This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: yIsnHL4rElx1s/PxBpERqwuAg/gTVWsqM458AjddpUM= Subject key identifier: D3:2A:6A:00:91:88:CB:0B:9F:AC:2E:EC:07:8D:16:38:E9:DC:9F:79 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0843 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0831 Signing time: Thu 18 Dec 2025 20:20:13 +0000 Manifest this update: Thu 18 Dec 2025 20:20:12 +0000 Manifest next update: Thu 25 Dec 2025 20:20:12 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: Yurnc/Bw8NwwhDHw0u4rKWZetQlJSUh6xFyXObG4bSg=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 4: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) 5: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Dec 18 20:20:12 2025 GMT Not After : Dec 25 20:20:12 2025 GMT Subject: CN=694461fd-9869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a7:37:d9:94:c6:a8:12:b6:fb:6a:7a:ac:6b: 2d:f1:4f:60:47:59:84:a7:27:d7:40:90:d8:9a:2a: 55:08:5a:4a:73:2c:a3:f2:92:42:ad:5d:08:ee:87: b3:a8:47:66:39:de:39:bb:97:8b:8c:4b:be:dd:e1: 5e:e0:5d:57:17:2a:87:87:12:1f:0a:fc:ac:d0:7b: e7:97:6e:9a:4f:c2:9b:3e:d5:e0:dc:53:c2:bf:ef: 98:c7:be:bc:cd:07:09:74:b6:61:eb:4c:aa:8a:d3: 22:3b:77:3c:d9:66:62:de:4b:a8:ad:62:2f:68:bc: 6c:c6:20:92:91:c4:f3:07:07:c5:bf:8b:43:85:e0: a8:6f:3f:d6:11:79:0e:9d:e1:fd:e8:db:b5:0c:fc: c7:60:fc:4d:ec:61:03:d9:4c:66:ec:4f:be:6b:58: 06:bd:63:de:80:40:09:07:8d:ac:04:d2:10:dc:ce: 47:01:dc:06:59:6f:ad:7b:8d:43:de:b1:e0:77:bc: 3c:57:3c:4c:59:63:31:37:f7:ac:35:39:4a:5e:c0: d3:84:db:ed:fe:ce:35:9d:7c:57:10:a1:d1:72:a9: b8:54:a1:1f:14:9a:f8:c1:cb:7a:4b:6a:20:b2:a3: 30:f6:52:e8:55:1b:4b:c2:6b:e2:5f:fe:7f:44:e0: 2b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2A:6A:00:91:88:CB:0B:9F:AC:2E:EC:07:8D:16:38:E9:DC:9F:79 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:b4:d2:31:e3:0b:20:e0:92:90:bb:3d:4b:79:5a:84:f2:26: 32:e0:ee:81:46:8d:2e:4e:f9:04:48:e9:ac:69:19:83:64:c6: 17:e1:58:d8:63:34:a4:a5:ad:67:64:84:af:df:50:fb:e8:9b: df:57:80:c3:40:d1:e7:81:99:d6:d5:f4:e7:8a:74:b0:7e:e4: 14:a5:be:0f:ff:5a:a6:a1:99:27:e4:c4:73:14:fd:e8:0d:ab: 7a:fd:ec:47:94:75:61:12:84:f4:67:5e:11:2d:64:e1:22:6e: 47:6b:d1:36:a7:20:21:3d:7b:f4:bd:2a:6e:50:9d:5b:b7:aa: 04:fe:db:7f:ea:46:2b:9a:e2:a5:bf:3f:40:3a:8c:27:d2:09: a9:0e:da:35:7c:a1:9b:3b:68:0f:9e:2e:8a:8a:52:5a:30:e6: 4e:82:28:92:f2:f0:ab:4e:51:a4:51:85:26:c4:79:8a:38:3f: 3b:95:64:b2:57:7c:10:66:a0:b9:9f:b5:d0:61:e7:3a:63:08: ad:ac:15:61:46:aa:2f:2e:da:10:26:a6:e4:91:25:a5:d5:ba: 8f:f6:95:01:5b:fe:f0:75:34:ca:8a:43:c9:a2:87:18:46:78: d4:5e:7d:62:72:8a:89:f3:f0:cd:b5:f8:b6:59:59:b5:22:b6: 1d:3e:42:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUxMjE4MjAyMDEyWhcNMjUxMjI1MjAyMDEyWjAYMRYwFAYD VQQDDA02OTQ0NjFmZC05ODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnac32ZTGqBK2+2p6rGst8U9gR1mEpyfXQJDYmipVCFpKcyyj8pJCrV0I7oez qEdmOd45u5eLjEu+3eFe4F1XFyqHhxIfCvys0Hvnl26aT8KbPtXg3FPCv++Yx768 zQcJdLZh60yqitMiO3c82WZi3kuorWIvaLxsxiCSkcTzBwfFv4tDheCobz/WEXkO neH96Nu1DPzHYPxN7GED2Uxm7E++a1gGvWPegEAJB42sBNIQ3M5HAdwGWW+te41D 3rHgd7w8VzxMWWMxN/esNTlKXsDThNvt/s41nXxXEKHRcqm4VKEfFJr4wct6S2og sqMw9lLoVRtLwmviX/5/ROAr/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMqagCR iMsLn6wu7AeNFjjp3J95MB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2tNIx4wsg4JKQuz1LeVqE8iYy4O6BRo0uTvkESOmsaRmDZMYX4VjY YzSkpa1nZISv31D76JvfV4DDQNHngZnW1fTninSwfuQUpb4P/1qmoZkn5MRzFP3o Dat6/exHlHVhEoT0Z14RLWThIm5Ha9E2pyAhPXv0vSpuUJ1bt6oE/tt/6kYrmuKl vz9AOown0gmpDto1fKGbO2gPni6KilJaMOZOgiiS8vCrTlGkUYUmxHmKOD87lWSy V3wQZqC5n7XQYec6YwitrBVhRqovLtoQJqbkkSWl1bqP9pUBW/7wdTTKikPJoocY RnjUXn1icoqJ8/DNtfi2WVm1IrYdPkJf -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:34 2025 by rpki-client