This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json) Hash identifier: r4+jmGbfIH22HSq7n8lLll56r+/a+tKhqwjKL5dDeKk= Subject key identifier: 9C:98:FE:21:84:8E:D5:BB:F1:33:0A:E7:58:36:0C:02:50:47:50:73 Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft Manifest number: 12 Signing time: Fri 19 Dec 2025 06:54:15 +0000 Manifest this update: Fri 19 Dec 2025 06:54:15 +0000 Manifest next update: Fri 26 Dec 2025 06:54:15 +0000 Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: lKd+WKapjZZ+eSc2AE1AtWDLxaxdO9s9vzm6O9x2oqM=) 2: 86227722C92A11F0872AB883C4F9AE02.roa (hash: RCgqSnz/5wU5bIIOXEkp3UnnvACHFxrmmpLQxkHAG04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Validity Not Before: Dec 19 06:54:15 2025 GMT Not After : Dec 26 06:54:15 2025 GMT Subject: CN=6944f697-41ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:13:f7:1e:7f:2d:7c:57:53:7f:ca:9c:35:bb: b0:5a:2f:00:66:ab:d1:2f:d4:28:fe:67:d1:15:65: 77:57:f1:d0:15:7c:9f:cf:79:11:01:f5:a5:9e:ab: 5f:5a:64:13:ff:79:24:dd:53:92:92:d5:45:68:f3: f1:3c:18:ad:95:96:4b:7d:56:4e:49:ee:55:05:15: 60:58:30:54:1e:c6:e7:df:e4:8e:b7:ac:43:1d:4d: c5:99:b4:ed:f5:8d:1e:99:2a:08:d1:dd:c5:43:9b: 07:45:e3:99:91:15:bb:6b:84:27:e1:46:da:91:66: b6:fc:4d:f3:2e:7d:ac:59:9f:c7:5b:4a:12:39:00: 68:86:c9:65:d7:7a:9d:36:fb:de:1b:0e:06:cb:9b: 80:e4:fd:18:3d:23:9d:ab:cb:6b:76:89:2f:9c:7c: b1:d7:2f:67:16:77:ac:f6:af:2b:5d:f0:f1:98:49: 8a:00:23:a1:29:ad:21:bc:4b:51:91:41:8b:34:63: 7c:84:b6:7c:42:b2:b2:00:b3:ae:6f:8a:df:ce:a4: f2:c7:84:fb:34:a0:71:ca:2d:e1:74:dd:2a:24:04: be:ec:4b:b5:ec:40:23:7f:d6:cc:3b:47:04:b8:e6: 88:54:1f:53:00:00:c7:09:62:f0:f2:04:b4:7e:34: ec:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:98:FE:21:84:8E:D5:BB:F1:33:0A:E7:58:36:0C:02:50:47:50:73 X509v3 Authority Key Identifier: keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:cf:1b:52:6e:a3:fe:f3:2e:89:5c:9c:bc:3e:d3:26:63:09: 9b:6d:e6:2d:25:4e:e2:98:5d:45:c6:1a:ef:7b:73:72:e4:9d: c3:95:99:b2:04:f3:98:33:a1:8b:01:02:74:d7:2f:14:df:b0: 8b:2f:78:c5:a9:20:69:87:56:60:53:07:c6:09:ca:49:20:55: 3c:0e:44:2d:62:73:36:3e:23:16:66:35:be:2b:1a:0a:92:8f: 88:f6:f1:9f:b9:17:30:ac:48:9d:95:59:4e:07:35:19:0b:20: de:5a:dd:ea:70:2c:21:33:9f:1d:6c:24:73:eb:68:63:15:8a: 7e:ea:b3:64:b6:21:02:f3:78:56:25:2a:2d:c3:f8:00:ab:d5: 5d:a7:5e:e9:6e:bb:0d:79:07:c2:ae:27:98:fd:59:b9:3b:fb: 8e:24:89:df:da:56:9e:08:7d:3e:2b:5f:2e:00:68:bd:c7:49: 8a:fb:fa:f9:99:da:5b:80:5b:fe:85:98:87:57:a1:4e:a7:a5: ac:ca:1c:74:b1:89:41:79:01:d5:fe:69:cc:4f:f3:7c:d8:a7: 8c:2b:32:5f:11:c7:2d:46:bf:4f:5c:98:0f:bf:36:f3:98:8f: c8:1d:fe:7a:6d:9b:2a:34:27:2b:19:8b:ff:de:45:50:5b:e0: b8:9c:cf:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTEy QjY2NjExMC8GA1UEBRMoMzUwODE5N0ExMEZFQTQ2QTcxODQ2MzMxNEZFQkE5Mzk0 NEI2MjQ4QjAeFw0yNTEyMTkwNjU0MTVaFw0yNTEyMjYwNjU0MTVaMBgxFjAUBgNV BAMMDTY5NDRmNjk3LTQxYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyE/cefy18V1N/ypw1u7BaLwBmq9Ev1Cj+Z9EVZXdX8dAVfJ/PeREB9aWeq19a ZBP/eSTdU5KS1UVo8/E8GK2Vlkt9Vk5J7lUFFWBYMFQexuff5I63rEMdTcWZtO31 jR6ZKgjR3cVDmwdF45mRFbtrhCfhRtqRZrb8TfMufaxZn8dbShI5AGiGyWXXep02 +94bDgbLm4Dk/Rg9I52ry2t2iS+cfLHXL2cWd6z2rytd8PGYSYoAI6EprSG8S1GR QYs0Y3yEtnxCsrIAs65vit/OpPLHhPs0oHHKLeF03SokBL7sS7XsQCN/1sw7RwS4 5ohUH1MAAMcJYvDyBLR+NOx/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnJj+IYSO 1bvxMwrnWDYMAlBHUHMwHwYDVR0jBBgwFoAUNQgZehD+pGpxhGMxT+upOUS2JIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2Lzk5MzYxQTdDQzky OTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdweGhHTXhULXVwT1VTMkpJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFnWmVoRC1wR3B4aEdNeFQtdXBPVVMySklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2Lzk5MzYxQTdDQzkyOTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdw eGhHTXhULXVwT1VTMkpJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAILPG1Juo/7zLolcnLw+0yZjCZtt5i0lTuKYXUXGGu97c3LkncOVmbIE 85gzoYsBAnTXLxTfsIsveMWpIGmHVmBTB8YJykkgVTwORC1iczY+IxZmNb4rGgqS j4j28Z+5FzCsSJ2VWU4HNRkLIN5a3epwLCEznx1sJHPraGMVin7qs2S2IQLzeFYl Ki3D+ACr1V2nXuluuw15B8KuJ5j9Wbk7+44kid/aVp4IfT4rXy4AaL3HSYr7+vmZ 2luAW/6FmIdXoU6npazKHHSxiUF5AdX+acxP83zYp4wrMl8Rxy1Gv09cmA+/NvOY j8gd/nptmyo0JysZi//eRVBb4Licz+I= -----END CERTIFICATE-----Generated at Fri Dec 19 19:08:56 2025 by rpki-client