This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: kC7e+eZ+ImNgM6XxqFMboFORCyW2zKGgesrk1THRrIo= Subject key identifier: 17:3A:38:12:81:DD:C5:EF:1F:B8:09:04:5E:55:F7:FC:6B:10:E2:64 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: A2 Signing time: Sun 21 Dec 2025 05:27:42 +0000 Manifest this update: Sun 21 Dec 2025 05:27:41 +0000 Manifest next update: Sun 28 Dec 2025 05:27:41 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: Z10mv3H5mf0VUbOlrMVbKTrEBLD1rpVbwO190SWYpAQ=) 2: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) 3: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (hash: WTYmLvNpyq/A5Kbra5mtKRBFCjY1e4fS3rGmshvrNGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Dec 21 05:27:41 2025 GMT Not After : Dec 28 05:27:41 2025 GMT Subject: CN=6947854e-5539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:29:cd:a1:cc:00:cf:fe:d7:a3:c3:d8:c9:70: 27:a0:bf:0f:b9:9e:91:d4:27:d7:80:74:c4:ac:da: a6:44:de:94:fc:28:c8:72:18:b1:1e:25:e1:c2:59: 8b:02:73:f9:ab:59:45:50:ad:87:da:24:57:19:9b: b0:03:ae:70:6a:d1:50:30:d6:23:8b:b4:ac:cf:26: 70:ca:d2:df:5e:da:72:fb:83:a9:16:e0:93:64:2d: f4:aa:fc:a5:01:fa:63:0a:c6:77:a7:0a:11:44:8e: 16:19:38:8a:40:b8:17:07:c2:f8:e8:d7:62:cb:d9: 0c:98:a6:47:58:2c:11:41:aa:66:39:59:b6:03:dc: 7a:a8:e0:35:31:2b:29:17:58:26:bd:0a:f1:91:d1: bc:71:4c:48:e0:b0:53:9e:2c:d2:2f:c1:8f:66:f5: d6:c1:c4:0e:ed:a0:4d:f6:c6:e2:e7:54:07:72:23: 18:fb:1a:12:bf:70:a5:a2:3d:99:c9:51:34:53:36: 04:0a:50:b9:78:54:ff:55:25:cb:50:94:57:41:31: 87:f7:4e:3c:fe:14:8e:84:50:a4:76:97:58:f5:eb: d4:d2:62:22:73:8a:e2:1a:6e:12:da:d1:43:f8:a9: bb:c1:6e:53:46:8a:79:74:ab:05:34:a0:38:e2:de: b8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3A:38:12:81:DD:C5:EF:1F:B8:09:04:5E:55:F7:FC:6B:10:E2:64 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:4c:78:c6:80:32:e2:71:a0:24:2b:6b:bf:86:14:a4:83:65: f4:5e:f2:7d:da:5e:53:24:5a:36:97:4f:02:46:c3:a8:c5:8c: de:de:51:6f:c2:33:08:4c:2a:86:54:d9:c6:95:0f:ad:bb:95: 91:e4:32:93:26:fd:3a:e0:04:c4:5f:fb:bb:8b:e4:6b:85:f4: 21:fe:09:49:a5:1c:af:c0:3f:42:7d:13:2e:a7:60:07:87:63: 28:f0:d3:cd:10:98:81:3e:63:b4:da:bd:54:37:d6:bb:72:5a: 06:2d:64:88:5b:28:be:c4:ff:80:52:fb:ec:5b:68:64:c5:9c: e2:4b:43:ef:bd:9a:fd:d1:fb:05:c3:c9:b9:ff:46:eb:3d:84: 9d:7d:8d:44:f8:a3:48:9a:98:a4:2d:c2:79:6a:6a:19:fc:c5: f0:92:1d:91:e8:30:74:51:bd:6d:99:31:f1:ee:79:be:31:ba: f8:c5:81:63:66:a8:07:f8:e4:84:aa:2b:c7:0e:0d:ba:a6:de: 48:93:92:7f:01:86:2f:08:d0:a7:02:3a:75:cd:98:3f:50:98: 1f:0b:9e:9a:a4:62:e3:06:32:6f:34:43:2c:f1:66:98:8a:28: 61:2a:f7:11:46:34:ae:a3:aa:03:ae:20:14:43:3f:3e:7d:e8: 48:fd:65:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjUxMjIxMDUyNzQxWhcNMjUxMjI4MDUyNzQxWjAYMRYwFAYD VQQDDA02OTQ3ODU0ZS01NTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApinNocwAz/7Xo8PYyXAnoL8PuZ6R1CfXgHTErNqmRN6U/CjIchixHiXhwlmL AnP5q1lFUK2H2iRXGZuwA65watFQMNYji7SszyZwytLfXtpy+4OpFuCTZC30qvyl AfpjCsZ3pwoRRI4WGTiKQLgXB8L46Ndiy9kMmKZHWCwRQapmOVm2A9x6qOA1MSsp F1gmvQrxkdG8cUxI4LBTnizSL8GPZvXWwcQO7aBN9sbi51QHciMY+xoSv3Cloj2Z yVE0UzYEClC5eFT/VSXLUJRXQTGH9048/hSOhFCkdpdY9evU0mIic4riGm4S2tFD +Km7wW5TRop5dKsFNKA44t64LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc6OBKB 3cXvH7gJBF5V9/xrEOJkMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjFDQy8zQUZDMzNFMkVGNjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1 WTFjb2YtSlFtUngxU1JSVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpTHjGgDLicaAkK2u/hhSkg2X0XvJ92l5TJFo2l08CRsOoxYze3lFv wjMITCqGVNnGlQ+tu5WR5DKTJv064ATEX/u7i+RrhfQh/glJpRyvwD9CfRMup2AH h2Mo8NPNEJiBPmO02r1UN9a7cloGLWSIWyi+xP+AUvvsW2hkxZziS0PvvZr90fsF w8m5/0brPYSdfY1E+KNImpikLcJ5amoZ/MXwkh2R6DB0Ub1tmTHx7nm+Mbr4xYFj ZqgH+OSEqivHDg26pt5Ik5J/AYYvCNCnAjp1zZg/UJgfC56apGLjBjJvNEMs8WaY iihhKvcRRjSuo6oDriAUQz8+fehI/WXL -----END CERTIFICATE-----Generated at Sun Dec 21 17:23:09 2025 by rpki-client