This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: nB2lTVd6+9KtKSoKy1kkeIlknfQMTTSecpmiuEeRrhw= Subject key identifier: FB:C7:69:31:C3:2C:80:2F:AB:49:28:EF:DC:B5:FA:E4:FC:63:8A:18 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0891 Signing time: Sat 24 Jan 2026 19:58:22 +0000 Manifest this update: Sat 24 Jan 2026 19:58:21 +0000 Manifest next update: Sat 31 Jan 2026 19:58:21 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: eJz31MWtKpTUc4dKSA4jR9pcTW1JAEQBGA0uT0V/JUY=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Jan 24 19:58:21 2026 GMT Not After : Jan 31 19:58:21 2026 GMT Subject: CN=6975245e-51b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:33:45:23:71:9f:3c:78:6e:93:79:1d:21:24: 82:57:20:7f:f3:10:bc:b0:eb:7d:37:62:e7:8b:27: be:69:b5:08:8d:88:d3:b0:4f:51:9b:9d:83:b9:e6: 1d:55:e4:cc:fe:db:7d:51:94:0a:1f:2a:29:59:2a: dd:3d:e4:14:a7:ce:d0:e3:86:f5:2c:a5:db:26:ef: ba:70:4c:6d:c5:a5:ac:d7:eb:0b:3c:db:be:ae:5c: 49:62:e9:fb:ea:6a:63:3c:13:cc:5d:1d:ad:17:00: c4:01:8e:d8:58:bf:53:18:09:62:d4:49:e1:de:76: fb:f3:a6:33:5a:0d:1b:97:74:62:f8:7d:15:27:ec: bb:97:fe:78:15:ac:ac:ab:bf:94:fb:07:c0:e6:ed: 35:d5:05:80:69:19:b5:75:ac:ed:73:f6:4e:3b:a8: 1f:68:1c:ca:00:24:92:0e:2d:72:ef:43:48:78:20: 4d:ee:fc:05:3e:e6:bd:18:bb:bd:c1:bd:d1:61:ae: 70:25:49:c4:7c:c7:56:1c:85:23:be:9f:8c:04:22: b2:59:7d:ab:aa:8e:4d:3f:b7:1d:a0:49:05:20:65: 7e:0e:ec:28:c7:ea:47:0e:4c:0c:51:26:52:d4:2f: 5e:85:c4:3f:46:58:11:6b:5d:eb:84:e0:31:b0:b1: 53:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C7:69:31:C3:2C:80:2F:AB:49:28:EF:DC:B5:FA:E4:FC:63:8A:18 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:fc:05:e8:8d:ea:2b:8e:4e:22:25:0f:2e:fc:23:de:74:e8: 71:42:c6:90:9b:9a:99:95:1d:38:51:f4:e4:16:9f:fe:c4:e5: 31:eb:ad:55:76:36:ce:73:fa:58:01:ae:22:ad:36:bc:d0:d4: 5e:11:9b:94:c0:30:1d:1c:f5:46:3c:48:c0:31:7e:d7:13:9f: da:9e:92:2c:f2:9c:03:4f:76:57:2e:37:01:7e:02:22:9a:02: 89:a0:ff:42:3f:ee:44:8c:d7:c0:84:54:8f:82:c3:4b:10:c6: 3d:2b:bf:ec:f2:6e:21:43:6c:e1:41:ad:99:8c:47:3d:20:f4: ec:15:9c:b7:f3:cd:c5:bd:26:35:4f:88:92:a4:eb:f3:3a:f0: 44:64:14:fe:61:41:10:26:0e:83:3c:87:ec:b2:83:da:a0:5e: 29:9e:74:53:4c:32:5c:9f:45:e5:84:71:d4:63:3e:58:84:1a: f3:89:8b:aa:4a:eb:c6:13:37:fe:95:7f:fc:d4:a1:df:94:6e: 27:c5:4c:22:a0:e5:2e:d1:f3:46:2b:e8:82:51:cb:7b:49:32: f6:6f:18:da:67:99:de:c8:9b:45:78:84:db:6d:ba:f2:31:77: d9:ef:f0:01:28:f1:e4:f7:40:a8:9d:4e:f4:98:03:38:ae:ea: f4:93:97:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjYwMTI0MTk1ODIxWhcNMjYwMTMxMTk1ODIxWjAYMRYwFAYD VQQDDA02OTc1MjQ1ZS01MWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zNFI3GfPHhuk3kdISSCVyB/8xC8sOt9N2Lniye+abUIjYjTsE9Rm52DueYd VeTM/tt9UZQKHyopWSrdPeQUp87Q44b1LKXbJu+6cExtxaWs1+sLPNu+rlxJYun7 6mpjPBPMXR2tFwDEAY7YWL9TGAli1Enh3nb786YzWg0bl3Ri+H0VJ+y7l/54Fays q7+U+wfA5u011QWAaRm1daztc/ZOO6gfaBzKACSSDi1y70NIeCBN7vwFPua9GLu9 wb3RYa5wJUnEfMdWHIUjvp+MBCKyWX2rqo5NP7cdoEkFIGV+Duwox+pHDkwMUSZS 1C9ehcQ/RlgRa13rhOAxsLFTYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvHaTHD LIAvq0ko79y1+uT8Y4oYMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy/AXojeorjk4iJQ8u/CPedOhxQsaQm5qZlR04UfTkFp/+xOUx661V djbOc/pYAa4irTa80NReEZuUwDAdHPVGPEjAMX7XE5/anpIs8pwDT3ZXLjcBfgIi mgKJoP9CP+5EjNfAhFSPgsNLEMY9K7/s8m4hQ2zhQa2ZjEc9IPTsFZy3883FvSY1 T4iSpOvzOvBEZBT+YUEQJg6DPIfssoPaoF4pnnRTTDJcn0XlhHHUYz5YhBrziYuq SuvGEzf+lX/81KHflG4nxUwioOUu0fNGK+iCUct7STL2bxjaZ5neyJtFeITbbbry MXfZ7/ABKPHk90ConU70mAM4rur0k5cd -----END CERTIFICATE-----Generated at Sun Jan 25 06:10:32 2026 by rpki-client