This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: 17OPTIxm5fZSvgyilLSeG3As+xCJWlNRLlvijUgTH5Y= Subject key identifier: 7C:E0:43:09:E1:4B:25:42:5E:D7:42:D0:BB:12:BE:60:6C:0B:8F:57 Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 019E Signing time: Fri 19 Dec 2025 02:33:43 +0000 Manifest this update: Fri 19 Dec 2025 02:33:43 +0000 Manifest next update: Fri 26 Dec 2025 02:33:43 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: FTnyYZpse04/cAQKeJjjgFA+wLgFNHZ/nJb6GAwNMwk=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: 4ZzJfaYDIWcwC7QMRrN8yPR83xv8sh7dqWbbzPE3dT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Dec 19 02:33:43 2025 GMT Not After : Dec 26 02:33:43 2025 GMT Subject: CN=6944b987-1588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:60:8d:03:bd:a3:50:a3:1a:d6:64:40:2e:0a: 87:b3:7d:a5:ea:a5:f4:be:29:5f:b0:8e:e2:68:ad: f9:fd:3a:b4:50:65:5f:fe:a2:c0:9c:e8:a8:b8:ab: 4a:54:5d:60:80:0b:16:20:54:0c:49:c2:49:cf:0c: 30:9c:bd:b4:2f:88:ea:46:32:2d:57:73:a0:8e:d9: d4:e3:23:04:6b:f5:1f:e2:ab:36:99:cc:57:cf:5b: 14:32:6c:e1:1f:a2:32:39:1f:1b:44:0d:a4:53:80: f9:0f:f1:aa:c0:8a:38:c8:e2:2d:b8:2d:eb:89:d9: 1b:79:25:93:23:40:7a:4b:2c:c2:c9:09:89:a5:26: 01:86:3c:3f:ee:fd:8c:df:a6:ae:f7:b2:e9:54:a2: 8e:d8:d0:cb:1b:99:22:9b:4a:bc:81:ff:a0:fa:c2: 89:21:fb:ab:87:40:dc:5c:3e:50:08:27:43:9f:a3: e9:43:ce:91:47:93:43:fd:8c:8c:7b:42:cc:96:aa: d1:85:8e:a2:01:f8:63:a5:f9:8d:30:26:6a:b8:3e: 54:1a:d8:f6:06:49:66:28:4a:91:cd:77:af:3b:4a: 4d:b2:c2:e6:d5:7a:57:91:7a:6e:47:5f:23:cd:e6: 4c:94:66:39:e9:c1:55:7f:2d:20:9f:e1:1a:82:2c: 49:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E0:43:09:E1:4B:25:42:5E:D7:42:D0:BB:12:BE:60:6C:0B:8F:57 X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c2:e5:9e:96:aa:41:de:0d:72:a2:52:e7:2f:1c:2a:7e:86: d8:76:48:8d:22:c6:64:6f:00:3c:5e:a0:71:6e:2e:0d:42:79: 97:d0:43:7e:fa:06:0a:aa:2c:7d:1f:35:a1:37:a7:67:9b:c5: ad:3c:56:af:5f:ab:29:4e:6f:4a:28:43:70:18:bb:fc:ac:46: 1b:d6:bb:25:c8:15:a0:a6:2f:5f:fc:a1:0f:7a:70:b7:18:ac: b1:55:1b:a0:a3:cb:a8:82:f9:ce:08:05:6d:2d:ab:49:7d:87: f7:ea:fe:b4:c0:92:42:0b:16:ee:05:01:4a:58:7c:7f:0f:2e: 76:28:4e:91:a7:fe:8d:e6:ef:e5:5b:ac:b9:bc:63:8c:3a:ce: 00:a8:65:b6:e9:f4:e0:41:18:fa:b4:b7:db:c1:27:aa:77:dd: 98:b6:b5:63:5f:16:b8:fb:18:e2:86:78:98:c7:71:d3:e1:7d: 59:1b:2b:9c:d9:bc:67:ae:5e:db:cd:c8:f8:3d:c6:51:3c:a3: e1:a6:ad:ef:4c:28:d8:89:ba:3b:28:bb:17:32:6d:6c:bd:cd: a8:35:77:76:38:97:ee:2e:01:8a:8a:95:c1:9b:46:59:a9:89: 62:96:f3:18:ca:65:4a:a1:f2:d5:88:42:56:47:a4:d7:25:7d: d3:0f:1a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUxMjE5MDIzMzQzWhcNMjUxMjI2MDIzMzQzWjAYMRYwFAYD VQQDDA02OTQ0Yjk4Ny0xNTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGCNA72jUKMa1mRALgqHs32l6qX0vilfsI7iaK35/Tq0UGVf/qLAnOiouKtK VF1ggAsWIFQMScJJzwwwnL20L4jqRjItV3OgjtnU4yMEa/Uf4qs2mcxXz1sUMmzh H6IyOR8bRA2kU4D5D/GqwIo4yOItuC3ridkbeSWTI0B6SyzCyQmJpSYBhjw/7v2M 36au97LpVKKO2NDLG5kim0q8gf+g+sKJIfurh0DcXD5QCCdDn6PpQ86RR5ND/YyM e0LMlqrRhY6iAfhjpfmNMCZquD5UGtj2BklmKEqRzXevO0pNssLm1XpXkXpuR18j zeZMlGY56cFVfy0gn+EagixJYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzgQwnh SyVCXtdC0LsSvmBsC49XMB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQw ZXdUM1JvUUtia05NVUpzYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQwuWelqpB3g1yolLnLxwqfobYdkiNIsZkbwA8XqBxbi4NQnmX0EN+ +gYKqix9HzWhN6dnm8WtPFavX6spTm9KKENwGLv8rEYb1rslyBWgpi9f/KEPenC3 GKyxVRugo8uogvnOCAVtLatJfYf36v60wJJCCxbuBQFKWHx/Dy52KE6Rp/6N5u/l W6y5vGOMOs4AqGW26fTgQRj6tLfbwSeqd92YtrVjXxa4+xjihniYx3HT4X1ZGyuc 2bxnrl7bzcj4PcZRPKPhpq3vTCjYibo7KLsXMm1svc2oNXd2OJfuLgGKipXBm0ZZ qYlilvMYymVKofLViEJWR6TXJX3TDxrB -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:51 2025 by rpki-client