This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: E1/HoVx1chlar4pORoPUI0dShWlt4b6Q68rRgXF+5e4= Subject key identifier: D7:17:6B:CE:68:85:CF:39:10:63:E4:07:48:C2:53:33:77:9C:52:E8 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: A7 Signing time: Wed 31 Dec 2025 05:20:32 +0000 Manifest this update: Wed 31 Dec 2025 05:20:31 +0000 Manifest next update: Wed 07 Jan 2026 05:20:31 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: F2NvOlp0LNmDeV5Dxkvmw1FPLsUd9UEScw9GXo4dqVA=) 2: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (hash: WTYmLvNpyq/A5Kbra5mtKRBFCjY1e4fS3rGmshvrNGY=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Dec 31 05:20:31 2025 GMT Not After : Jan 7 05:20:31 2026 GMT Subject: CN=6954b2a0-a9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:45:cc:f5:38:3b:c8:13:d3:bb:fd:9c:2a:c2: 8d:fc:33:e2:bd:28:77:39:4e:24:e8:22:94:29:a2: b6:13:ea:a1:64:1e:34:78:41:76:23:ae:04:6b:71: b7:15:5b:1f:99:d4:bf:f6:0d:e8:d3:50:21:05:a3: 22:e4:39:ea:5d:7a:f0:90:e5:26:a2:3d:66:b7:e5: c8:5f:d4:4b:c6:98:2b:53:a5:b7:26:ef:75:cf:34: 05:46:67:4b:49:e0:ab:ca:5b:bd:11:84:9b:0b:f6: bd:46:bf:7b:c0:62:20:45:69:7c:f7:29:93:27:02: f7:8a:58:96:e7:e5:cb:75:6c:58:04:4f:6c:df:04: 34:f2:18:0c:74:24:62:f5:1d:84:04:5c:a6:b0:9b: 02:cc:7d:2c:cf:e2:f3:8b:a6:2e:dd:65:46:b1:27: 22:76:2f:88:30:e0:39:f8:6a:50:75:75:7d:99:d0: 36:18:b1:79:fb:19:90:f4:48:26:f8:1e:bd:95:23: 32:00:29:66:c0:81:a3:ad:72:5b:74:a2:51:6a:36: 25:56:47:5c:93:e6:fb:40:4a:55:90:b1:83:0a:a5: 1e:5d:81:6d:7e:71:be:26:0f:d6:35:0a:3a:b1:66: 16:f8:ab:9a:7c:73:b0:e3:f2:5f:ac:b3:dd:4d:7c: 78:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:17:6B:CE:68:85:CF:39:10:63:E4:07:48:C2:53:33:77:9C:52:E8 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:62:4d:a4:d8:b7:9a:a7:33:c9:6c:67:02:ed:a2:fd:2e:f9: b8:f1:06:0a:04:57:ca:03:c9:c3:a4:2d:ed:6d:78:11:70:80: f0:de:da:89:ee:a0:01:00:c2:73:20:f2:cb:2f:38:33:06:00: 68:d4:41:8f:f0:bd:36:f6:81:bd:87:56:f7:7e:5a:2c:5a:11: 54:b4:f3:91:1d:cd:85:5b:b7:4a:37:34:74:e2:e2:80:9a:b1: 6b:cc:b9:4e:5c:4a:ee:81:33:de:e0:75:90:fc:07:36:94:9b: 70:35:1a:db:89:0f:2d:43:7c:5d:bc:4a:8a:01:f6:63:93:bf: fb:f3:c5:57:e7:ea:09:0d:9e:a2:3b:d8:28:89:cc:af:52:7b: 2b:a7:22:4c:2a:85:8e:50:00:9b:e8:0c:f0:c2:b0:0f:c2:5c: 40:22:c5:39:cf:ed:44:38:c3:7e:89:65:76:2e:d7:d7:17:63: 26:1e:3d:56:6d:66:b6:b2:7f:0c:e3:50:dd:3a:fc:a7:cb:cb: 06:36:5e:2e:84:72:77:ac:d4:3a:6c:93:ad:89:58:db:34:e7: 7a:1f:4c:5c:27:7d:46:c1:6d:03:b1:e9:f6:b8:00:bb:6d:43: 41:e1:ea:19:8b:dc:5c:cd:36:0e:75:0e:9c:84:bf:34:c8:06: 3a:27:52:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjUxMjMxMDUyMDMxWhcNMjYwMTA3MDUyMDMxWjAYMRYwFAYD VQQDDA02OTU0YjJhMC1hOWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlkXM9Tg7yBPTu/2cKsKN/DPivSh3OU4k6CKUKaK2E+qhZB40eEF2I64Ea3G3 FVsfmdS/9g3o01AhBaMi5DnqXXrwkOUmoj1mt+XIX9RLxpgrU6W3Ju91zzQFRmdL SeCrylu9EYSbC/a9Rr97wGIgRWl89ymTJwL3iliW5+XLdWxYBE9s3wQ08hgMdCRi 9R2EBFymsJsCzH0sz+Lzi6Yu3WVGsScidi+IMOA5+GpQdXV9mdA2GLF5+xmQ9Egm +B69lSMyAClmwIGjrXJbdKJRajYlVkdck+b7QEpVkLGDCqUeXYFtfnG+Jg/WNQo6 sWYW+KuafHOw4/JfrLPdTXx47wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcXa85o hc85EGPkB0jCUzN3nFLoMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjFDQy8zQUZDMzNFMkVGNjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1 WTFjb2YtSlFtUngxU1JSVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkYk2k2LeapzPJbGcC7aL9Lvm48QYKBFfKA8nDpC3tbXgRcIDw3tqJ 7qABAMJzIPLLLzgzBgBo1EGP8L029oG9h1b3flosWhFUtPORHc2FW7dKNzR04uKA mrFrzLlOXErugTPe4HWQ/Ac2lJtwNRrbiQ8tQ3xdvEqKAfZjk7/788VX5+oJDZ6i O9goicyvUnsrpyJMKoWOUACb6AzwwrAPwlxAIsU5z+1EOMN+iWV2LtfXF2MmHj1W bWa2sn8M41DdOvyny8sGNl4uhHJ3rNQ6bJOtiVjbNOd6H0xcJ31GwW0Dsen2uAC7 bUNB4eoZi9xczTYOdQ6chL80yAY6J1Iq -----END CERTIFICATE-----Generated at Wed Dec 31 21:47:48 2025 by rpki-client