This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: tgu3aNlPwDDerdH1+nZEOElAROu1CmqUahLJKqBDvTw= Subject key identifier: 74:DB:10:31:75:07:5C:85:FF:FB:77:2E:C1:9E:2A:0E:C3:B6:3F:7C Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 088C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0877 Signing time: Thu 04 Dec 2025 19:45:25 +0000 Manifest this update: Thu 04 Dec 2025 19:45:24 +0000 Manifest next update: Thu 11 Dec 2025 19:45:24 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: kecp5Pf5xjnXZ7ZoJ3OE/W4eFnvE1uUaULtlz17iYBU=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Dec 4 19:45:24 2025 GMT Not After : Dec 11 19:45:24 2025 GMT Subject: CN=6931e4d4-e163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:16:05:26:9d:98:0e:29:cd:04:a2:eb:97:32: 8f:90:c6:e2:21:8f:8b:1b:43:e1:49:ac:62:26:d0: f8:11:1f:ab:2e:6d:d0:d8:2c:22:07:57:2c:33:72: ff:54:75:34:f2:0c:9c:7a:8f:65:c0:da:2c:62:9d: 5e:5c:d0:6b:bf:0b:37:8a:27:7b:6a:9b:77:3a:17: e0:6a:89:93:2a:f2:81:54:e8:2b:f6:af:af:34:9e: d2:e1:56:9f:ed:87:5f:35:71:f9:c5:dc:e0:04:8a: 70:7e:2e:f3:c6:b5:70:b0:05:7c:b6:a4:7c:af:66: 67:d7:1a:47:09:3e:0a:4e:cb:5a:0b:22:e0:0d:d7: 58:41:02:01:e9:94:d9:55:65:1e:3f:bc:4f:9f:ba: 7c:dc:c9:ff:44:19:91:0e:8a:74:13:f2:74:be:75: c8:e4:ac:10:d7:35:81:9f:09:9b:27:a9:3f:60:7c: 52:b0:0b:36:f3:38:ef:ad:da:99:bf:cb:26:de:40: 78:cf:d0:2d:54:9b:7b:fa:d5:07:c4:da:39:76:0d: 91:63:89:93:2d:3d:30:61:19:77:62:bc:78:71:c7: cf:02:5e:9e:f6:48:22:58:0a:a9:80:d0:45:e4:23: bc:83:e2:5e:01:00:ad:d4:d2:81:53:6a:40:84:39: 50:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DB:10:31:75:07:5C:85:FF:FB:77:2E:C1:9E:2A:0E:C3:B6:3F:7C X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:be:5b:9e:b2:36:49:2b:8f:cb:b3:63:1d:fc:0a:d2:39:64: a7:89:87:93:6b:8a:75:e7:17:cd:ad:3d:af:4a:a0:18:8f:a3: 89:9d:c5:21:c9:98:8d:4c:1f:fd:4c:37:cc:b7:d4:53:7a:a9: 5d:6c:8a:e0:f5:80:55:76:ba:29:f9:2b:38:00:06:1b:77:d3: 27:46:c6:80:3a:f4:a9:03:51:b5:bf:e8:7d:d0:29:05:da:df: ce:0e:93:ad:54:4e:a6:07:f0:b7:13:45:fb:cb:0c:4b:40:e0: 84:14:e6:bb:e0:32:49:5c:8a:cd:41:f5:bd:9c:17:1c:9a:8a: 98:7d:0f:62:28:60:d8:d6:37:49:22:04:b7:04:df:5d:7e:78: 11:79:76:e3:93:a4:8b:e3:08:ee:9c:87:36:c5:36:42:75:d9: 81:1d:43:c3:3e:c4:c2:5a:69:78:74:79:8c:22:6b:50:93:fd: 79:7d:08:a8:9e:ef:26:26:54:48:84:2b:fa:3e:7d:6c:ed:91: 32:73:8a:e0:75:65:4d:0b:0e:c0:be:af:59:fd:e3:6b:97:41: 09:f6:3c:3e:22:5c:65:86:27:b1:e3:96:45:78:5a:dd:53:a9: f2:fb:df:40:67:91:09:32:33:4e:fd:9a:5b:86:aa:7e:e8:13: e0:1d:55:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUxMjA0MTk0NTI0WhcNMjUxMjExMTk0NTI0WjAYMRYwFAYD VQQDEw02OTMxZTRkNC1lMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xYFJp2YDinNBKLrlzKPkMbiIY+LG0PhSaxiJtD4ER+rLm3Q2CwiB1csM3L/ VHU08gyceo9lwNosYp1eXNBrvws3iid7apt3OhfgaomTKvKBVOgr9q+vNJ7S4Vaf 7YdfNXH5xdzgBIpwfi7zxrVwsAV8tqR8r2Zn1xpHCT4KTstaCyLgDddYQQIB6ZTZ VWUeP7xPn7p83Mn/RBmRDop0E/J0vnXI5KwQ1zWBnwmbJ6k/YHxSsAs28zjvrdqZ v8sm3kB4z9AtVJt7+tUHxNo5dg2RY4mTLT0wYRl3Yrx4ccfPAl6e9kgiWAqpgNBF 5CO8g+JeAQCt1NKBU2pAhDlQXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTbEDF1 B1yF//t3LsGeKg7Dtj98MB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvvluesjZJK4/Ls2Md/ArSOWSniYeTa4p15xfNrT2vSqAYj6OJncUh yZiNTB/9TDfMt9RTeqldbIrg9YBVdrop+Ss4AAYbd9MnRsaAOvSpA1G1v+h90CkF 2t/ODpOtVE6mB/C3E0X7ywxLQOCEFOa74DJJXIrNQfW9nBccmoqYfQ9iKGDY1jdJ IgS3BN9dfngReXbjk6SL4wjunIc2xTZCddmBHUPDPsTCWml4dHmMImtQk/15fQio nu8mJlRIhCv6Pn1s7ZEyc4rgdWVNCw7Avq9Z/eNrl0EJ9jw+Ilxlhiex45ZFeFrd U6ny+99AZ5EJMjNO/Zpbhqp+6BPgHVVa -----END CERTIFICATE-----Generated at Sat Dec 6 14:50:42 2025 by rpki-client