This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: QUajNS20E+MbbLuIzG69NoZ/CuDnW8hZww32wKlaHeo= Subject key identifier: 2D:CD:9A:46:6A:13:F3:66:87:2F:6D:D3:14:08:3E:23:11:C6:07:9F Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 06F4 Signing time: Tue 16 Dec 2025 21:27:07 +0000 Manifest this update: Tue 16 Dec 2025 21:27:06 +0000 Manifest next update: Tue 23 Dec 2025 21:27:06 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: EJ8js1s7x00xP7Jc9WBGY53Z1bnR8mjGwpUp3XjWGBU=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: YZjAMIKzrQGmvLaN81HGMkVswmWuULphivjXeZ2sT84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 21:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1788 (0x6fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Dec 16 21:27:06 2025 GMT Not After : Dec 23 21:27:06 2025 GMT Subject: CN=6941ceaa-3e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ce:59:e7:e7:21:a1:8f:d6:e1:66:e6:dd:3d: 29:03:1e:2b:46:31:58:c8:81:bf:3e:ed:cc:59:ee: 87:cb:5d:56:37:12:d8:41:50:94:7b:b5:06:f3:84: d0:10:49:b0:5c:0c:ee:53:09:4c:78:f2:bc:b6:84: 4a:50:a8:03:3e:80:f3:9b:0f:02:a5:a2:5f:40:66: 48:15:64:6c:36:53:80:eb:63:3b:56:ac:3f:49:08: 08:d1:22:d4:6d:b7:25:e9:ed:3c:bd:4a:f2:98:59: ab:44:c2:03:59:40:fb:94:b7:f1:57:1b:0c:4c:3b: 98:6a:02:cc:e4:13:22:e0:89:79:50:bc:8e:bf:54: 2b:3d:23:3f:ef:89:9c:ca:4b:5e:36:a0:47:8a:ec: ee:f5:c6:b6:79:a4:bb:06:74:13:6e:1c:88:2e:32: 42:c0:c3:d2:dd:07:18:e5:dc:3e:57:c7:32:fc:d2: ab:7b:fb:d7:05:3b:6c:78:fc:29:47:8e:0b:c5:72: 7c:bc:8c:7f:a2:da:bc:cf:ba:30:e7:cf:da:58:e4: 38:68:a8:57:4d:b9:0b:28:c0:3c:d1:c4:f8:39:93: a2:f3:23:94:c1:a2:b4:65:d2:80:8a:f1:64:72:ac: a1:1d:49:26:63:99:52:65:a1:e6:1d:46:5b:98:5d: 57:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CD:9A:46:6A:13:F3:66:87:2F:6D:D3:14:08:3E:23:11:C6:07:9F X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:bf:32:f3:d7:3b:e1:27:bc:db:bd:a8:4c:0d:69:d4:58:97: af:0b:5c:97:ca:9c:ec:5a:3c:48:b7:b7:00:1f:29:f7:b0:e5: 7c:82:09:3a:bf:47:56:71:b2:14:27:fe:46:b7:b1:6b:fa:41: 8f:76:5e:e0:66:6f:e3:4c:c4:f0:6d:af:16:24:49:55:da:62: cd:c5:18:8b:ea:4d:0e:7e:6c:1d:52:06:4b:aa:5f:23:a4:47: 42:8a:54:1c:d3:23:5f:19:1d:73:f2:59:4b:65:05:c1:4f:66: 92:5e:78:9f:e5:c9:ba:b8:ac:6a:9f:df:e1:e1:93:88:1a:88: f5:9e:c5:50:68:e2:7f:1a:58:e0:db:0d:36:22:2f:87:4f:63: 2f:64:1d:0e:ec:79:15:e8:5d:c2:a5:76:23:b2:eb:99:87:05: 28:d0:bb:e7:cd:43:dd:82:cb:b3:71:ea:53:29:00:ab:f4:45: 4b:66:35:7e:f9:da:de:c8:15:ab:78:a9:63:63:fe:cd:04:40: e7:9d:0c:eb:7b:db:a8:2e:18:3c:5c:ce:58:84:78:eb:c4:12: c4:ec:33:75:5d:59:82:b3:2b:12:4a:b8:2c:6e:22:e2:d9:44: c7:7b:22:be:0f:5f:35:e0:8d:10:06:7a:0c:53:a8:61:24:b9: c3:b8:81:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUxMjE2MjEyNzA2WhcNMjUxMjIzMjEyNzA2WjAYMRYwFAYD VQQDDA02OTQxY2VhYS0zZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiM5Z5+choY/W4Wbm3T0pAx4rRjFYyIG/Pu3MWe6Hy11WNxLYQVCUe7UG84TQ EEmwXAzuUwlMePK8toRKUKgDPoDzmw8CpaJfQGZIFWRsNlOA62M7Vqw/SQgI0SLU bbcl6e08vUrymFmrRMIDWUD7lLfxVxsMTDuYagLM5BMi4Il5ULyOv1QrPSM/74mc ykteNqBHiuzu9ca2eaS7BnQTbhyILjJCwMPS3QcY5dw+V8cy/NKre/vXBTtsePwp R44LxXJ8vIx/otq8z7ow58/aWOQ4aKhXTbkLKMA80cT4OZOi8yOUwaK0ZdKAivFk cqyhHUkmY5lSZaHmHUZbmF1XiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3NmkZq E/Nmhy9t0xQIPiMRxgefMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVvzLz1zvhJ7zbvahMDWnUWJevC1yXypzsWjxIt7cAHyn3sOV8ggk6 v0dWcbIUJ/5Gt7Fr+kGPdl7gZm/jTMTwba8WJElV2mLNxRiL6k0OfmwdUgZLql8j pEdCilQc0yNfGR1z8llLZQXBT2aSXnif5cm6uKxqn9/h4ZOIGoj1nsVQaOJ/Gljg 2w02Ii+HT2MvZB0O7HkV6F3CpXYjsuuZhwUo0LvnzUPdgsuzcepTKQCr9EVLZjV+ +dreyBWreKljY/7NBEDnnQzre9uoLhg8XM5YhHjrxBLE7DN1XVmCsysSSrgsbiLi 2UTHeyK+D1814I0QBnoMU6hhJLnDuIH/ -----END CERTIFICATE-----Generated at Wed Dec 17 19:56:25 2025 by rpki-client