This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: tdkMC4ZYnqe6Ywtacs5L/95wUlEgOKUjpiZwi3vuUBY= Subject key identifier: 89:A7:CA:EC:33:EF:90:74:43:3B:A5:E3:1F:F1:4D:CF:E3:0E:6C:7E Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: DA Signing time: Fri 05 Dec 2025 03:36:24 +0000 Manifest this update: Fri 05 Dec 2025 03:36:23 +0000 Manifest next update: Fri 12 Dec 2025 03:36:23 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: V0F/cg+/FGbMuoLi9Nj8sglJTwOKtJZWDf8aEWD8q44=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Dec 5 03:36:23 2025 GMT Not After : Dec 12 03:36:23 2025 GMT Subject: CN=69325337-de33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fd:47:82:7e:0f:c9:97:37:83:24:c2:85:7e: c6:17:ed:c1:e5:11:3e:f5:cb:a0:d4:ab:f4:f4:97: 35:63:28:ac:60:b7:94:e8:3a:69:03:16:75:4a:70: 72:1c:ab:21:cd:cc:97:27:57:d6:4e:31:3e:05:d0: 7b:e6:c2:8d:73:9e:0f:c5:0f:3b:c4:ae:44:72:21: b2:ee:79:f6:42:02:f9:f7:a6:01:1c:0d:c8:1f:7d: 6c:09:1b:e6:84:c7:1a:0e:53:02:4b:64:3c:e6:86: 39:36:42:ae:84:80:55:a6:f6:a6:a4:4e:db:16:96: 35:e3:2b:fb:ee:4d:54:f0:62:7d:a1:57:59:b8:d9: 25:32:59:dd:99:c1:ce:c1:e9:c9:57:3e:a9:c8:e9: cc:16:6e:08:51:46:3a:00:e3:a9:7e:67:f7:44:3b: db:8a:06:a5:6e:24:03:0f:c3:86:45:e8:1f:bc:68: ff:78:a4:f5:97:59:ba:8c:cc:a4:dc:c2:37:35:29: 16:ec:95:93:86:83:48:85:3d:b5:4a:7a:fd:aa:b3: 92:a3:cf:4f:9a:01:8d:29:4a:02:51:02:14:43:cf: 79:bc:0f:e7:1d:6c:17:f3:b9:e9:a5:48:2d:55:58: ad:58:c2:00:85:76:c5:18:46:db:ed:2e:2a:ab:68: 7b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A7:CA:EC:33:EF:90:74:43:3B:A5:E3:1F:F1:4D:CF:E3:0E:6C:7E X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:fe:63:ff:68:cb:99:98:ab:3b:b7:b8:c5:28:34:58:95:34: a4:18:18:38:4d:6b:80:27:ec:47:61:c7:1b:63:c4:98:ca:ee: 9e:f2:a5:33:a3:27:c0:fb:8c:23:26:27:c5:39:ca:9b:a2:94: 21:d8:12:b9:c9:13:bd:ed:25:2d:6c:64:f6:c6:7b:5a:72:b4: 86:2f:b2:36:78:10:8e:30:e9:cf:c6:fc:07:61:b7:a5:2f:98: 5c:a2:18:e5:ef:68:c3:22:ba:5c:2b:91:2b:7b:62:4a:70:40: f4:2a:7c:36:60:ab:c2:cc:26:ea:ba:7e:fd:03:2b:12:b4:3b: ed:5f:98:ff:7b:c0:00:bc:6d:46:79:bd:82:de:5b:58:ed:2c: d1:7f:65:1a:53:75:77:e0:ed:73:a0:57:26:d6:5b:b9:a9:54: 92:30:d8:44:a5:10:b7:ac:81:6e:fc:8a:57:bc:ed:0f:52:5e: 40:f0:c4:30:66:96:1e:13:87:b5:70:16:5a:60:ef:09:69:a1: 50:12:b2:e8:cc:77:dc:b8:4e:45:33:02:0d:2f:fd:8d:48:9c: c4:f9:00:24:5f:71:ff:47:a2:d9:ad:24:5c:b8:45:0e:a9:5a: 4d:b6:24:c4:51:d8:ab:fc:13:e4:cd:e2:19:82:83:af:da:0c: be:66:1f:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUxMjA1MDMzNjIzWhcNMjUxMjEyMDMzNjIzWjAYMRYwFAYD VQQDEw02OTMyNTMzNy1kZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyP1Hgn4PyZc3gyTChX7GF+3B5RE+9cug1Kv09Jc1YyisYLeU6DppAxZ1SnBy HKshzcyXJ1fWTjE+BdB75sKNc54PxQ87xK5EciGy7nn2QgL596YBHA3IH31sCRvm hMcaDlMCS2Q85oY5NkKuhIBVpvampE7bFpY14yv77k1U8GJ9oVdZuNklMlndmcHO wenJVz6pyOnMFm4IUUY6AOOpfmf3RDvbigalbiQDD8OGRegfvGj/eKT1l1m6jMyk 3MI3NSkW7JWThoNIhT21Snr9qrOSo89PmgGNKUoCUQIUQ895vA/nHWwX87nppUgt VVitWMIAhXbFGEbb7S4qq2h7+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImnyuwz 75B0Qzul4x/xTc/jDmx+MB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl/mP/aMuZmKs7t7jFKDRYlTSkGBg4TWuAJ+xHYccbY8SYyu6e8qUz oyfA+4wjJifFOcqbopQh2BK5yRO97SUtbGT2xntacrSGL7I2eBCOMOnPxvwHYbel L5hcohjl72jDIrpcK5Ere2JKcED0Knw2YKvCzCbqun79AysStDvtX5j/e8AAvG1G eb2C3ltY7SzRf2UaU3V34O1zoFcm1lu5qVSSMNhEpRC3rIFu/IpXvO0PUl5A8MQw ZpYeE4e1cBZaYO8JaaFQErLozHfcuE5FMwINL/2NSJzE+QAkX3H/R6LZrSRcuEUO qVpNtiTEUdir/BPkzeIZgoOv2gy+Zh88 -----END CERTIFICATE-----Generated at Sun Dec 7 02:12:47 2025 by rpki-client