This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: cmFExWhJWTkDQequevJePE01RttKgIUINEVsl4tOsrw= Subject key identifier: BA:BD:E5:BC:85:A8:E0:76:65:9E:DC:C5:A2:BB:35:30:7D:58:07:38 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 01A3 Signing time: Fri 19 Dec 2025 02:30:50 +0000 Manifest this update: Fri 19 Dec 2025 02:30:50 +0000 Manifest next update: Fri 26 Dec 2025 02:30:50 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: N41WRREz5IDXOyzce3tHo+/WE+PpNCprH9bM6XjDOoI=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: y4oU/tmfDIcfKqPlw3m/SWCw2QZiYO8Vo2XRM+uGFBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Dec 19 02:30:50 2025 GMT Not After : Dec 26 02:30:50 2025 GMT Subject: CN=6944b8da-99d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:37:06:24:66:a6:38:ec:4c:8b:32:10:6e:d5: df:27:d6:37:6c:d7:3d:bf:ee:50:49:63:77:57:bb: 22:36:22:98:24:6a:92:f3:97:80:82:16:d6:e5:30: 0a:2a:53:f6:38:2e:6a:dc:12:f3:6d:dc:40:23:98: 0a:8c:4e:77:d5:3f:52:42:cb:74:1c:ab:18:8e:da: 49:77:1f:ee:fd:cb:2d:bd:01:b9:76:41:2c:52:ac: 91:d3:42:2a:dd:f7:d2:6c:9d:65:49:be:7d:a8:3e: df:e3:8c:84:71:19:ce:b6:ce:ec:a5:8b:5c:4f:63: a8:f0:5c:56:b4:e1:43:53:e4:f5:e2:bc:bc:d0:c8: ff:9f:3f:97:57:d2:ef:5a:7d:ce:e1:07:a2:e3:e0: 50:4c:ed:57:60:24:78:9b:64:34:be:f2:4c:13:56: 3d:f5:31:1d:2f:4d:78:b6:ac:32:ca:d3:f2:dd:04: 8f:8b:ae:9d:33:99:62:02:24:56:86:af:13:c3:19: 7d:5a:39:98:55:fb:4e:68:98:1d:b5:6b:89:ae:ab: 61:92:13:9b:40:eb:fc:e2:92:27:39:b0:18:1e:fa: 85:1b:7c:17:55:37:84:ef:fb:8e:e5:f0:fd:88:aa: e4:b6:a1:6f:f7:37:89:5d:a3:53:7a:c5:83:8a:62: fc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BD:E5:BC:85:A8:E0:76:65:9E:DC:C5:A2:BB:35:30:7D:58:07:38 X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:84:1f:38:1a:74:f2:53:79:0e:46:a3:c2:b8:49:49:c6:28: 9d:59:2c:73:8f:c0:07:92:18:7e:93:8e:31:5f:5f:7a:3c:4b: 39:9b:d2:6e:23:a0:c8:04:74:3a:30:4b:0b:77:ca:e7:ba:d6: 6a:75:bc:ae:60:97:41:eb:65:ed:60:8e:2a:9f:b6:85:a8:1d: 2b:5b:e6:6d:87:1d:63:db:a1:30:f5:7d:7b:09:1a:f1:49:69: 00:db:d7:8d:9f:9a:b7:1a:13:61:8b:e2:cd:33:80:a0:14:34: f2:97:38:07:b0:12:ca:96:51:5c:de:21:6c:a8:a1:4a:46:71: d1:3e:75:50:38:8f:d9:3a:4d:7f:4e:61:89:b8:c7:e7:56:78: d1:ff:ca:9b:7d:4e:cc:33:fa:78:e5:13:d5:ec:d4:1b:e1:65: b1:7c:dd:93:d4:ec:9d:2e:6d:42:2e:cb:9d:a4:10:2e:fc:76: 77:7f:b9:f4:12:6a:08:6c:17:1f:a4:86:1d:be:c9:4b:68:67: e4:c8:ae:44:fa:40:c9:3f:81:f0:7b:a2:ad:a5:e9:1e:e6:d9: 7e:ba:42:cc:03:2b:f8:fb:77:91:aa:70:a5:40:48:f1:c4:6f: 47:39:ad:cc:ef:f9:e2:70:08:a2:84:87:36:b6:d6:9d:37:bf: 17:f1:30:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUxMjE5MDIzMDUwWhcNMjUxMjI2MDIzMDUwWjAYMRYwFAYD VQQDDA02OTQ0YjhkYS05OWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlzcGJGamOOxMizIQbtXfJ9Y3bNc9v+5QSWN3V7siNiKYJGqS85eAghbW5TAK KlP2OC5q3BLzbdxAI5gKjE531T9SQst0HKsYjtpJdx/u/cstvQG5dkEsUqyR00Iq 3ffSbJ1lSb59qD7f44yEcRnOts7spYtcT2Oo8FxWtOFDU+T14ry80Mj/nz+XV9Lv Wn3O4Qei4+BQTO1XYCR4m2Q0vvJME1Y99TEdL014tqwyytPy3QSPi66dM5liAiRW hq8Twxl9WjmYVftOaJgdtWuJrqthkhObQOv84pInObAYHvqFG3wXVTeE7/uO5fD9 iKrktqFv9zeJXaNTesWDimL8EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLq95byF qOB2ZZ7cxaK7NTB9WAc4MB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJhB84GnTyU3kORqPCuElJxiidWSxzj8AHkhh+k44xX196PEs5m9Ju I6DIBHQ6MEsLd8rnutZqdbyuYJdB62XtYI4qn7aFqB0rW+Zthx1j26Ew9X17CRrx SWkA29eNn5q3GhNhi+LNM4CgFDTylzgHsBLKllFc3iFsqKFKRnHRPnVQOI/ZOk1/ TmGJuMfnVnjR/8qbfU7MM/p45RPV7NQb4WWxfN2T1OydLm1CLsudpBAu/HZ3f7n0 EmoIbBcfpIYdvslLaGfkyK5E+kDJP4Hwe6Ktpeke5tl+ukLMAyv4+3eRqnClQEjx xG9HOa3M7/nicAiihIc2ttadN78X8TD/ -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:13 2025 by rpki-client