This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: nPr6nLY9LsIMKMsgs+WeKlEA+k0pf5Np3Uityit4kPk= Subject key identifier: 7D:6E:7B:4A:C8:AF:E7:0F:8C:5A:16:A8:13:AD:48:85:7A:C7:35:F6 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 01AE Signing time: Fri 19 Dec 2025 02:27:12 +0000 Manifest this update: Fri 19 Dec 2025 02:27:12 +0000 Manifest next update: Fri 26 Dec 2025 02:27:12 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: B7jYMa4YjLWXdCR4yyxv9D5pUJ2R067TJz3n0Ib+sZA=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: 2nukhqdNU6Euo+43iQiPgLSUJQocXAJN3vnaW4r7bwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Dec 19 02:27:12 2025 GMT Not After : Dec 26 02:27:12 2025 GMT Subject: CN=6944b800-3db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:54:fe:d6:c3:a4:c2:e6:8c:77:cf:40:2f:3a: cc:11:27:4f:e8:8b:32:83:e6:67:0d:c3:cf:21:bf: 22:2d:cf:3b:e7:10:c5:b6:dd:af:5f:09:c7:e2:2f: 69:16:08:be:58:6b:01:72:77:66:81:2f:52:2f:d7: 32:4f:0a:b4:e7:6f:7f:f9:11:dc:5b:4c:40:05:8d: 25:64:27:52:dd:5c:f1:b2:f6:3d:e8:43:55:b8:7a: 91:c8:97:a3:a0:6f:60:31:a9:8d:f5:7d:95:02:26: 11:86:5b:4d:25:c3:91:4b:4e:65:2d:41:64:0a:35: 57:5f:91:59:93:70:99:80:06:43:1e:92:2e:07:3a: e0:f3:35:fc:05:f6:26:36:53:9b:e5:15:9f:8c:d2: d4:e4:0e:39:61:2d:db:a7:9b:e0:f3:1a:0e:8b:1f: 73:30:ff:2c:b8:d0:8f:a5:e5:9c:9b:31:bb:40:39: ed:98:25:2d:61:ce:de:0a:17:05:b6:73:10:b6:8b: 2b:0e:25:7c:31:25:80:d1:84:eb:68:17:91:24:0b: 6b:5a:35:d9:3a:01:f7:a3:46:65:d6:c6:08:a7:c3: 9b:d4:92:d2:f0:65:e0:e4:99:76:c5:81:43:da:47: bc:94:6a:d6:be:30:54:c0:2c:f5:33:ce:4b:1c:e6: 31:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6E:7B:4A:C8:AF:E7:0F:8C:5A:16:A8:13:AD:48:85:7A:C7:35:F6 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:73:2a:0f:a1:68:68:93:95:93:fe:c2:c5:98:53:b0:46:cc: 17:ef:24:65:e5:75:99:20:7d:ee:40:12:20:a2:cd:ef:8f:8c: b0:5c:73:c6:24:63:73:ff:bf:54:77:72:8b:25:55:d4:a1:2a: f6:c1:32:c4:81:61:f1:4b:48:6d:06:5f:c0:98:a2:8e:84:91: 9a:49:25:cb:da:cb:e1:78:10:94:77:ac:12:6f:40:32:dc:6f: 56:bd:37:d4:89:38:0a:45:71:c1:f0:40:c2:53:68:fe:17:00: ec:62:d3:90:3c:af:c4:19:8e:e9:fc:82:ac:a2:6e:71:96:5d: c6:75:93:c6:dc:14:06:dc:a8:e1:e6:4a:35:b2:98:10:b7:ec: be:86:f8:30:da:25:8e:ed:62:9c:83:f2:31:0a:7a:e8:be:13: 5c:ac:9f:d0:96:65:37:4e:c4:8f:e6:01:56:8c:bd:6c:88:87: 10:06:ba:44:86:13:20:06:1a:5b:4f:f4:23:9e:a5:61:e7:62: eb:a7:0c:01:22:2a:62:49:4d:5f:a8:a8:ca:05:63:a8:10:1e: 32:a3:35:9a:10:a3:9e:68:7e:96:d7:fe:da:5c:e0:43:4d:64: e7:9e:63:8f:e8:38:bc:70:1e:fd:a8:6e:05:a7:49:8b:71:0b: e8:77:2e:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUxMjE5MDIyNzEyWhcNMjUxMjI2MDIyNzEyWjAYMRYwFAYD VQQDDA02OTQ0YjgwMC0zZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVT+1sOkwuaMd89ALzrMESdP6Isyg+ZnDcPPIb8iLc875xDFtt2vXwnH4i9p Fgi+WGsBcndmgS9SL9cyTwq0529/+RHcW0xABY0lZCdS3VzxsvY96ENVuHqRyJej oG9gMamN9X2VAiYRhltNJcORS05lLUFkCjVXX5FZk3CZgAZDHpIuBzrg8zX8BfYm NlOb5RWfjNLU5A45YS3bp5vg8xoOix9zMP8suNCPpeWcmzG7QDntmCUtYc7eChcF tnMQtosrDiV8MSWA0YTraBeRJAtrWjXZOgH3o0Zl1sYIp8Ob1JLS8GXg5Jl2xYFD 2ke8lGrWvjBUwCz1M85LHOYxhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1ue0rI r+cPjFoWqBOtSIV6xzX2MB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCacyoPoWhok5WT/sLFmFOwRswX7yRl5XWZIH3uQBIgos3vj4ywXHPG JGNz/79Ud3KLJVXUoSr2wTLEgWHxS0htBl/AmKKOhJGaSSXL2svheBCUd6wSb0Ay 3G9WvTfUiTgKRXHB8EDCU2j+FwDsYtOQPK/EGY7p/IKsom5xll3GdZPG3BQG3Kjh 5ko1spgQt+y+hvgw2iWO7WKcg/IxCnrovhNcrJ/QlmU3TsSP5gFWjL1siIcQBrpE hhMgBhpbT/QjnqVh52LrpwwBIipiSU1fqKjKBWOoEB4yozWaEKOeaH6W1/7aXOBD TWTnnmOP6Di8cB79qG4Fp0mLcQvody4V -----END CERTIFICATE-----Generated at Fri Dec 19 22:06:33 2025 by rpki-client