This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft File: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft (raw, json) Hash identifier: 4618ggYUfYxKcEDKwz+wDWt1XUoFe4vKgC/+gFmY7m0= Subject key identifier: 65:6F:FD:F1:05:DD:8E:CA:DF:93:5A:E1:16:A5:66:9E:8D:93:D1:80 Authority key identifier: D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 Certificate issuer: /CN=A9170F11/serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft Manifest number: CD Signing time: Sun 07 Dec 2025 03:58:28 +0000 Manifest this update: Sun 07 Dec 2025 03:58:27 +0000 Manifest next update: Sun 14 Dec 2025 03:58:27 +0000 Files and hashes: 1: 1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl (hash: iDJcsTHWslj2A//K6LpjylCSONMC7RLhg7IwQC0nuog=) 2: EB2858349B4B11EF86A11C85C4F9AE02.roa (hash: BH8r4wcRvODYc1YiRCd6qM+1RNm98aDQL1IFKl5rQ2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=D46964F9F3731F2F63E67008C91E59C7DCC78557 Validity Not Before: Dec 7 03:58:27 2025 GMT Not After : Dec 14 03:58:27 2025 GMT Subject: CN=6934fb64-0683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:42:09:a2:67:ea:94:3a:36:f1:d2:c0:de:0c: 0d:71:ec:d1:01:3a:cd:ab:db:8f:f1:c1:fb:5f:7c: 62:43:bb:8f:f6:92:46:58:4e:10:76:a4:0e:2d:b4: 48:34:4f:85:3d:71:fc:dd:0d:09:c9:18:37:ee:09: ee:f8:96:84:0d:95:61:4f:3e:17:c2:de:d3:19:c3: c4:eb:63:b2:a2:e0:67:53:74:9c:1d:7b:c7:ee:04: 8f:1c:db:2f:f7:31:1e:c2:e3:46:29:55:c3:10:30: 95:03:e0:b3:59:bb:c1:6e:51:a1:a9:ec:c2:91:d5: 62:44:cc:eb:aa:79:2e:16:8f:73:c1:c3:9d:db:19: c7:ee:2f:f7:52:53:dd:3a:a1:92:74:b9:e3:16:11: 74:d8:bd:ce:3a:08:83:0d:d7:b9:f1:aa:c6:ae:15: c5:57:14:5e:d5:9f:85:70:af:7b:da:aa:ab:f6:ec: dc:ea:09:9c:04:a1:75:d6:67:7a:cb:2f:59:d1:ed: 67:47:d6:8e:dd:b9:0a:44:d6:89:31:38:f0:74:09: 92:fd:c4:3f:7b:99:db:51:8b:96:9e:68:59:59:6d: cb:2a:46:72:c8:f5:ed:ab:1a:b1:ce:7f:73:8c:f7: 79:44:b9:54:1f:ff:22:51:cc:41:9f:c5:59:b3:5a: 37:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6F:FD:F1:05:DD:8E:CA:DF:93:5A:E1:16:A5:66:9E:8D:93:D1:80 X509v3 Authority Key Identifier: keyid:D4:69:64:F9:F3:73:1F:2F:63:E6:70:08:C9:1E:59:C7:DC:C7:85:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E926E9129A7C11EF84950D33C4F9AE02/1Glk-fNzHy9j5nAIyR5Zx9zHhVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:a8:1c:f5:cb:ed:e7:aa:5c:e2:62:67:66:b5:68:5f:ab:a6: d2:8a:74:15:f4:f5:c2:2d:c9:cb:9a:da:d8:80:95:ce:c6:b7: bb:ff:9f:4f:e5:43:25:02:fb:47:35:dc:52:3d:82:63:d8:5e: 79:ba:f3:62:9d:c1:6c:99:aa:c8:96:7a:01:c5:78:f5:8f:b4: 18:f7:16:b2:c7:81:7b:57:1f:4e:16:a8:50:f4:b0:4c:18:af: 0a:55:0f:da:08:cf:1e:12:de:d7:d9:55:4d:00:62:71:1f:10: 3b:aa:57:56:28:f0:e4:53:b4:e2:0a:af:73:f0:d4:b6:56:b8: 02:93:10:ab:47:c9:61:40:98:b9:e6:71:ad:64:f1:be:4d:9c: 0f:df:1c:4f:43:59:a0:d0:8d:3b:21:3a:ee:ac:c6:8a:eb:f4: 1c:7e:a9:52:3e:87:f8:6a:2a:8a:1a:e0:a2:da:67:db:cf:36: 96:80:0d:f9:07:d0:c3:d0:38:c2:cd:e8:cf:33:4b:75:24:de: 92:7a:52:85:e3:e4:2a:60:41:34:94:19:11:e7:1b:a2:51:30: a5:5f:84:d0:e1:4f:75:3d:fb:f9:b8:b7:d7:e3:21:12:c0:2c: 4d:ba:09:e1:b9:fd:5a:e4:95:f9:7f:2e:ce:0e:16:50:dc:94: 54:7f:85:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKEQ0Njk2NEY5RjM3MzFGMkY2M0U2NzAwOEM5MUU1OUM3 RENDNzg1NTcwHhcNMjUxMjA3MDM1ODI3WhcNMjUxMjE0MDM1ODI3WjAYMRYwFAYD VQQDEw02OTM0ZmI2NC0wNjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UIJomfqlDo28dLA3gwNcezRATrNq9uP8cH7X3xiQ7uP9pJGWE4QdqQOLbRI NE+FPXH83Q0JyRg37gnu+JaEDZVhTz4Xwt7TGcPE62OyouBnU3ScHXvH7gSPHNsv 9zEewuNGKVXDEDCVA+CzWbvBblGhqezCkdViRMzrqnkuFo9zwcOd2xnH7i/3UlPd OqGSdLnjFhF02L3OOgiDDde58arGrhXFVxRe1Z+FcK972qqr9uzc6gmcBKF11md6 yy9Z0e1nR9aO3bkKRNaJMTjwdAmS/cQ/e5nbUYuWnmhZWW3LKkZyyPXtqxqxzn9z jPd5RLlUH/8iUcxBn8VZs1o3tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVv/fEF 3Y7K35Na4RalZp6Nk9GAMB8GA1UdIwQYMBaAFNRpZPnzcx8vY+ZwCMkeWcfcx4VX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FOTI2RTkxMjlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5OWo1bkFJeVI1Wng5ekho VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFHbGstZk56SHk5ajVuQUl5UjVaeDl6SGhWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FOTI2RTkxMjlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi8xR2xrLWZOekh5 OWo1bkFJeVI1Wng5ekhoVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZqBz1y+3nqlziYmdmtWhfq6bSinQV9PXCLcnLmtrYgJXOxre7/59P 5UMlAvtHNdxSPYJj2F55uvNincFsmarIlnoBxXj1j7QY9xayx4F7Vx9OFqhQ9LBM GK8KVQ/aCM8eEt7X2VVNAGJxHxA7qldWKPDkU7TiCq9z8NS2VrgCkxCrR8lhQJi5 5nGtZPG+TZwP3xxPQ1mg0I07ITrurMaK6/QcfqlSPof4aiqKGuCi2mfbzzaWgA35 B9DD0DjCzejPM0t1JN6SelKF4+QqYEE0lBkR5xuiUTClX4TQ4U91Pfv5uLfX4yES wCxNugnhuf1a5JX5fy7ODhZQ3JRUf4UM -----END CERTIFICATE-----Generated at Mon Dec 8 11:19:08 2025 by rpki-client