This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: Rw6nsJg1FwS3FzjNAwfYBZQB9uhqnF/+koP782z7Ts8= Subject key identifier: 5B:13:C9:99:9B:AF:61:44:D5:9A:BC:B2:81:F0:E1:A8:BB:EA:1E:16 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0878 Signing time: Sat 06 Dec 2025 19:45:38 +0000 Manifest this update: Sat 06 Dec 2025 19:45:37 +0000 Manifest next update: Sat 13 Dec 2025 19:45:37 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: 322QPV5TuXj01FBa6Wb/p4/n7ZGIZcZPejiKwB1cPsY=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Dec 6 19:45:37 2025 GMT Not After : Dec 13 19:45:37 2025 GMT Subject: CN=693487e2-80ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:50:7b:cc:9d:80:f3:1d:4b:33:e7:7f:95:52: 69:1d:80:88:65:6e:41:ce:1a:4c:7e:46:c8:7d:85: 39:6f:29:6d:0d:4f:b2:03:5d:d6:d2:b1:8f:49:36: 41:ca:4a:2b:d4:ac:fb:44:6c:c1:20:51:58:d6:a1: a1:a0:ad:61:27:32:cb:5a:2d:ed:7e:a9:f4:95:bc: 92:49:5c:ba:54:fd:9f:94:c6:90:95:da:04:cc:c3: 71:fd:7f:40:ad:4e:d7:90:76:be:c8:9f:b7:02:2a: d6:08:b5:c2:e2:fd:63:9e:75:43:09:3d:72:07:f8: b5:f0:36:cd:c4:1f:19:e9:8d:b9:b7:92:a8:27:80: d0:7a:9d:6d:9c:eb:f5:2e:1a:77:f6:d2:8a:2f:ca: 66:fd:77:ed:82:3d:25:97:67:18:45:e8:02:3b:99: 2b:2c:3d:40:f1:94:66:d8:45:80:8c:cd:a0:9e:19: f1:ed:5b:13:e4:0f:2e:e7:42:6a:02:aa:d3:94:89: be:a2:ae:55:2f:de:35:5b:90:2a:18:d0:d6:54:a3: 4d:78:8c:e1:75:f5:8c:fd:c2:49:e7:9c:c9:e2:e5: b6:be:fd:81:06:b3:7b:ad:22:3d:ba:08:92:9c:7e: 30:60:c5:00:46:16:68:af:fa:ea:26:25:ab:d3:b8: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:13:C9:99:9B:AF:61:44:D5:9A:BC:B2:81:F0:E1:A8:BB:EA:1E:16 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:16:98:f6:aa:85:e8:24:c1:9c:7b:c3:60:e7:49:7d:a4:15: 61:a6:ea:2b:49:af:3b:c1:05:32:8d:7f:bc:aa:ab:87:cd:89: 54:74:b8:31:d8:11:65:bf:91:72:26:3b:6a:9c:f1:41:d9:12: 4d:09:ab:c0:1b:5e:a2:b0:f8:d7:11:82:f2:71:c0:df:9f:29: bd:50:23:55:e5:81:e4:d7:a7:7c:09:6a:79:ca:ab:6b:6c:6f: b7:e1:cb:ad:70:da:06:f6:9e:ad:75:b2:a0:1d:62:55:3c:b0: 6e:2a:c0:8a:6e:14:06:6e:f1:b9:67:95:62:76:d0:20:9f:aa: c0:99:4b:73:ab:1c:e0:c4:f7:9a:ea:96:a8:47:6f:53:65:23: b6:44:0f:16:13:b2:2a:e6:e8:34:2b:53:f6:d8:fa:02:08:f2: 71:51:c1:b7:8e:9b:05:27:c7:5b:17:29:06:58:ac:88:99:fa: b6:37:71:99:3f:2e:bb:46:29:47:ef:ca:1e:0d:45:51:96:8e: ba:6d:db:f6:cc:ee:44:2b:e7:7b:05:d9:84:fa:88:4e:63:75: e9:c5:3a:6b:a4:10:9b:94:fe:84:1c:b4:fa:21:d7:c0:30:de: ef:c4:03:5d:76:31:11:ef:0d:8c:95:b1:20:85:03:8f:db:f4: db:eb:37:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUxMjA2MTk0NTM3WhcNMjUxMjEzMTk0NTM3WjAYMRYwFAYD VQQDEw02OTM0ODdlMi04MGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVB7zJ2A8x1LM+d/lVJpHYCIZW5BzhpMfkbIfYU5byltDU+yA13W0rGPSTZB ykor1Kz7RGzBIFFY1qGhoK1hJzLLWi3tfqn0lbySSVy6VP2flMaQldoEzMNx/X9A rU7XkHa+yJ+3AirWCLXC4v1jnnVDCT1yB/i18DbNxB8Z6Y25t5KoJ4DQep1tnOv1 Lhp39tKKL8pm/Xftgj0ll2cYRegCO5krLD1A8ZRm2EWAjM2gnhnx7VsT5A8u50Jq AqrTlIm+oq5VL941W5AqGNDWVKNNeIzhdfWM/cJJ55zJ4uW2vv2BBrN7rSI9ugiS nH4wYMUARhZor/rqJiWr07gLAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsTyZmb r2FE1Zq8soHw4ai76h4WMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiFpj2qoXoJMGce8Ng50l9pBVhpuorSa87wQUyjX+8qquHzYlUdLgx 2BFlv5FyJjtqnPFB2RJNCavAG16isPjXEYLyccDfnym9UCNV5YHk16d8CWp5yqtr bG+34cutcNoG9p6tdbKgHWJVPLBuKsCKbhQGbvG5Z5VidtAgn6rAmUtzqxzgxPea 6paoR29TZSO2RA8WE7Iq5ug0K1P22PoCCPJxUcG3jpsFJ8dbFykGWKyImfq2N3GZ Py67RilH78oeDUVRlo66bdv2zO5EK+d7BdmE+ohOY3XpxTprpBCblP6EHLT6IdfA MN7vxANddjER7w2MlbEghQOP2/Tb6zea -----END CERTIFICATE-----Generated at Sun Dec 7 13:53:04 2025 by rpki-client