This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: 8Oa+8qmgytNonEcxO2xg3Pw+6cX4d4cLLLujYffGbag= Subject key identifier: A0:5E:E7:7B:2A:7A:CA:E4:78:A8:E3:A0:38:6F:F8:CA:36:D1:08:E5 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 06A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 06A1 Signing time: Sat 20 Dec 2025 21:41:57 +0000 Manifest this update: Sat 20 Dec 2025 21:41:57 +0000 Manifest next update: Sat 27 Dec 2025 21:41:57 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: lr6DuzEMrkQ/O5OOmaP8JiEYR+6Q2nrcoKD0hieQqY4=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Dec 20 21:41:57 2025 GMT Not After : Dec 27 21:41:57 2025 GMT Subject: CN=69471825-2d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c7:f9:24:c5:ae:61:62:ae:06:3f:2a:36:20: 79:ea:00:c0:73:37:71:57:8a:7c:af:71:60:80:86: 77:45:ae:4c:bf:69:45:00:64:63:e7:54:7c:11:30: 9a:fc:3f:09:a6:d5:c1:d4:ac:63:85:e6:43:3c:2e: fe:5b:6b:b2:d0:d6:a2:d6:f0:96:05:7a:b7:f2:b5: 1f:7f:44:4c:d7:90:86:aa:94:51:69:24:69:f5:c4: 45:81:c0:ac:f3:6a:27:45:4e:e8:2b:2c:71:fc:d4: 5c:51:bb:c2:d5:c4:66:84:b1:b1:cf:6e:0b:f1:66: ed:65:84:dc:3d:bc:52:2d:86:3e:bf:e5:00:5b:b4: a4:31:e9:64:76:81:a1:a1:ae:46:28:d2:d5:47:be: 27:9d:07:c8:79:38:2a:fa:14:2a:80:29:cc:41:80: 3d:1f:03:1e:ff:76:01:56:87:49:59:0f:a7:b0:5b: b0:be:bd:11:4c:de:1a:68:78:8b:fc:0a:3e:80:6d: 06:90:bd:53:a0:ef:b0:2d:e8:67:74:61:dc:b0:be: 69:3f:4a:64:8e:54:da:0f:52:13:8a:e7:a1:e6:22: 56:e2:1f:ed:22:fe:79:ce:dd:65:b0:63:e4:45:0b: 7f:7c:e4:da:ff:22:05:c5:2d:17:69:6f:0d:b3:c8: ef:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5E:E7:7B:2A:7A:CA:E4:78:A8:E3:A0:38:6F:F8:CA:36:D1:08:E5 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:cf:fb:1f:ea:df:93:9d:c6:ce:1f:43:db:c7:9f:f7:f9:36: 79:59:09:08:60:1b:14:b1:dd:f4:8b:ac:09:c7:ec:93:73:91: f7:52:6a:c2:1d:e3:76:a8:68:1b:9f:a1:75:4b:2e:66:0d:89: f8:31:13:80:3c:fa:e3:1e:a5:9c:3f:08:a8:c2:53:c1:16:c1: eb:e0:82:52:96:71:ef:9b:06:25:39:59:ed:46:29:30:d8:d3: bd:44:05:4e:81:0e:8e:fd:ef:11:54:c7:46:47:5b:b3:d2:ba: 12:8d:e6:cb:ea:55:79:b3:1f:57:33:fa:13:dd:b7:35:a3:e5: 35:04:f6:0e:f2:2c:81:7e:b0:7f:e9:3e:eb:03:58:75:f4:0a: ec:c5:68:b3:d4:b9:0c:6d:ec:51:a9:5a:54:c7:37:72:52:4e: dd:12:dd:7e:bd:4d:12:e4:b2:75:16:6e:8e:d7:9d:52:0f:8a: 88:b8:e4:ec:ef:d6:e2:60:65:64:8b:fe:74:11:1e:26:02:ff: a6:be:05:4b:32:d3:7e:4d:ae:5b:1f:19:66:6b:c6:f5:25:7b: 3b:18:ae:ef:ca:13:3f:21:52:c7:9b:5f:d7:b4:1a:09:b8:8b: 6b:39:b9:cd:74:4f:16:ca:34:8f:f9:fb:e5:03:d9:87:82:34: cf:0b:ae:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUxMjIwMjE0MTU3WhcNMjUxMjI3MjE0MTU3WjAYMRYwFAYD VQQDDA02OTQ3MTgyNS0yZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMf5JMWuYWKuBj8qNiB56gDAczdxV4p8r3FggIZ3Ra5Mv2lFAGRj51R8ETCa /D8JptXB1KxjheZDPC7+W2uy0Nai1vCWBXq38rUff0RM15CGqpRRaSRp9cRFgcCs 82onRU7oKyxx/NRcUbvC1cRmhLGxz24L8WbtZYTcPbxSLYY+v+UAW7SkMelkdoGh oa5GKNLVR74nnQfIeTgq+hQqgCnMQYA9HwMe/3YBVodJWQ+nsFuwvr0RTN4aaHiL /Ao+gG0GkL1ToO+wLehndGHcsL5pP0pkjlTaD1ITiueh5iJW4h/tIv55zt1lsGPk RQt/fOTa/yIFxS0XaW8Ns8jv5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBe53sq esrkeKjjoDhv+Mo20QjlMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUz/sf6t+TncbOH0Pbx5/3+TZ5WQkIYBsUsd30i6wJx+yTc5H3UmrC HeN2qGgbn6F1Sy5mDYn4MROAPPrjHqWcPwiowlPBFsHr4IJSlnHvmwYlOVntRikw 2NO9RAVOgQ6O/e8RVMdGR1uz0roSjebL6lV5sx9XM/oT3bc1o+U1BPYO8iyBfrB/ 6T7rA1h19ArsxWiz1LkMbexRqVpUxzdyUk7dEt1+vU0S5LJ1Fm6O151SD4qIuOTs 79biYGVki/50ER4mAv+mvgVLMtN+Ta5bHxlma8b1JXs7GK7vyhM/IVLHm1/XtBoJ uItrObnNdE8WyjSP+fvlA9mHgjTPC66j -----END CERTIFICATE-----Generated at Mon Dec 22 18:53:35 2025 by rpki-client