This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft File: GHL5iLZXI3g3mSN-VU28xuSdFLA.mft (raw, json) Hash identifier: tVLjXlzHDOfMOB7OPS2QlTLlofGzjr3wDRk+PNXEXZo= Subject key identifier: 1E:6F:C9:18:97:10:02:31:71:56:6D:D3:9F:E7:82:A3:A4:3F:E1:6C Authority key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Certificate issuer: /CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft Manifest number: 0B5B Signing time: Sat 20 Dec 2025 15:28:41 +0000 Manifest this update: Sat 20 Dec 2025 15:28:41 +0000 Manifest next update: Sat 27 Dec 2025 15:28:41 +0000 Files and hashes: 1: GHL5iLZXI3g3mSN-VU28xuSdFLA.crl (hash: /4XBm1e8xJVG+kslj+gUe4r9IuNF4TEI8OxAf4c9JHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Validity Not Before: Dec 20 15:28:41 2025 GMT Not After : Dec 27 15:28:41 2025 GMT Subject: CN=6946c0a9-a3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:63:7b:a0:75:a6:cd:d9:ed:d5:0f:db:60:70: 15:b6:94:5e:49:04:0e:70:0f:45:2f:e2:b7:d3:0c: 60:18:ad:1a:f7:97:43:98:df:9e:26:77:04:aa:2d: 49:ad:66:14:4a:f0:42:03:45:23:a0:4c:24:72:82: d5:7c:35:61:49:1c:20:0e:3f:8a:3b:3e:f9:20:78: 69:30:1e:45:da:8f:f0:06:57:7e:9b:bb:1e:5b:f8: b3:f6:25:f5:08:a1:42:4c:85:14:0f:37:23:cd:af: ae:7d:3d:0a:d2:aa:26:f8:2b:54:7c:ef:d7:4c:5f: 80:00:44:5a:dc:d5:48:6f:e1:9b:20:d0:af:91:67: 66:fa:34:5f:36:af:16:0e:d3:d5:3d:bb:4c:ec:e0: d1:a3:68:c6:91:76:d2:b1:fc:ac:94:8f:a1:2a:eb: 58:d1:19:f0:9a:8d:44:c5:0e:a1:03:cb:5a:3d:cf: 2d:88:9d:d7:16:20:9d:cf:ef:d9:5e:f0:ff:0f:5a: 33:74:87:48:b5:60:0b:4f:34:ae:79:d2:4f:34:1c: 4b:25:d9:dc:78:fe:dd:f1:99:aa:cc:d0:16:02:a4: e4:ca:9a:fb:46:bd:74:d7:14:98:e5:b5:a5:d9:5e: 12:58:91:a1:b2:d3:e9:bc:46:cc:e7:ed:c2:b3:a4: 28:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6F:C9:18:97:10:02:31:71:56:6D:D3:9F:E7:82:A3:A4:3F:E1:6C X509v3 Authority Key Identifier: keyid:18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:5c:82:95:c0:ad:53:67:20:df:1e:26:15:cf:3f:bf:f2:cb: 67:8e:30:b0:3b:1a:07:ea:a7:99:8c:61:90:f9:d8:06:bf:b1: 30:54:0c:42:85:ee:df:b1:25:af:48:45:4d:44:85:12:e6:52: 20:9a:f4:1d:b7:8b:79:aa:02:3f:58:ee:95:25:ef:f9:b2:e7: 66:4f:9d:9b:61:b1:b9:e1:fc:ef:d8:cc:63:1a:6b:99:7e:84: a4:43:f5:45:3f:26:c8:bc:c2:4e:4b:86:ee:32:ce:56:25:96: 9c:97:f4:4b:5e:ed:df:8f:c1:07:bc:a6:3f:da:0f:93:09:66: 74:f8:1c:0e:26:7c:95:f0:f7:32:71:5e:72:04:bb:69:39:06: 96:15:32:cd:f9:eb:c9:af:77:fa:9f:c7:7b:68:f9:73:18:f9: 37:a9:b3:41:60:7d:c0:ef:31:f6:4f:d2:60:ac:61:47:43:c7: 5e:93:3e:87:8b:69:bc:0a:c8:d7:6b:af:14:f9:dd:ec:08:35: e9:c5:d8:13:b3:85:92:ce:49:0a:cb:85:62:4c:ac:74:69:0e: b5:34:60:f3:24:f8:07:fb:3b:73:2d:72:c2:d7:68:76:ed:08: be:eb:cd:19:8e:4b:b3:c9:31:00:5e:a3:93:a4:f8:62:f5:19: 5d:78:a7:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKDE4NzJGOTg4QjY1NzIzNzgzNzk5MjM3RTU1NERCQ0M2 RTQ5RDE0QjAwHhcNMjUxMjIwMTUyODQxWhcNMjUxMjI3MTUyODQxWjAYMRYwFAYD VQQDDA02OTQ2YzBhOS1hM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02N7oHWmzdnt1Q/bYHAVtpReSQQOcA9FL+K30wxgGK0a95dDmN+eJncEqi1J rWYUSvBCA0UjoEwkcoLVfDVhSRwgDj+KOz75IHhpMB5F2o/wBld+m7seW/iz9iX1 CKFCTIUUDzcjza+ufT0K0qom+CtUfO/XTF+AAERa3NVIb+GbINCvkWdm+jRfNq8W DtPVPbtM7ODRo2jGkXbSsfyslI+hKutY0Rnwmo1ExQ6hA8taPc8tiJ3XFiCdz+/Z XvD/D1ozdIdItWALTzSuedJPNBxLJdnceP7d8ZmqzNAWAqTkypr7Rr101xSY5bWl 2V4SWJGhstPpvEbM5+3Cs6QoywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5vyRiX EAIxcVZt05/ngqOkP+FsMB8GA1UdIwQYMBaAFBhy+Yi2VyN4N5kjflVNvMbknRSw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9BNjFERjFEQTQ2 NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkzZzNtU04tVlUyOHh1U2RG TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0dITDVpTFpYSTNnM21TTi1WVTI4eHVTZEZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9BNjFERjFEQTQ2NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkz ZzNtU04tVlUyOHh1U2RGTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2XIKVwK1TZyDfHiYVzz+/8stnjjCwOxoH6qeZjGGQ+dgGv7EwVAxC he7fsSWvSEVNRIUS5lIgmvQdt4t5qgI/WO6VJe/5sudmT52bYbG54fzv2MxjGmuZ foSkQ/VFPybIvMJOS4buMs5WJZacl/RLXu3fj8EHvKY/2g+TCWZ0+BwOJnyV8Pcy cV5yBLtpOQaWFTLN+evJr3f6n8d7aPlzGPk3qbNBYH3A7zH2T9JgrGFHQ8dekz6H i2m8CsjXa68U+d3sCDXpxdgTs4WSzkkKy4ViTKx0aQ61NGDzJPgH+ztzLXLC12h2 7Qi+680ZjkuzyTEAXqOTpPhi9RldeKcP -----END CERTIFICATE-----Generated at Sun Dec 21 03:54:56 2025 by rpki-client