This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft File: NS1M7Db4784NhRINl9keIqNY9Ys.mft (raw, json) Hash identifier: Va2Ut6qWUZQR5EjW6qIX7EAhG8IojnQJeKbhQ6HKZes= Subject key identifier: E3:C9:4A:DF:FC:4E:0D:19:10:8F:F6:98:36:F4:D7:AA:0B:48:A4:58 Authority key identifier: 35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B Certificate issuer: /CN=A9151AC7/serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft Manifest number: 98 Signing time: Fri 19 Dec 2025 05:27:31 +0000 Manifest this update: Fri 19 Dec 2025 05:27:31 +0000 Manifest next update: Fri 26 Dec 2025 05:27:31 +0000 Files and hashes: 1: NS1M7Db4784NhRINl9keIqNY9Ys.crl (hash: XsxuUJUMbwShA/gMjG9wbzQ3F3qajCzTqWZhq2RXN0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151AC7, serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Validity Not Before: Dec 19 05:27:31 2025 GMT Not After : Dec 26 05:27:31 2025 GMT Subject: CN=6944e243-59d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:64:97:84:4a:c2:aa:3f:cd:6d:5a:15:b6:47: d3:0e:b8:09:73:00:bc:c5:8e:75:1d:1b:88:52:11: 98:93:51:91:2b:64:f8:f1:ee:30:23:f9:70:f8:d2: f6:70:e8:61:25:d5:8b:47:81:e3:e9:8b:74:42:15: 63:b3:de:84:5c:fa:24:7a:20:2e:92:a8:02:b7:14: 59:c9:4b:49:6c:02:72:b7:b4:0a:68:62:e1:e5:97: b8:b8:30:48:d8:ed:1e:2e:82:a0:fd:2a:61:25:d8: 76:17:e2:ba:1e:bd:a9:2a:a3:03:e4:a4:21:21:1c: fd:0c:a2:5a:d2:79:17:fe:01:fb:15:40:7f:0b:c3: 67:1a:1b:e1:94:c0:3c:3d:ca:38:2b:f2:49:d0:b7: 8e:81:5f:c5:da:a0:08:57:d5:4a:1d:bd:e7:74:b2: 6b:74:5b:f9:fd:62:68:9d:e2:ce:0c:4a:bd:01:4e: c9:ef:f4:13:d7:78:63:5c:c1:11:95:38:b5:b8:a2: 7f:dc:64:36:05:0b:fd:e4:ed:35:18:f1:c2:f0:8b: 24:5d:ff:54:b0:45:37:a0:70:86:8a:9d:6f:1a:f0: 93:c0:8e:06:61:82:d3:15:d0:29:88:53:e8:d6:3d: 2f:bf:71:b8:05:a5:21:52:9c:f0:84:01:05:ac:f4: a5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C9:4A:DF:FC:4E:0D:19:10:8F:F6:98:36:F4:D7:AA:0B:48:A4:58 X509v3 Authority Key Identifier: keyid:35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ab:3f:b7:6e:39:97:3a:77:bb:8c:24:fb:ca:48:2f:67:b9: d7:9d:92:a3:fe:43:ba:65:42:f3:f9:b6:09:11:dd:a4:8c:6d: ae:8f:9f:c5:4b:c8:24:9c:da:ff:f0:41:ea:95:fd:44:a7:9b: 8b:be:e4:e7:a3:91:b5:d3:66:bf:39:f7:ad:5b:8c:51:43:29: da:bf:7c:a9:d7:6b:d5:be:24:96:b3:07:c0:25:10:07:17:4e: e0:fd:ca:18:d1:c7:2b:1b:a7:74:63:d2:3b:fa:e8:a4:31:6a: 2d:c1:2a:d5:fa:27:5a:07:4a:46:5f:3e:e6:e8:8e:19:f4:5f: 7a:f2:df:ef:4e:a5:d6:80:aa:ec:a2:8a:d3:97:f1:ee:5c:00: 70:32:81:74:dd:7e:b9:84:f5:a0:6d:35:7a:74:39:18:8b:b8: ae:8c:a7:ac:04:fc:57:9a:6c:fb:be:cd:01:c8:b3:a0:e5:d8: 0b:6c:b7:42:de:a5:51:8f:d7:b0:d1:4f:ab:fa:22:3e:01:01: bb:ad:c6:8b:e6:81:c0:03:3f:39:44:75:02:2c:43:ae:ec:82: 65:ed:1b:40:30:ad:6b:9d:9b:e9:5c:08:42:9d:91:ed:99:5c: 12:06:81:26:eb:d1:4f:f9:cd:9f:4c:3d:4e:5d:91:af:0c:83: 34:4e:59:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBQzcxMTAvBgNVBAUTKDM1MkQ0Q0VDMzZGOEVGQ0UwRDg1MTIwRDk3RDkxRTIy QTM1OEY1OEIwHhcNMjUxMjE5MDUyNzMxWhcNMjUxMjI2MDUyNzMxWjAYMRYwFAYD VQQDDA02OTQ0ZTI0My01OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mSXhErCqj/NbVoVtkfTDrgJcwC8xY51HRuIUhGYk1GRK2T48e4wI/lw+NL2 cOhhJdWLR4Hj6Yt0QhVjs96EXPokeiAukqgCtxRZyUtJbAJyt7QKaGLh5Ze4uDBI 2O0eLoKg/SphJdh2F+K6Hr2pKqMD5KQhIRz9DKJa0nkX/gH7FUB/C8NnGhvhlMA8 Pco4K/JJ0LeOgV/F2qAIV9VKHb3ndLJrdFv5/WJoneLODEq9AU7J7/QT13hjXMER lTi1uKJ/3GQ2BQv95O01GPHC8IskXf9UsEU3oHCGip1vGvCTwI4GYYLTFdApiFPo 1j0vv3G4BaUhUpzwhAEFrPSlWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPJSt/8 Tg0ZEI/2mDb016oLSKRYMB8GA1UdIwQYMBaAFDUtTOw2+O/ODYUSDZfZHiKjWPWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUFDNy80MUE0NkI1MEYz OTcxMUVGOTEwMUQyMTBDNEY5QUUwMi9OUzFNN0RiNDc4NE5oUklObDlrZUlxTlk5 WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TMU03RGI0Nzg0TmhSSU5sOWtlSXFOWTlZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUFDNy80MUE0NkI1MEYzOTcxMUVGOTEwMUQyMTBDNEY5QUUwMi9OUzFNN0RiNDc4 NE5oUklObDlrZUlxTlk5WXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+qz+3bjmXOne7jCT7ykgvZ7nXnZKj/kO6ZULz+bYJEd2kjG2uj5/F S8gknNr/8EHqlf1Ep5uLvuTno5G102a/OfetW4xRQynav3yp12vVviSWswfAJRAH F07g/coY0ccrG6d0Y9I7+uikMWotwSrV+idaB0pGXz7m6I4Z9F968t/vTqXWgKrs oorTl/HuXABwMoF03X65hPWgbTV6dDkYi7iujKesBPxXmmz7vs0ByLOg5dgLbLdC 3qVRj9ew0U+r+iI+AQG7rcaL5oHAAz85RHUCLEOu7IJl7RtAMK1rnZvpXAhCnZHt mVwSBoEm69FP+c2fTD1OXZGvDIM0Tln7 -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:02 2025 by rpki-client