This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: 9h7+gGzw5oix8PAKr4fA52+6PMV927MG1WUqxnVaEy0= Subject key identifier: 33:00:A0:8B:18:43:1E:A8:71:EB:C9:53:00:95:D8:67:FB:A6:E4:67 Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C6B Signing time: Wed 31 Dec 2025 16:00:23 +0000 Manifest this update: Wed 31 Dec 2025 16:00:23 +0000 Manifest next update: Wed 07 Jan 2026 16:00:23 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: 6r34xOW71t3SGp5gddsDQn3f9aMOFUJgQ8R+gvph+0I=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: o3z6BRLTnD7CnNxQl2rygbilFIo9W6Al6sOGDkj+Zio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7287 (0x1c77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Dec 31 16:00:23 2025 GMT Not After : Jan 7 16:00:23 2026 GMT Subject: CN=69554897-27cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:9a:7c:ca:44:3a:1c:b5:5d:55:04:2e:80: f7:c8:49:e9:2a:5a:28:89:b6:db:e9:27:48:40:7a: cf:7e:37:26:10:ed:06:06:26:00:e8:81:87:b0:ec: f5:5b:ec:3b:12:f5:c8:03:d3:81:ec:a6:b0:27:c7: 00:e6:ad:ba:8a:39:e7:4a:06:ed:37:32:36:ee:cf: 40:1b:5e:0a:51:a6:ed:4c:9d:a6:a3:98:a8:02:35: 82:f0:ee:be:b4:ca:79:17:db:d9:a7:0f:43:21:48: 31:8d:07:b2:b9:f8:53:84:d4:e7:8b:ae:3b:1e:88: 5c:6e:1c:5c:4a:f2:c9:62:96:7c:d9:62:38:fb:40: fd:68:21:ff:0b:3e:cc:79:ba:dd:eb:1d:b9:3e:00: a4:cc:e9:84:83:4c:da:d3:ad:d0:00:1a:d8:41:9e: 20:16:8f:2f:9e:fc:e9:99:c9:11:09:31:99:4a:29: c7:71:c1:c6:fc:88:0c:ac:65:5b:f5:34:a3:19:5a: 91:61:4f:50:69:96:b7:8c:94:b8:7a:cc:ba:b4:d2: e6:62:b5:fd:d1:39:39:7a:6b:a7:5e:db:af:c1:28: fd:27:91:72:91:74:3b:8e:bb:8f:99:f9:44:f2:6c: b3:65:82:c9:b1:c2:2d:23:be:83:8f:c0:ea:d7:dd: 41:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:00:A0:8B:18:43:1E:A8:71:EB:C9:53:00:95:D8:67:FB:A6:E4:67 X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:fb:bb:58:bb:09:54:0a:72:dd:18:bd:3e:af:b1:d2:6f:ff: 87:5e:6a:bb:91:19:fd:02:5b:3c:6b:4c:50:93:f1:33:83:9f: 1e:18:28:2e:73:50:68:c3:f2:58:9d:42:aa:be:eb:c8:6d:59: da:11:77:cb:f1:f7:48:3f:75:48:9d:b3:8f:31:f4:89:a0:06: 5c:0b:d3:21:3f:0b:df:6d:e9:ef:45:ef:17:f2:06:13:2d:22: e7:38:27:f8:5d:ce:d7:27:3a:fa:13:bc:36:c3:5b:7a:d1:af: 07:80:8d:62:2b:e2:d5:51:83:d6:e0:41:76:e4:b2:3b:3b:d8: 85:7b:7e:a5:e4:8f:b9:62:88:9c:b1:e2:ed:ae:e5:83:2b:00: dd:3b:b9:41:c3:26:0b:66:f0:81:7d:c0:b8:2f:3a:c9:c8:f8: 50:e3:9c:74:4a:60:57:c0:23:32:bc:dd:e8:37:d4:36:ce:1b: f6:1a:5b:21:c5:e2:91:56:d1:14:cc:a3:a1:8a:50:f6:8f:88: 27:04:24:dd:91:31:20:65:f0:0b:b6:19:d9:e2:93:4a:bb:eb: 34:25:66:2b:2c:b7:92:c7:5f:06:c3:5d:68:48:cb:70:e2:ed: ee:5a:fe:d3:26:81:15:53:6b:8f:43:e4:c6:be:d7:f6:b4:b9: 6b:ef:3b:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjUxMjMxMTYwMDIzWhcNMjYwMTA3MTYwMDIzWjAYMRYwFAYD VQQDDA02OTU1NDg5Ny0yN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJCafMpEOhy1XVUELoD3yEnpKlooibbb6SdIQHrPfjcmEO0GBiYA6IGHsOz1 W+w7EvXIA9OB7KawJ8cA5q26ijnnSgbtNzI27s9AG14KUabtTJ2mo5ioAjWC8O6+ tMp5F9vZpw9DIUgxjQeyufhThNTni647HohcbhxcSvLJYpZ82WI4+0D9aCH/Cz7M ebrd6x25PgCkzOmEg0za063QABrYQZ4gFo8vnvzpmckRCTGZSinHccHG/IgMrGVb 9TSjGVqRYU9QaZa3jJS4esy6tNLmYrX90Tk5emunXtuvwSj9J5FykXQ7jruPmflE 8myzZYLJscItI76Dj8Dq191BMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMAoIsY Qx6ocevJUwCV2Gf7puRnMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh+7tYuwlUCnLdGL0+r7HSb/+HXmq7kRn9Als8a0xQk/Ezg58eGCgu c1Bow/JYnUKqvuvIbVnaEXfL8fdIP3VInbOPMfSJoAZcC9MhPwvfbenvRe8X8gYT LSLnOCf4Xc7XJzr6E7w2w1t60a8HgI1iK+LVUYPW4EF25LI7O9iFe36l5I+5Yoic seLtruWDKwDdO7lBwyYLZvCBfcC4LzrJyPhQ45x0SmBXwCMyvN3oN9Q2zhv2Glsh xeKRVtEUzKOhilD2j4gnBCTdkTEgZfALthnZ4pNKu+s0JWYrLLeSx18Gw11oSMtw 4u3uWv7TJoEVU2uPQ+TGvtf2tLlr7zv3 -----END CERTIFICATE-----Generated at Thu Jan 1 09:06:53 2026 by rpki-client