This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: ZkeSly/UDh+lxy/0nzO1uQekW3WXlVOpgWtmXbTuf+I= Subject key identifier: 23:64:CF:E0:6B:59:EB:98:0E:92:EE:19:B3:5B:B9:BA:07:34:1C:99 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 031D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 0318 Signing time: Fri 19 Dec 2025 00:21:58 +0000 Manifest this update: Fri 19 Dec 2025 00:21:58 +0000 Manifest next update: Fri 26 Dec 2025 00:21:58 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: OQib5O4zUz2zdethdFEsU/L2Uwm/2Pek3CIK+QytTYU=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Dec 19 00:21:58 2025 GMT Not After : Dec 26 00:21:58 2025 GMT Subject: CN=69449aa6-1a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:09:68:3f:91:81:de:27:03:11:f3:28:5f: 60:92:17:7c:39:2d:1e:90:b2:e8:29:dc:a2:6d:3a: 19:b3:55:ad:cc:55:92:38:8b:df:fb:25:dc:6b:6a: 06:23:df:4e:7a:a3:be:50:c1:08:15:2c:99:eb:b9: 61:0f:db:8a:9a:e5:ca:7b:1f:b3:0c:53:cd:b3:3f: 1d:ec:3a:ee:01:ca:45:79:e1:b1:b7:81:7b:75:d3: fd:c3:ed:61:f2:94:15:5f:ed:64:62:b7:2d:bf:c0: eb:e5:3c:5e:81:1f:3b:30:7b:db:e3:5e:9a:6b:96: 17:25:d1:bc:fc:f8:6d:c3:26:15:15:0d:ac:b9:6a: f3:e7:e2:4f:28:37:87:93:29:55:5f:eb:01:2f:d9: cf:98:e0:2a:09:81:92:df:f1:ea:08:c4:2b:1d:bb: 89:b8:9b:9d:40:4d:b9:31:4a:35:8e:66:a4:15:1c: a8:d0:d8:a6:ba:9e:9c:b6:f7:ba:03:c1:fe:11:67: ed:cd:f2:85:7b:4b:1b:23:d8:af:95:9a:73:e6:7a: 7b:3f:aa:74:17:fe:38:59:a8:29:f5:e9:33:cd:e0: fa:33:b5:c6:f1:3d:ee:3b:a0:34:b5:e4:00:e2:f2: fc:bd:e2:f7:bc:cf:c3:49:69:f7:43:d7:10:f3:9b: 36:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:64:CF:E0:6B:59:EB:98:0E:92:EE:19:B3:5B:B9:BA:07:34:1C:99 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:0a:1a:2b:94:53:ed:dc:1e:ce:7e:0d:23:68:e3:b2:8a:15: 71:37:1d:50:f1:4b:05:93:f4:15:53:7a:4f:28:15:4d:e7:96: 3b:1f:ae:60:d0:8c:05:fb:12:1e:fd:94:d7:5a:30:85:da:fb: 22:5e:02:cc:74:7e:33:40:4d:d8:94:15:44:8e:79:f7:7c:c4: 48:61:f2:46:9a:67:70:09:9f:d7:9c:4a:e5:e7:97:bc:53:4b: 40:68:5b:b5:10:c4:c7:4a:86:66:73:1b:d0:1b:f4:c3:02:81: 4e:22:0d:b6:60:d1:1b:d7:3b:f5:85:8a:c3:c1:f1:4a:32:9e: 6b:4c:a3:9b:a9:60:dd:df:73:3f:6c:7a:6a:e7:a2:d0:bc:67: 72:93:e8:c9:9d:52:d1:0a:d5:91:f3:92:d6:2f:90:ee:fb:45: a5:bd:19:8c:3d:b0:f1:e5:c9:5b:0c:33:05:f8:5b:9e:d8:69: e8:dd:48:25:d8:11:5a:75:4d:eb:e1:81:5e:ea:06:0c:a7:c7: 98:d3:3f:1e:9e:62:b0:c9:33:f0:7d:05:50:24:a0:a5:b0:c9: af:65:0f:28:67:56:cb:f4:b6:95:ff:d2:dd:75:23:fa:dc:39: 84:31:a4:52:92:ac:07:91:f0:ac:1b:08:f4:fc:e3:b9:13:72: d7:d6:ba:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUxMjE5MDAyMTU4WhcNMjUxMjI2MDAyMTU4WjAYMRYwFAYD VQQDDA02OTQ0OWFhNi0xYTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6AJaD+Rgd4nAxHzKF9gkhd8OS0ekLLoKdyibToZs1WtzFWSOIvf+yXca2oG I99OeqO+UMEIFSyZ67lhD9uKmuXKex+zDFPNsz8d7DruAcpFeeGxt4F7ddP9w+1h 8pQVX+1kYrctv8Dr5TxegR87MHvb416aa5YXJdG8/PhtwyYVFQ2suWrz5+JPKDeH kylVX+sBL9nPmOAqCYGS3/HqCMQrHbuJuJudQE25MUo1jmakFRyo0Nimup6ctve6 A8H+EWftzfKFe0sbI9ivlZpz5np7P6p0F/44Wagp9ekzzeD6M7XG8T3uO6A0teQA 4vL8veL3vM/DSWn3Q9cQ85s2bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNkz+Br WeuYDpLuGbNbuboHNByZMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYChorlFPt3B7Ofg0jaOOyihVxNx1Q8UsFk/QVU3pPKBVN55Y7H65g 0IwF+xIe/ZTXWjCF2vsiXgLMdH4zQE3YlBVEjnn3fMRIYfJGmmdwCZ/XnErl55e8 U0tAaFu1EMTHSoZmcxvQG/TDAoFOIg22YNEb1zv1hYrDwfFKMp5rTKObqWDd33M/ bHpq56LQvGdyk+jJnVLRCtWR85LWL5Du+0WlvRmMPbDx5clbDDMF+Fue2Gno3Ugl 2BFadU3r4YFe6gYMp8eY0z8enmKwyTPwfQVQJKClsMmvZQ8oZ1bL9LaV/9LddSP6 3DmEMaRSkqwHkfCsGwj0/OO5E3LX1rqw -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:36 2025 by rpki-client