This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: iCkKfA3an4KzuTrWu2yGorAVknBs+OvEohybiarOPnY= Subject key identifier: D1:E2:DA:C6:FB:AC:E4:20:96:89:58:AD:72:B1:E1:8B:CA:82:AF:47 Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1C6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C64 Signing time: Mon 22 Dec 2025 15:58:29 +0000 Manifest this update: Mon 22 Dec 2025 15:58:28 +0000 Manifest next update: Mon 29 Dec 2025 15:58:28 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: lj0IT1+xY2FbZ6a6rbd7hh9qFWN7Jmo2nOPOeYlXmWo=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 87Eagj9nbEvxROvw6iIl3FH0KdIVxp+aZzvllNFI0J8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7279 (0x1c6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Dec 22 15:58:28 2025 GMT Not After : Dec 29 15:58:28 2025 GMT Subject: CN=69496aa5-5487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b3:12:23:a2:b9:6c:8b:86:84:e3:06:1e:74: 26:58:8c:65:49:90:de:eb:3d:c3:af:b2:e3:d4:ad: 1d:12:f2:2d:7a:b3:2d:5e:8f:9a:76:86:0f:2f:6d: 41:f5:79:92:06:ed:40:e3:01:b4:3a:2e:3c:8f:dd: cc:2d:a9:e1:0d:fa:cd:55:8d:f7:23:aa:c3:56:d6: 53:7e:b4:20:90:fb:21:8a:1b:3a:21:cd:40:59:72: 48:10:13:eb:2e:d3:f6:81:06:e4:3c:37:f4:fc:86: 71:fb:b5:67:fd:25:6e:67:3d:44:06:01:af:53:9b: 54:97:cd:46:a1:15:80:73:53:42:93:16:49:ae:6a: 11:f9:15:4a:b6:46:99:ea:07:1f:ec:5d:93:66:38: f6:1f:5c:ad:c0:eb:a9:32:3b:ed:b4:53:94:28:50: 1d:7d:4e:aa:09:01:c6:90:02:7c:06:63:68:55:06: ca:e1:7d:72:df:b2:61:71:9e:81:d0:21:59:21:c2: 10:01:59:73:13:37:c6:5c:80:d6:cb:ec:98:de:3d: 74:31:70:8f:bd:90:b7:7b:0c:f7:f5:fe:2e:c6:4d: e0:eb:b9:18:ae:1a:ba:cb:08:31:ed:4d:1d:18:44: 17:de:ab:6d:ea:9c:e2:ac:20:7b:27:af:93:67:0e: b5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E2:DA:C6:FB:AC:E4:20:96:89:58:AD:72:B1:E1:8B:CA:82:AF:47 X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:41:c0:fa:b8:6d:69:c2:d8:14:42:7a:00:ee:97:5b:00:c6: b6:f7:57:07:17:2f:a7:e7:c0:ca:3e:2c:0d:c7:ad:4c:b3:1b: d5:40:90:90:5f:2c:63:b1:71:53:c4:95:19:f7:66:d8:c0:a6: 46:52:f9:5c:5a:e2:f7:b3:2b:19:44:60:d1:40:cd:27:8c:48: de:e2:57:4b:fa:ea:02:40:38:f7:1d:05:9e:46:97:5e:26:96: 56:77:25:13:11:a6:84:b5:d9:16:82:b9:28:d7:d3:34:ee:c6: e5:71:80:a7:4b:c6:c9:b6:f5:ff:52:56:c5:c5:38:4e:62:29: 1d:e9:bf:7b:4b:af:f7:7c:20:46:03:bb:aa:62:46:df:60:46: d1:14:09:59:23:44:fa:81:b0:42:d2:0f:d2:f8:5d:b1:51:ee: a9:90:7b:17:a4:24:d8:8b:41:04:25:2d:67:38:5f:84:16:91: 39:ad:aa:47:0a:ac:61:35:7f:f9:00:51:b5:57:6f:f5:1d:f6: da:6a:0d:2f:fb:d8:8b:2b:83:c9:d1:2c:c6:6f:8b:79:f4:6a: be:a6:cc:56:94:c5:d1:c5:a7:87:d1:13:28:29:86:cd:66:e0: 73:2c:f4:85:3f:ee:0c:cd:ff:58:87:2a:9c:42:fc:85:a7:d3: a9:c2:93:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjUxMjIyMTU1ODI4WhcNMjUxMjI5MTU1ODI4WjAYMRYwFAYD VQQDDA02OTQ5NmFhNS01NDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrMSI6K5bIuGhOMGHnQmWIxlSZDe6z3Dr7Lj1K0dEvIterMtXo+adoYPL21B 9XmSBu1A4wG0Oi48j93MLanhDfrNVY33I6rDVtZTfrQgkPshihs6Ic1AWXJIEBPr LtP2gQbkPDf0/IZx+7Vn/SVuZz1EBgGvU5tUl81GoRWAc1NCkxZJrmoR+RVKtkaZ 6gcf7F2TZjj2H1ytwOupMjvttFOUKFAdfU6qCQHGkAJ8BmNoVQbK4X1y37JhcZ6B 0CFZIcIQAVlzEzfGXIDWy+yY3j10MXCPvZC3ewz39f4uxk3g67kYrhq6ywgx7U0d GEQX3qtt6pzirCB7J6+TZw616QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHi2sb7 rOQglolYrXKx4YvKgq9HMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuQcD6uG1pwtgUQnoA7pdbAMa291cHFy+n58DKPiwNx61MsxvVQJCQ XyxjsXFTxJUZ92bYwKZGUvlcWuL3sysZRGDRQM0njEje4ldL+uoCQDj3HQWeRpde JpZWdyUTEaaEtdkWgrko19M07sblcYCnS8bJtvX/UlbFxThOYikd6b97S6/3fCBG A7uqYkbfYEbRFAlZI0T6gbBC0g/S+F2xUe6pkHsXpCTYi0EEJS1nOF+EFpE5rapH CqxhNX/5AFG1V2/1Hfbaag0v+9iLK4PJ0SzGb4t59Gq+psxWlMXRxaeH0RMoKYbN ZuBzLPSFP+4Mzf9YhyqcQvyFp9OpwpO3 -----END CERTIFICATE-----Generated at Wed Dec 24 15:58:49 2025 by rpki-client