This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: JvHVh0ZCZItLdYGErbP929xw0IJ+tad9lFLMo56Oaoc= Subject key identifier: B2:07:05:88:18:9D:E9:69:D0:DE:D0:D2:F0:B7:BC:3B:98:69:7A:31 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0D5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0D0D Signing time: Thu 18 Dec 2025 18:06:12 +0000 Manifest this update: Thu 18 Dec 2025 18:06:11 +0000 Manifest next update: Thu 25 Dec 2025 18:06:11 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: Ods3B+zWlrxHNvbZInCrTjBowactHP7u3FPvY6e8eno=) 2: 6BD78854828411F099E2E925C4F9AE02.roa (hash: 9j0RVXeWOTqtCIIu8pRWvFaGzaYiOgKNK4oM1aL4Rcw=) 3: 566800AE193C11F094773636C4F9AE02.roa (hash: 1GIm3Ne8e/QReZ+/M7q01zVU9MV2YeadgnBRwRzgQrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Dec 18 18:06:11 2025 GMT Not After : Dec 25 18:06:11 2025 GMT Subject: CN=69444293-6568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:4e:b2:94:6b:30:1f:a8:fd:88:c7:c1:f8: 7a:76:74:55:6d:5c:ea:49:01:9e:31:db:48:6d:dd: 25:4b:ca:1a:db:bb:1f:13:d2:9e:c3:03:11:49:2d: 9e:8e:f0:b8:60:2f:b9:cf:9b:45:20:1f:b5:4c:a3: d4:cd:74:e0:f2:a5:88:ef:6e:7a:81:18:56:c3:fe: 6d:e3:53:21:44:d7:35:9f:13:04:de:69:67:bb:83: ef:41:c9:94:7d:1c:8c:f7:92:04:37:d4:e5:18:f4: de:01:58:71:2c:23:24:02:2a:a4:78:1c:be:82:94: 9d:4d:57:c0:5c:03:51:a4:15:2f:0e:36:e0:31:0a: 34:ca:5e:65:10:47:b5:cd:ea:ca:88:6e:e1:f8:5a: f4:8c:fe:46:04:37:a6:87:04:5a:c8:06:be:92:df: 88:52:6b:c7:73:b6:af:a9:05:28:0f:7b:97:ed:ed: 57:3f:65:2d:cd:d0:23:03:d2:20:89:50:40:ad:be: 56:c2:67:d0:c7:0c:b3:db:6a:3e:63:13:fa:c1:08: 77:55:e7:4d:d0:5d:23:5c:a1:66:63:c6:db:83:3e: a5:cb:a0:93:89:88:5c:17:be:b1:5f:27:72:62:ad: aa:34:28:37:7e:5b:cb:b4:3a:71:95:7f:ca:d5:8d: db:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:07:05:88:18:9D:E9:69:D0:DE:D0:D2:F0:B7:BC:3B:98:69:7A:31 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:d2:44:88:aa:99:c4:2b:e8:e1:8e:2e:22:93:28:41:d7:b5: 82:8f:7c:a5:14:c3:49:a4:bb:23:60:6f:39:53:03:84:3c:95: e0:f5:6f:da:29:fe:f6:d7:85:90:f2:7b:c0:0c:18:5a:26:7f: e7:ef:0a:47:83:76:96:42:d9:23:4e:ca:7a:03:a2:39:46:83: 01:68:83:11:2c:56:7c:79:7c:b9:c2:9d:be:62:ea:1a:01:3e: 5a:f8:25:8e:b9:10:99:c9:64:bc:62:32:3a:de:84:09:7b:56: 8d:42:f5:76:3d:96:f4:e0:3f:8d:d1:1b:a8:c2:42:30:d3:bb: 05:cb:c7:bb:12:c2:bd:e7:5e:1f:85:01:95:b8:e3:62:7c:e3: 3c:ae:5e:41:67:66:2c:0a:8c:68:ab:b0:e9:52:7d:f2:32:da: ae:65:ed:45:33:93:5f:f9:24:32:17:79:1b:62:5f:b4:d3:4c: 57:a2:f4:d4:1c:52:27:7f:61:cf:d1:66:9a:3d:5b:fc:31:d4: 7e:98:15:b1:f3:c5:7a:24:04:50:d6:bd:d5:a2:bb:0a:9f:70: e1:bf:34:9b:bb:87:ef:96:60:49:2b:2e:00:28:9b:93:67:44: ac:4e:c7:3d:b7:ec:b3:92:88:f9:16:23:65:31:01:dd:e7:96: 49:37:dc:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjUxMjE4MTgwNjExWhcNMjUxMjI1MTgwNjExWjAYMRYwFAYD VQQDDA02OTQ0NDI5My02NTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+hOspRrMB+o/YjHwfh6dnRVbVzqSQGeMdtIbd0lS8oa27sfE9KewwMRSS2e jvC4YC+5z5tFIB+1TKPUzXTg8qWI7256gRhWw/5t41MhRNc1nxME3mlnu4PvQcmU fRyM95IEN9TlGPTeAVhxLCMkAiqkeBy+gpSdTVfAXANRpBUvDjbgMQo0yl5lEEe1 zerKiG7h+Fr0jP5GBDemhwRayAa+kt+IUmvHc7avqQUoD3uX7e1XP2UtzdAjA9Ig iVBArb5WwmfQxwyz22o+YxP6wQh3VedN0F0jXKFmY8bbgz6ly6CTiYhcF76xXydy Yq2qNCg3flvLtDpxlX/K1Y3bnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIHBYgY nelp0N7Q0vC3vDuYaXoxMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK0kSIqpnEK+jhji4ikyhB17WCj3ylFMNJpLsjYG85UwOEPJXg9W/a Kf7214WQ8nvADBhaJn/n7wpHg3aWQtkjTsp6A6I5RoMBaIMRLFZ8eXy5wp2+Yuoa AT5a+CWOuRCZyWS8YjI63oQJe1aNQvV2PZb04D+N0RuowkIw07sFy8e7EsK9514f hQGVuONifOM8rl5BZ2YsCoxoq7DpUn3yMtquZe1FM5Nf+SQyF3kbYl+000xXovTU HFInf2HP0WaaPVv8MdR+mBWx88V6JARQ1r3VorsKn3DhvzSbu4fvlmBJKy4AKJuT Z0SsTsc9t+yzkoj5FiNlMQHd55ZJN9xm -----END CERTIFICATE-----Generated at Fri Dec 19 19:38:14 2025 by rpki-client