This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft File: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft (raw, json) Hash identifier: RrQksxAltKvQAOJeaSBn37Ajf5LkBhEi90M9wWRhOw4= Subject key identifier: EA:5B:AB:B6:C3:BC:38:43:24:C1:D3:59:05:C0:D2:70:05:B7:81:C6 Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft Manifest number: 02B4 Signing time: Fri 19 Dec 2025 00:41:54 +0000 Manifest this update: Fri 19 Dec 2025 00:41:54 +0000 Manifest next update: Fri 26 Dec 2025 00:41:54 +0000 Files and hashes: 1: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl (hash: tJShwLtoDChhAWxeU2rvNYRg5mnqD1oyuFk2gNnZvhs=) 2: 134B439A91B611ED8BA25C80C4F9AE02.roa (hash: jNBzv9AEhkETumwnZVmfkixYJ4ySA7uLCgYaGX6tsDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333, serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Dec 19 00:41:54 2025 GMT Not After : Dec 26 00:41:54 2025 GMT Subject: CN=69449f52-4c02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:08:d2:61:9f:62:9d:c3:22:29:28:c8:e8:f8: be:19:7c:08:45:d0:30:83:f2:29:06:51:68:76:f7: 81:e6:d7:4e:a5:a0:a8:c8:03:c3:b2:af:1b:a7:ea: f1:fc:fc:27:e6:01:7c:24:ad:d6:f8:c8:a2:7a:0a: 32:e6:40:9f:b7:4c:48:b8:3c:c3:3f:62:46:29:c0: 62:39:6b:40:77:87:ab:f4:7d:bc:fe:22:13:fb:ba: d7:d2:a0:ab:f5:9f:47:33:2f:af:d8:9e:a7:18:4f: 78:d0:37:1c:c6:07:ef:24:15:32:4b:c0:e9:6b:4f: 19:e2:db:8e:e4:52:32:28:31:b9:a3:7a:30:27:8d: b6:a5:42:1e:74:ec:e4:93:a1:43:e3:b1:37:81:01: 57:06:21:fe:a8:79:ea:5a:be:b4:66:e5:9a:7e:8e: 46:5b:37:79:74:ba:b6:b6:cf:65:1f:8a:33:23:ec: 14:e3:7d:91:d4:44:63:5f:3d:e4:5b:80:13:e8:51: f4:aa:f8:1e:1c:d9:99:c5:53:73:be:46:f0:dd:b5: 99:3d:20:f5:aa:61:8c:5a:84:ea:c6:24:ef:06:0c: e5:c0:0e:4c:9f:c9:50:5a:73:8f:7d:49:b5:f0:b7: d4:33:74:ea:85:a7:3f:04:2f:70:68:93:ef:05:b9: 75:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5B:AB:B6:C3:BC:38:43:24:C1:D3:59:05:C0:D2:70:05:B7:81:C6 X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:ae:5d:79:99:03:13:2c:a3:30:91:c8:34:b5:b8:27:3f:84: 22:1a:a4:aa:09:b1:33:38:03:60:02:80:12:e7:56:96:11:2c: 53:be:e2:60:dd:67:96:cd:a2:d8:17:fa:58:02:e0:a8:02:7b: 61:49:c1:0a:99:e6:ba:d2:b5:6f:c7:d7:f5:7a:58:38:0f:c9: a8:10:a7:08:0b:5f:62:02:dd:6f:56:25:2c:a0:a3:dc:33:6f: f2:2b:69:ba:4b:a8:df:9b:10:05:f0:c7:39:7d:84:47:33:21: c0:d3:c3:a7:42:3a:ee:66:e1:d6:1e:f1:f2:15:04:f0:50:14: da:1a:fb:2f:5a:73:c5:f4:7c:7a:8b:48:1c:4e:6a:52:be:5d: dd:62:33:b1:04:6c:83:f8:31:e1:b1:d3:b7:c7:a0:06:c6:e0: 05:ab:ca:32:b0:3f:91:18:02:06:db:b7:2b:b2:f6:b8:7e:ab: 38:b0:62:f4:a3:11:bd:37:e6:b0:d4:33:3a:77:5b:78:25:19: 1f:57:29:92:dd:4a:4d:5c:31:b0:64:4b:3e:20:fd:7d:bb:76: eb:e0:3c:80:f0:a1:d5:98:2e:d8:55:0c:e6:fe:5b:28:38:86: 24:22:cd:ea:73:31:b7:03:b3:8f:18:67:92:2a:82:ca:6b:48: 3d:b8:f4:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjUxMjE5MDA0MTU0WhcNMjUxMjI2MDA0MTU0WjAYMRYwFAYD VQQDDA02OTQ0OWY1Mi00YzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AjSYZ9incMiKSjI6Pi+GXwIRdAwg/IpBlFodveB5tdOpaCoyAPDsq8bp+rx /Pwn5gF8JK3W+Miiegoy5kCft0xIuDzDP2JGKcBiOWtAd4er9H28/iIT+7rX0qCr 9Z9HMy+v2J6nGE940DccxgfvJBUyS8Dpa08Z4tuO5FIyKDG5o3owJ422pUIedOzk k6FD47E3gQFXBiH+qHnqWr60ZuWafo5GWzd5dLq2ts9lH4ozI+wU432R1ERjXz3k W4AT6FH0qvgeHNmZxVNzvkbw3bWZPSD1qmGMWoTqxiTvBgzlwA5Mn8lQWnOPfUm1 8LfUM3Tqhac/BC9waJPvBbl1VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpbq7bD vDhDJMHTWQXA0nAFt4HGMB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjMzMy9ERUNCNjVBNDIzOTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0 SWtpdl9yN3R1eURqNEhwczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6rl15mQMTLKMwkcg0tbgnP4QiGqSqCbEzOANgAoAS51aWESxTvuJg 3WeWzaLYF/pYAuCoAnthScEKmea60rVvx9f1elg4D8moEKcIC19iAt1vViUsoKPc M2/yK2m6S6jfmxAF8Mc5fYRHMyHA08OnQjruZuHWHvHyFQTwUBTaGvsvWnPF9Hx6 i0gcTmpSvl3dYjOxBGyD+DHhsdO3x6AGxuAFq8oysD+RGAIG27crsva4fqs4sGL0 oxG9N+aw1DM6d1t4JRkfVymS3UpNXDGwZEs+IP19u3br4DyA8KHVmC7YVQzm/lso OIYkIs3qczG3A7OPGGeSKoLKa0g9uPTH -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:35 2025 by rpki-client