This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: XOo7nZYVD+QNTx2w8nY9hDOWD2e6v7aAWB31CF3tc90= Subject key identifier: 49:9D:D6:61:81:DB:70:4D:3C:FB:64:0B:5F:10:9E:4E:D9:F2:62:DA Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 083C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 082A Signing time: Thu 04 Dec 2025 19:55:49 +0000 Manifest this update: Thu 04 Dec 2025 19:55:48 +0000 Manifest next update: Thu 11 Dec 2025 19:55:48 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: acw/DTKlv2NCNhYxw97+QcQXI5piU3zEWs4EZfZe9lI=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Dec 4 19:55:48 2025 GMT Not After : Dec 11 19:55:48 2025 GMT Subject: CN=6931e744-e7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1f:ab:c1:b5:73:26:11:77:d4:31:0e:b9:9b: e7:39:10:72:cb:cd:52:85:f1:31:a4:49:70:26:dd: 87:7d:14:52:29:77:0d:eb:06:ae:5f:77:b7:7f:37: d8:ed:7f:7e:bf:db:8a:70:ce:9d:e8:e6:62:26:cd: 37:fe:a1:5d:9b:0a:5d:67:84:81:4b:85:2c:aa:d5: 8e:d3:cd:2e:24:46:a7:c4:9c:c7:40:d1:ca:1e:b0: d9:05:5d:c8:22:d4:be:72:69:b8:cb:1b:3a:fa:91: 10:5a:44:79:85:a3:e9:d3:b4:d5:ce:b9:28:56:ef: 14:01:1b:3c:7e:ae:33:e5:0c:a3:f4:29:32:8a:c1: 01:b6:b6:1d:f0:38:ff:9c:32:4d:13:de:72:0b:36: f8:c3:b0:58:fb:12:aa:77:ca:c0:d3:94:32:4a:8a: 4b:6c:39:3f:46:1d:83:8e:ea:1c:cd:c4:52:d1:93: 66:c0:90:dd:df:e0:8c:15:05:c6:e1:e6:f8:46:a0: 15:aa:d1:b6:c6:69:08:a0:67:1a:6c:ee:04:0d:59: 30:dc:6d:d8:5a:10:23:f3:07:a7:49:f4:c6:a0:6a: 66:de:5f:c1:39:37:23:1e:ce:61:f0:9d:dc:f5:85: 3f:5a:25:e0:b7:ca:0e:02:26:d5:49:99:a0:ac:ab: ca:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9D:D6:61:81:DB:70:4D:3C:FB:64:0B:5F:10:9E:4E:D9:F2:62:DA X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c4:00:66:0f:b8:69:37:d7:b3:02:a5:2e:25:19:09:bb:bf: f6:c2:c5:1f:c9:cf:16:dd:a0:92:8d:36:cb:8d:70:69:9f:b9: 6b:cb:8b:4f:4a:66:97:ba:30:20:83:48:0d:14:91:60:23:53: 0f:65:90:d9:ff:40:ab:6a:25:7e:8d:07:88:41:77:09:03:9d: bf:50:db:8e:d9:3e:18:5c:e8:b2:d0:f3:53:ab:5b:ae:5e:27: 38:39:ac:8e:fe:59:8a:cd:7a:7d:72:9f:16:30:72:4f:9d:ff: 0d:f6:4c:9e:24:f3:dd:f9:61:fb:c4:85:9b:0f:1c:d9:ea:60: 13:ec:ab:19:54:fb:e2:7e:47:7c:8d:90:fa:b6:23:29:7f:f6: 91:c5:72:21:85:5a:02:d6:20:89:53:2e:ed:22:ff:4c:37:c1: 6c:3e:8c:a3:11:e5:35:de:ec:e8:b1:1f:5a:d6:28:2e:7a:85: c9:db:76:5e:d1:d3:c2:ec:8e:c2:05:83:3e:84:dd:48:6c:3c: c3:df:d9:60:56:80:0f:50:61:a2:df:80:b3:68:96:2e:81:8f: 5b:7d:04:b4:2c:48:5e:95:06:94:d6:2a:60:5d:58:b4:00:33: 4c:21:df:40:78:70:a7:f2:46:8e:ba:9c:9a:42:d4:89:22:f3: d1:3b:ea:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUxMjA0MTk1NTQ4WhcNMjUxMjExMTk1NTQ4WjAYMRYwFAYD VQQDEw02OTMxZTc0NC1lN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApR+rwbVzJhF31DEOuZvnORByy81ShfExpElwJt2HfRRSKXcN6wauX3e3fzfY 7X9+v9uKcM6d6OZiJs03/qFdmwpdZ4SBS4UsqtWO080uJEanxJzHQNHKHrDZBV3I ItS+cmm4yxs6+pEQWkR5haPp07TVzrkoVu8UARs8fq4z5Qyj9CkyisEBtrYd8Dj/ nDJNE95yCzb4w7BY+xKqd8rA05QySopLbDk/Rh2DjuoczcRS0ZNmwJDd3+CMFQXG 4eb4RqAVqtG2xmkIoGcabO4EDVkw3G3YWhAj8wenSfTGoGpm3l/BOTcjHs5h8J3c 9YU/WiXgt8oOAibVSZmgrKvKkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmd1mGB 23BNPPtkC18Qnk7Z8mLaMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8xABmD7hpN9ezAqUuJRkJu7/2wsUfyc8W3aCSjTbLjXBpn7lry4tP SmaXujAgg0gNFJFgI1MPZZDZ/0CraiV+jQeIQXcJA52/UNuO2T4YXOiy0PNTq1uu Xic4OayO/lmKzXp9cp8WMHJPnf8N9kyeJPPd+WH7xIWbDxzZ6mAT7KsZVPvifkd8 jZD6tiMpf/aRxXIhhVoC1iCJUy7tIv9MN8FsPoyjEeU13uzosR9a1igueoXJ23Ze 0dPC7I7CBYM+hN1IbDzD39lgVoAPUGGi34CzaJYugY9bfQS0LEhelQaU1ipgXVi0 ADNMId9AeHCn8kaOupyaQtSJIvPRO+op -----END CERTIFICATE-----Generated at Sat Dec 6 16:22:35 2025 by rpki-client