This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: de6+FM/8/1CAEG3STANXEeJENXqvpYC0599KBMVPCQY= Subject key identifier: 18:EC:8A:4F:D5:9A:EC:E5:8D:4C:4F:46:A8:E6:0D:AF:2E:26:2F:FF Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 087F Signing time: Sat 20 Dec 2025 20:01:17 +0000 Manifest this update: Sat 20 Dec 2025 20:01:17 +0000 Manifest next update: Sat 27 Dec 2025 20:01:17 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: tPVGFXzyDdCKISv4UCutOoevzesB4fKLiS0L+y2L0dU=) 2: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 3: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Dec 20 20:01:17 2025 GMT Not After : Dec 27 20:01:17 2025 GMT Subject: CN=6947008d-1c02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a2:38:53:fa:ba:5b:84:61:0f:79:7a:b2:46: 8c:d0:a8:45:ec:26:57:6e:ee:83:0c:cb:9f:a6:3f: 87:1c:9b:58:3a:c7:5e:42:96:28:14:b9:67:a3:91: 9f:03:a6:20:6f:43:f6:b5:61:b6:c7:04:cf:a9:f2: 00:35:00:83:38:0b:77:15:15:69:07:ca:8e:0e:99: 1e:50:9a:3b:a2:f5:74:a9:1e:52:87:be:63:c8:91: 90:f6:a5:33:ea:fd:39:06:cf:1c:58:a0:7a:bd:49: ef:e8:ca:c8:08:e7:51:aa:c7:1f:16:65:ac:f3:76: 60:c8:19:6a:1c:d2:93:27:3a:aa:5d:87:c4:98:53: 04:45:a2:5d:ea:0b:6e:4b:ca:01:62:4b:83:33:ce: 2e:25:88:18:9a:fc:d2:aa:67:e8:84:bc:70:76:65: f2:5f:bb:6b:03:58:f4:a7:2b:95:89:80:51:a2:7c: 1a:99:c7:76:2b:ca:4d:4c:31:36:d8:2a:b5:a3:ac: d8:56:79:5f:2d:0f:e3:26:8d:28:3d:bf:2c:d6:69: 47:6d:6d:81:73:fc:f1:26:35:8e:5f:20:5c:28:ac: 74:1f:18:37:56:f4:91:29:e4:7b:d7:63:e8:b3:c4: 49:a9:9e:da:0c:4d:50:9d:82:25:e1:60:df:1f:80: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EC:8A:4F:D5:9A:EC:E5:8D:4C:4F:46:A8:E6:0D:AF:2E:26:2F:FF X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d9:af:2b:49:30:8f:fb:75:8e:0c:a5:42:ed:99:62:da:90: 1b:66:32:66:f2:24:f4:e2:62:cd:bc:40:30:7f:43:aa:a1:27: b8:0c:00:e2:64:a4:c7:f5:d0:7a:a9:af:07:04:df:33:a9:de: 2b:9f:be:de:8c:91:88:05:97:cc:13:fe:5c:b1:f5:a2:b6:0d: f6:c4:39:8f:12:30:ba:94:26:09:54:b9:a9:c2:cd:80:ce:c3: c4:a1:c1:b7:af:68:33:66:37:52:3d:54:f2:fa:62:07:1b:5f: cf:1f:bd:01:c1:6e:30:a2:7f:d0:a2:46:c3:22:54:08:90:15: 13:bd:2e:a3:cd:e2:f3:be:b7:2a:d8:ce:9c:7a:d7:c7:12:79: 35:6e:4d:7c:f5:7a:d5:30:e7:79:fb:a9:e1:93:94:00:32:f6: f9:0a:df:3d:b4:4e:01:c9:0a:2e:f2:76:6a:fb:05:1e:fc:4a: ba:c5:03:be:25:50:66:0b:60:44:ea:4c:3d:75:66:74:f6:09: ac:f5:9b:6d:91:0f:17:33:8f:01:f4:5d:d7:a5:90:fc:dc:57: 21:41:23:66:bc:1b:7c:73:4c:24:62:8c:69:e0:67:8a:25:6d: 65:76:b1:1a:7d:46:9b:2f:2c:df:27:67:2f:36:d6:b0:96:a6: 0b:c6:f8:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUxMjIwMjAwMTE3WhcNMjUxMjI3MjAwMTE3WjAYMRYwFAYD VQQDDA02OTQ3MDA4ZC0xYzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKI4U/q6W4RhD3l6skaM0KhF7CZXbu6DDMufpj+HHJtYOsdeQpYoFLlno5Gf A6Ygb0P2tWG2xwTPqfIANQCDOAt3FRVpB8qODpkeUJo7ovV0qR5Sh75jyJGQ9qUz 6v05Bs8cWKB6vUnv6MrICOdRqscfFmWs83ZgyBlqHNKTJzqqXYfEmFMERaJd6gtu S8oBYkuDM84uJYgYmvzSqmfohLxwdmXyX7trA1j0pyuViYBRonwamcd2K8pNTDE2 2Cq1o6zYVnlfLQ/jJo0oPb8s1mlHbW2Bc/zxJjWOXyBcKKx0Hxg3VvSRKeR712Po s8RJqZ7aDE1QnYIl4WDfH4CuOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjsik/V muzljUxPRqjmDa8uJi//MB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ2a8rSTCP+3WODKVC7Zli2pAbZjJm8iT04mLNvEAwf0OqoSe4DADi ZKTH9dB6qa8HBN8zqd4rn77ejJGIBZfME/5csfWitg32xDmPEjC6lCYJVLmpws2A zsPEocG3r2gzZjdSPVTy+mIHG1/PH70BwW4won/QokbDIlQIkBUTvS6jzeLzvrcq 2M6cetfHEnk1bk189XrVMOd5+6nhk5QAMvb5Ct89tE4ByQou8nZq+wUe/Eq6xQO+ JVBmC2BE6kw9dWZ09gms9ZttkQ8XM48B9F3XpZD83FchQSNmvBt8c0wkYoxp4GeK JW1ldrEafUabLyzfJ2cvNtawlqYLxvhJ -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:37 2025 by rpki-client