This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: fjWat5Xk60UCyhsD0fiUiRvcvQpQADM/wcscoAe9NMM= Subject key identifier: 8A:DF:1B:87:B9:29:A1:E3:58:19:B5:AA:43:B4:E0:FB:EF:D2:31:D2 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CDE Signing time: Wed 24 Dec 2025 17:50:41 +0000 Manifest this update: Wed 24 Dec 2025 17:50:41 +0000 Manifest next update: Wed 31 Dec 2025 17:50:41 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: e9Zaf8lP27cW0VPKFQqrNpeCas7ZgOr7BDeigqATLms=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: DxAfEgav23qNw9acbrJvstjPzIpBZbMgGcy+koP3ZBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Dec 24 17:50:41 2025 GMT Not After : Dec 31 17:50:41 2025 GMT Subject: CN=694c27f1-bf34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d1:a1:58:f4:8b:34:c1:fb:7f:a0:65:40:92: 31:32:39:f1:9d:1d:b3:5e:1e:2d:74:50:34:f2:ae: da:e3:13:3e:50:1a:80:ee:34:3c:e4:ae:ca:44:83: d0:b8:42:0f:40:0c:11:50:6b:39:43:9f:cd:59:12: 08:15:42:4a:31:a6:b0:ac:fa:82:29:d7:6b:38:a2: 9f:70:d6:d4:a2:97:d0:38:7b:ca:53:6e:58:98:69: 7b:22:f9:4d:df:e8:7d:d9:16:b4:a7:70:31:ed:d8: b6:a0:d6:9d:40:50:f1:b5:28:eb:dc:c0:b1:32:31: dc:78:c5:62:54:7a:d1:de:2e:1d:d8:8d:45:ab:a2: d8:05:41:dc:8a:c3:7e:96:43:06:41:2c:5e:18:f4: 48:dc:fa:b9:6e:e2:cb:9d:be:d3:dc:01:de:b3:14: e2:20:7f:38:c7:3d:60:48:f9:98:ca:c7:12:6b:8d: 0d:b9:26:79:15:6a:f4:c4:6a:2c:ad:19:fa:2f:13: 95:3b:55:3b:4b:bb:42:2e:d3:13:9b:b4:26:ff:30: f8:51:f7:a0:61:69:90:5b:e9:da:c3:c2:57:0c:e6: 4b:b7:75:69:54:07:5d:52:1f:63:ed:1b:13:d8:6b: de:18:f5:e1:c8:69:ba:df:5c:84:15:38:d2:b3:44: 8f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DF:1B:87:B9:29:A1:E3:58:19:B5:AA:43:B4:E0:FB:EF:D2:31:D2 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:6a:70:ac:0e:28:53:96:b7:64:bf:df:d8:d1:7e:ea:d7:7c: e7:37:fe:c9:45:5c:36:96:4d:2c:6b:a0:96:c3:14:4c:e7:53: 7f:9c:8a:95:27:b9:e9:c3:02:3d:e3:ca:8e:68:ce:ac:ab:da: bb:f4:21:c7:87:f8:35:53:6b:55:93:8f:7a:e8:36:c3:67:a3: b1:f6:10:1b:f0:75:04:f7:d1:d6:79:de:da:2a:b1:39:fe:7f: b8:b6:73:1a:63:89:3e:02:a2:16:af:3c:58:36:1c:84:8b:65: f1:cf:19:f0:9d:69:bd:75:e7:0a:7c:02:c8:49:45:cc:0a:8f: 94:c3:4c:85:e4:3b:c4:da:bb:0c:ae:e1:a6:5a:91:77:3c:dd: 52:5f:b4:c5:71:5c:90:9a:a9:bf:b8:0e:92:17:9b:77:04:cc: 23:0b:ef:b4:c7:af:8f:80:ba:93:f9:44:dd:1d:47:07:56:d2: ef:79:5c:be:7b:2e:0a:16:0d:3e:82:fa:5f:34:15:24:02:27: 0e:c0:d5:f0:47:b2:e8:23:88:75:2c:99:a2:06:29:75:43:8c: ba:9f:fc:6d:07:02:3e:43:bd:b6:a5:11:f6:50:03:d7:14:52: ff:0e:2c:b5:ac:0a:a9:9e:49:8b:21:81:23:20:9e:53:75:d9: 29:8a:3d:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUxMjI0MTc1MDQxWhcNMjUxMjMxMTc1MDQxWjAYMRYwFAYD VQQDDA02OTRjMjdmMS1iZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09GhWPSLNMH7f6BlQJIxMjnxnR2zXh4tdFA08q7a4xM+UBqA7jQ85K7KRIPQ uEIPQAwRUGs5Q5/NWRIIFUJKMaawrPqCKddrOKKfcNbUopfQOHvKU25YmGl7IvlN 3+h92Ra0p3Ax7di2oNadQFDxtSjr3MCxMjHceMViVHrR3i4d2I1Fq6LYBUHcisN+ lkMGQSxeGPRI3Pq5buLLnb7T3AHesxTiIH84xz1gSPmYyscSa40NuSZ5FWr0xGos rRn6LxOVO1U7S7tCLtMTm7Qm/zD4UfegYWmQW+naw8JXDOZLt3VpVAddUh9j7RsT 2GveGPXhyGm631yEFTjSs0SPowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrfG4e5 KaHjWBm1qkO04Pvv0jHSMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoanCsDihTlrdkv9/Y0X7q13znN/7JRVw2lk0sa6CWwxRM51N/nIqV J7npwwI948qOaM6sq9q79CHHh/g1U2tVk4966DbDZ6Ox9hAb8HUE99HWed7aKrE5 /n+4tnMaY4k+AqIWrzxYNhyEi2XxzxnwnWm9decKfALISUXMCo+Uw0yF5DvE2rsM ruGmWpF3PN1SX7TFcVyQmqm/uA6SF5t3BMwjC++0x6+PgLqT+UTdHUcHVtLveVy+ ey4KFg0+gvpfNBUkAicOwNXwR7LoI4h1LJmiBil1Q4y6n/xtBwI+Q722pRH2UAPX FFL/Diy1rAqpnkmLIYEjIJ5Tddkpij3V -----END CERTIFICATE-----Generated at Fri Dec 26 01:41:22 2025 by rpki-client