This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft File: GoOKdo1b8PVMYaptorRQOBveZ8c.mft (raw, json) Hash identifier: tIcVT4Rpmdnz/ZrWtuoiKqyNdrT4nv+476Ryyx399wU= Subject key identifier: 49:4B:AA:2A:FC:DC:00:F3:7E:9B:86:B8:E5:EF:D8:31:8F:2E:13:FA Authority key identifier: 1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 Certificate issuer: /CN=A918FFA8/serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft Manifest number: 34F0 Signing time: Thu 18 Dec 2025 14:33:50 +0000 Manifest this update: Thu 18 Dec 2025 14:33:49 +0000 Manifest next update: Thu 25 Dec 2025 14:33:49 +0000 Files and hashes: 1: GoOKdo1b8PVMYaptorRQOBveZ8c.crl (hash: EH2zNKaOolKwOLYcu9aFL9BAFSrpla7cF/5KTTmOuRE=) 2: 2021C6F6795E11F0B07E6E6BC4F9AE02.roa (hash: /tr9Ms57wuKfsw+OEtuIOe0iJR3426UBPMZCKa1pr2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FFA8, serialNumber=1A838A768D5BF0F54C61AA6DA2B450381BDE67C7 Validity Not Before: Dec 18 14:33:49 2025 GMT Not After : Dec 25 14:33:49 2025 GMT Subject: CN=694410cd-8d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:0a:6f:b4:90:3c:4a:83:db:aa:7c:12:d0: 35:77:5c:c3:3b:db:86:b8:34:4c:1f:ae:81:e9:f4: 08:db:d4:27:e2:74:d4:d9:b6:29:8d:15:cd:0a:02: ba:79:76:25:32:2e:69:c1:66:06:1b:d1:0a:78:d5: b2:13:0b:2b:a9:0d:4e:fb:40:f3:c8:9b:89:28:1f: 96:77:0c:59:ad:9a:82:81:b7:ac:fd:42:4c:8e:0a: 1b:24:0c:e7:3b:48:a4:96:64:ab:d1:6e:7a:55:18: d9:9a:db:d6:74:59:0f:3a:14:2f:ab:83:0f:31:9d: 92:e4:88:3b:a4:df:8c:f2:01:e9:88:94:31:42:79: b0:09:4f:4d:b9:7b:81:40:49:3b:c2:b9:37:3d:7a: 61:37:53:7d:44:08:29:87:0c:65:5e:9c:5f:8c:5a: a9:70:f5:e8:bb:84:00:55:22:31:5f:08:eb:45:d2: 29:25:bd:36:ac:b4:fd:ac:91:e5:d9:57:91:8b:42: a8:e7:a9:b8:0b:56:de:09:06:0b:24:4d:fb:1b:c6: 3f:88:48:ef:56:41:83:50:66:e6:d1:2b:09:92:a2: e5:81:08:97:6f:79:fa:d4:02:a3:6d:47:e3:75:1f: fb:aa:be:3c:57:9f:0e:5f:9f:4c:56:bf:7d:69:78: aa:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4B:AA:2A:FC:DC:00:F3:7E:9B:86:B8:E5:EF:D8:31:8F:2E:13:FA X509v3 Authority Key Identifier: keyid:1A:83:8A:76:8D:5B:F0:F5:4C:61:AA:6D:A2:B4:50:38:1B:DE:67:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GoOKdo1b8PVMYaptorRQOBveZ8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FFA8/925533621D8B11E29DFD3DE608B02CD2/GoOKdo1b8PVMYaptorRQOBveZ8c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:11:c9:e6:35:5b:6d:d0:40:8a:d4:d7:f4:75:dd:20:c2:31: 