:67: eb:cb:50:47:e3:2e:c3:72:0e:c4:76:73:3a:13:37: 2b:f5:c7:f5:b2:d7:cc:2e:25:92:db:f3:0d:27:4a: 10:aa:da:52:66:15:99:41:14:76:a5:4f:ff:0b:c9: 35:c7:0c:7d:78:5b:6f:fe:0f:b0:8e:e0:87:17:8b: 66:0d:1e:8c:34:71:73:72:1a:9e:a0:71:4c:d8:96: 12:d8:e6:83:34:e6:64:5b:52:d3:41:cf:46:57:74: 44:b4:fe:c3:12:b2:ae:ad:e1:bc:b5:10:f1:29:a8: f6:7a:ae:d0:f2:f2:22:f5:a1:19:e8:db:08:72:37: 9d:48:5a:b7:6d:30:5e:e2:13:6b:1b:e5:25:0b:2a: 40:0d:40:03:c4:c3:0b:17:3c:85:09:7a:58:f1:6e: 2f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DF:DD:42:C5:82:84:F9:A3:31:64:76:85:BE:BC:93:29:E2:D1:16 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:40:29:27:b5:13:d1:4c:ab:cc:71:a2:14:9c:48:62:6b:ef: 73:d3:b3:17:c6:a0:f5:d4:c2:d1:47:95:e0:d1:3e:ca:81:2b: 5f:f8:fd:3d:49:c2:63:f7:f9:f6:15:dd:82:fc:3a:c4:ff:cb: 38:21:79:3c:cb:31:32:45:54:12:4e:c9:3a:a2:4b:d0:77:62: dc:60:b2:91:ec:68:da:4a:cd:47:90:6d:08:26:1b:43:99:82: 2d:7d:88:15:02:20:a0:69:82:94:1b:2f:72:f4:e8:5b:c9:b9: 4e:f3:bb:f8:72:27:f1:a0:46:19:a2:41:8f:a9:bb:98:f0:47: 1e:03:26:64:fb:e3:99:70:6f:49:e2:14:83:c4:9d:4e:84:94: 52:fe:0f:26:4b:eb:67:f4:07:98:d7:bb:a9:89:8d:c5:1b:98: 7d:b0:f2:b1:21:cf:d4:cf:08:35:59:3e:cd:66:99:ce:10:15: e2:16:88:ec:3d:a4:f2:5e:6f:3b:00:f9:4e:81:92:0b:40:3c: 3d:be:23:40:82:39:a3:d0:74:96:e9:58:5a:cd:a7:a8:e8:46: bb:66:31:13:9d:c0:6d:3b:91:14:9f:de:c7:ce:71:47:ca:f3: 55:91:f0:d4:8c:f2:7b:95:52:a9:79:7b:6c:d8:16:07:b2:00: 49:39:62:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUxMjIwMTU1NzQyWhcNMjUxMjI3MTU1NzQyWjAYMRYwFAYD VQQDDA02OTQ2Yzc3Ni1kMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjJSqsXWRLukVy+RVsYi2ZsqrpuA4A8L3/VukXJfdtmlc4zIiCZwIn3OwLdH qTTp/zLz2kK3AC2K9jv5I6onKE5OsAayfwP53n4AKyxFp9RFyH5bC1aCT6Jd4Igw APc+tAtBixQLgWfry1BH4y7Dcg7EdnM6Ezcr9cf1stfMLiWS2/MNJ0oQqtpSZhWZ QRR2pU//C8k1xwx9eFtv/g+wjuCHF4tmDR6MNHFzchqeoHFM2JYS2OaDNOZkW1LT Qc9GV3REtP7DErKureG8tRDxKaj2eq7Q8vIi9aEZ6NsIcjedSFq3bTBe4hNrG+Ul CypADUADxMMLFzyFCXpY8W4vUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPff3ULF goT5ozFkdoW+vJMp4tEWMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/QCkntRPRTKvMcaIUnEhia+9z07MXxqD11MLRR5Xg0T7KgStf+P09 ScJj9/n2Fd2C/DrE/8s4IXk8yzEyRVQSTsk6okvQd2LcYLKR7GjaSs1HkG0IJhtD mYItfYgVAiCgaYKUGy9y9OhbyblO87v4cifxoEYZokGPqbuY8EceAyZk++OZcG9J 4hSDxJ1OhJRS/g8mS+tn9AeY17upiY3FG5h9sPKxIc/Uzwg1WT7NZpnOEBXiFojs PaTyXm87APlOgZILQDw9viNAgjmj0HSW6Vhazaeo6Ea7ZjETncBtO5EUn97HznFH yvNVkfDUjPJ7lVKpeXts2BYHsgBJOWI+ -----END CERTIFICATE-----Generated at Sat Dec 20 20:50:00 2025 by rpki-client