This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: MDyFBcmS/3dZv/RW39WDBTuz3t5DQAQ1TOxI46NfnTk= Subject key identifier: 97:87:BB:E9:7D:20:7A:D6:63:DC:58:4B:03:C7:B4:B0:41:DD:40:1E Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 083F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 082D Signing time: Wed 10 Dec 2025 19:45:28 +0000 Manifest this update: Wed 10 Dec 2025 19:45:27 +0000 Manifest next update: Wed 17 Dec 2025 19:45:27 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: UXtRnyUal16hqEZAAsHDEG8hwpfbS4DBgZoQ5L14zdI=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 19:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Dec 10 19:45:27 2025 GMT Not After : Dec 17 19:45:27 2025 GMT Subject: CN=6939cdd8-48d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:a2:63:cf:2d:c6:0c:45:08:b8:44:33:cb: 56:e8:72:c8:9f:0c:3d:9b:b1:1c:92:ea:84:c3:7c: cc:34:ed:99:ab:1d:0d:c0:cb:a1:c8:ab:f7:15:bc: 68:cb:ec:54:9b:b6:f1:99:d0:53:65:bd:72:da:96: 17:43:7e:73:85:da:72:76:d2:2f:93:c6:4a:a8:cc: 78:ec:dd:a7:de:62:35:26:08:bd:35:b6:ac:c8:8e: f1:c0:34:49:5c:40:3b:04:a2:b3:f1:05:3b:a5:9d: b0:9d:8e:5c:3e:03:86:47:7a:6c:b0:51:9c:41:39: eb:79:a5:f1:23:46:e7:46:03:94:48:4e:c2:a0:42: 23:0b:e0:88:14:10:af:5c:da:25:a1:41:92:ec:ea: 04:b9:86:91:2d:a9:90:c7:7c:8a:87:e3:cd:9e:bd: 3d:b8:56:fe:10:61:4a:65:41:a4:1d:d3:82:f9:72: 2b:ae:bb:9b:67:8e:02:3e:b3:3f:c3:c1:c2:7a:1d: 08:08:c3:b0:db:b2:2a:6c:4b:36:fd:d3:60:bc:2a: 1a:2f:bd:9a:d3:93:83:5e:c7:38:e8:8a:da:aa:e6: e2:ad:bd:bf:97:5b:89:45:4c:fe:24:c5:9f:ba:d3: b7:18:73:41:a5:20:29:e5:dc:76:57:be:34:3d:e2: 41:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:87:BB:E9:7D:20:7A:D6:63:DC:58:4B:03:C7:B4:B0:41:DD:40:1E X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:85:2a:3a:c2:89:74:d4:3a:41:80:fa:89:bf:66:e5:c0:4c: 50:df:ca:0a:6a:de:4c:83:10:90:ea:d0:e6:12:21:6d:7c:b3: 4f:77:de:f1:7b:c7:9d:fa:6d:a2:20:b7:91:52:f8:c3:c2:9f: e4:bf:1a:e2:41:c3:80:1f:a5:b2:a9:fe:c8:02:e7:e7:33:6d: fb:dd:9f:6e:70:05:15:75:26:f7:98:20:49:2b:fc:87:51:82: e7:51:f7:b1:bb:02:bd:99:c9:0d:ba:44:f0:5e:c1:38:21:b3: 1c:8f:6f:16:ec:a5:e9:e0:82:f2:e0:c0:93:e7:53:48:2d:0f: 74:da:48:99:a3:58:e4:17:c0:d7:4f:85:ed:d2:d7:43:dd:9b: e9:16:93:37:e7:4d:81:e4:c4:38:7f:06:e9:fc:74:34:74:64: 6d:71:51:12:cd:e0:ae:fa:b8:63:c0:4a:3f:02:04:2f:0b:2f: c4:ea:2b:97:20:6f:56:77:ea:10:68:96:ed:8b:c0:5b:a1:3a: 54:7e:e6:06:0c:19:23:cf:d7:91:e4:c7:cf:84:ea:80:44:39: 3e:94:08:94:88:74:cc:57:ef:00:c6:ed:37:fa:ad:8c:1b:20: 6b:e0:e2:e6:62:26:de:23:2a:f6:61:99:1b:a5:fc:76:e8:9f: cb:d2:ad:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUxMjEwMTk0NTI3WhcNMjUxMjE3MTk0NTI3WjAYMRYwFAYD VQQDEw02OTM5Y2RkOC00OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDeiY88txgxFCLhEM8tW6HLInww9m7EckuqEw3zMNO2Zqx0NwMuhyKv3Fbxo y+xUm7bxmdBTZb1y2pYXQ35zhdpydtIvk8ZKqMx47N2n3mI1Jgi9NbasyI7xwDRJ XEA7BKKz8QU7pZ2wnY5cPgOGR3pssFGcQTnreaXxI0bnRgOUSE7CoEIjC+CIFBCv XNoloUGS7OoEuYaRLamQx3yKh+PNnr09uFb+EGFKZUGkHdOC+XIrrrubZ44CPrM/ w8HCeh0ICMOw27IqbEs2/dNgvCoaL72a05ODXsc46Iraqubirb2/l1uJRUz+JMWf utO3GHNBpSAp5dx2V740PeJBNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeHu+l9 IHrWY9xYSwPHtLBB3UAeMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRhSo6wol01DpBgPqJv2blwExQ38oKat5MgxCQ6tDmEiFtfLNPd97x e8ed+m2iILeRUvjDwp/kvxriQcOAH6Wyqf7IAufnM2373Z9ucAUVdSb3mCBJK/yH UYLnUfexuwK9mckNukTwXsE4IbMcj28W7KXp4ILy4MCT51NILQ902kiZo1jkF8DX T4Xt0tdD3ZvpFpM3502B5MQ4fwbp/HQ0dGRtcVESzeCu+rhjwEo/AgQvCy/E6iuX IG9Wd+oQaJbti8BboTpUfuYGDBkjz9eR5MfPhOqARDk+lAiUiHTMV+8Axu03+q2M GyBr4OLmYibeIyr2YZkbpfx26J/L0q1h -----END CERTIFICATE-----Generated at Thu Dec 11 15:09:38 2025 by rpki-client