This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: gMnch/GPnr3Zi1ve523S6Eog8/500H1p7mTIztsF6wk= Subject key identifier: 71:75:71:30:F3:E3:FC:10:70:CA:85:29:A2:59:CA:9C:89:46:77:9B Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 059E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0599 Signing time: Wed 31 Dec 2025 22:41:04 +0000 Manifest this update: Wed 31 Dec 2025 22:41:04 +0000 Manifest next update: Wed 07 Jan 2026 22:41:04 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: is0FjuLqoPfcEVsfClpC/8dfBzSAy9KnsrRJZSduyM4=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 22:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1438 (0x59e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Dec 31 22:41:04 2025 GMT Not After : Jan 7 22:41:04 2026 GMT Subject: CN=6955a680-5523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:86:26:fd:04:a1:88:81:ba:82:d5:86:ac: bf:ce:21:d9:77:c5:1e:32:1e:74:e3:87:e4:55:f0: be:fe:cd:25:3e:ae:73:0d:56:28:af:fa:3c:92:76: 95:5f:a9:28:2b:d0:44:5c:30:bf:f1:52:87:89:5b: 4f:0f:d6:8e:fd:75:c4:8a:23:d4:ca:c2:ef:6a:4b: 1f:0a:ab:40:8d:9f:54:4d:66:7d:d2:f0:d0:01:57: 5c:12:18:de:f2:f4:db:60:00:c4:a1:f4:d8:f9:db: 52:23:7c:6d:bc:c9:dd:6a:9d:6c:cd:3a:dd:af:f7: 76:f0:fc:fe:8c:09:5e:09:6f:73:98:a3:d0:6f:df: 43:1f:08:36:68:bb:21:66:f4:ba:bd:21:6d:f1:ee: 2a:13:7f:05:ae:65:0e:5d:fb:83:a7:f7:35:80:e0: de:9d:cf:c3:e6:02:63:6e:68:cb:59:19:d0:8b:25: 89:60:f7:b9:f4:64:73:b4:79:fe:f5:89:64:9c:df: af:b8:aa:75:a3:eb:b1:e4:a1:73:77:41:82:05:aa: 91:7f:3c:e5:88:2b:98:dd:5f:1b:26:02:9f:56:5a: bb:f9:c1:ac:d2:75:3c:bf:a4:b7:a9:a4:4b:88:4c: 9e:ba:01:86:32:2e:58:de:a8:dc:10:02:ae:a8:2c: f0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:75:71:30:F3:E3:FC:10:70:CA:85:29:A2:59:CA:9C:89:46:77:9B X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:0b:dc:68:34:1f:3f:49:c1:b9:bf:e7:e7:e5:4b:52:b9:55: cf:dd:95:02:f9:7a:9d:28:e4:a1:56:ae:93:99:8e:6b:a0:15: 75:f0:07:d2:f9:81:da:9e:70:50:b5:b3:7d:04:d6:58:35:c0: e1:c3:44:34:c2:74:6b:7d:d6:3d:94:ec:bb:37:46:1f:8c:aa: 12:d4:b0:51:ea:a0:2d:46:10:ae:33:bd:cc:ef:a7:1e:2a:ea: 24:58:2d:68:17:0f:3a:5b:0e:10:72:61:d7:d6:b3:51:4f:34: 9c:b0:f5:f4:ae:f1:5f:43:84:57:d4:e4:74:1a:36:31:b8:e2: 48:e5:b4:8a:0f:64:3c:a6:d7:f6:fd:19:17:b3:fd:b3:af:90: 16:14:51:9d:b8:d2:87:e6:36:39:42:83:b5:20:62:5c:cb:eb: b4:e6:ca:0e:4c:28:55:33:f0:58:54:93:42:a9:0f:2b:06:88: ed:f7:6c:36:71:e1:6f:97:95:9d:34:98:81:f5:2f:6e:4b:de: ad:64:9c:d1:d4:f4:5a:ae:d3:bd:d9:4d:c0:4d:56:f9:bd:45: cd:ca:48:d8:f4:60:e5:34:75:d0:7a:ab:df:22:c7:45:58:82: 3b:57:f6:9f:67:17:5f:b4:2e:4e:16:df:50:76:cb:c8:de:91: c8:b0:c5:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUxMjMxMjI0MTA0WhcNMjYwMTA3MjI0MTA0WjAYMRYwFAYD VQQDDA02OTU1YTY4MC01NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10mGJv0EoYiBuoLVhqy/ziHZd8UeMh5044fkVfC+/s0lPq5zDVYor/o8knaV X6koK9BEXDC/8VKHiVtPD9aO/XXEiiPUysLvaksfCqtAjZ9UTWZ90vDQAVdcEhje 8vTbYADEofTY+dtSI3xtvMndap1szTrdr/d28Pz+jAleCW9zmKPQb99DHwg2aLsh ZvS6vSFt8e4qE38FrmUOXfuDp/c1gODenc/D5gJjbmjLWRnQiyWJYPe59GRztHn+ 9YlknN+vuKp1o+ux5KFzd0GCBaqRfzzliCuY3V8bJgKfVlq7+cGs0nU8v6S3qaRL iEyeugGGMi5Y3qjcEAKuqCzwqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHF1cTDz 4/wQcMqFKaJZypyJRnebMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvC9xoNB8/ScG5v+fn5UtSuVXP3ZUC+XqdKOShVq6TmY5roBV18AfS +YHannBQtbN9BNZYNcDhw0Q0wnRrfdY9lOy7N0YfjKoS1LBR6qAtRhCuM73M76ce KuokWC1oFw86Ww4QcmHX1rNRTzScsPX0rvFfQ4RX1OR0GjYxuOJI5bSKD2Q8ptf2 /RkXs/2zr5AWFFGduNKH5jY5QoO1IGJcy+u05soOTChVM/BYVJNCqQ8rBojt92w2 ceFvl5WdNJiB9S9uS96tZJzR1PRartO92U3ATVb5vUXNykjY9GDlNHXQeqvfIsdF WII7V/afZxdftC5OFt9QdsvI3pHIsMWO -----END CERTIFICATE-----Generated at Fri Jan 2 09:53:32 2026 by rpki-client