4c:c9:94:5c:61:89:06:20:65:2c:45:e3:e2:64:9b:cd:2c:7d: d3:6a:95:6b:86:cc:1e:52:9a:ad:4f:87:11:fe:e8:ec:92:e3: 4c:06:2a:1b:76:59:c3:f8:43:e8:f5:99:36:f0:bd:27:7a:d4: fd:a1:c3:5a:2d:06:2a:40:80:aa:68:d2:62:83:84:e4:78:ff: 0f:e3:e7:b7:07:3a:2a:3a:b6:96:4b:8c:9f:35:83:2d:81:b0: f9:e8:f9:29:e2:3e:c8:04:95:e3:39:d9:21:59:a0:cd:ff:6b: 20:22:c9:76:18:1c:27:8e:c9:b8:b3:69:83:58:40:15:9b:5c: 38:be:d9:0b:ff:f7:1f:41:72:fe:f1:d6:05:2c:f3:2e:f6:d4: e4:03:82:39:54:aa:49:ed:77:5a:2e:90:b5:09:01:19:4f:8c: 5f:00:a0:7b:06:68:58:80:b2:81:79:06:37:0a:93:a1:5d:41: bc:91:bb:eb:47:ef:20:3b:46:bf:15:15:cd:48:c1:30:aa:7a: 82:6b:f1:ef:5c:a4:0b:4c:49:3d:e6:bd:6b:dc:69:26:08:55: 80:f4:dd:29:2b:48:37:bb:6d:16:33:b8:32:a9:b4:8e:5e:27: cb:e0:0b:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZGQTgxMTAvBgNVBAUTKDFBODM4QTc2OEQ1QkYwRjU0QzYxQUE2REEyQjQ1MDM4 MUJERTY3QzcwHhcNMjUxMjE4MTQzMzQ5WhcNMjUxMjI1MTQzMzQ5WjAYMRYwFAYD VQQDDA02OTQ0MTBjZC04ZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4oKb7SQPEqD26p8EtA1d1zDO9uGuDRMH66B6fQI29Qn4nTU2bYpjRXNCgK6 eXYlMi5pwWYGG9EKeNWyEwsrqQ1O+0DzyJuJKB+WdwxZrZqCgbes/UJMjgobJAzn O0iklmSr0W56VRjZmtvWdFkPOhQvq4MPMZ2S5Ig7pN+M8gHpiJQxQnmwCU9NuXuB QEk7wrk3PXphN1N9RAgphwxlXpxfjFqpcPXou4QAVSIxXwjrRdIpJb02rLT9rJHl 2VeRi0Ko56m4C1beCQYLJE37G8Y/iEjvVkGDUGbm0SsJkqLlgQiXb3n61AKjbUfj dR/7qr48V58OX59MVr99aXiq6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElLqir8 3ADzfpuGuOXv2DGPLhP6MB8GA1UdIwQYMBaAFBqDinaNW/D1TGGqbaK0UDgb3mfH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkZBOC85MjU1MzM2MjFE OEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQVk1ZYXB0b3JSUU9CdmVa OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dvT0tkbzFiOFBWTVlhcHRvclJRT0J2ZVo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkZBOC85MjU1MzM2MjFEOEIxMUUyOURGRDNERTYwOEIwMkNEMi9Hb09LZG8xYjhQ Vk1ZYXB0b3JSUU9CdmVaOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATEcnmNVtt0ECK1Nf0dd0gwjFMyZRcYYkGIGUsRePiZJvNLH3TapVr hsweUpqtT4cR/ujskuNMBiobdlnD+EPo9Zk28L0netT9ocNaLQYqQICqaNJig4Tk eP8P4+e3BzoqOraWS4yfNYMtgbD56Pkp4j7IBJXjOdkhWaDN/2sgIsl2GBwnjsm4 s2mDWEAVm1w4vtkL//cfQXL+8dYFLPMu9tTkA4I5VKpJ7XdaLpC1CQEZT4xfAKB7 BmhYgLKBeQY3CpOhXUG8kbvrR+8gO0a/FRXNSMEwqnqCa/HvXKQLTEk95r1r3Gkm CFWA9N0pK0g3u20WM7gyqbSOXifL4AuN -----END CERTIFICATE-----Generated at Fri Dec 19 21:56:12 2025 by rpki-client