This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: ENqxiNHSoDCEnSNh8sCGRbbEcQTLJFtErhk71Yb8t7E= Subject key identifier: F3:46:E2:92:D6:41:DB:07:C6:9C:3F:1C:AC:12:77:C2:12:F4:85:3D Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 86 Signing time: Sun 21 Dec 2025 05:42:44 +0000 Manifest this update: Sun 21 Dec 2025 05:42:43 +0000 Manifest next update: Sun 28 Dec 2025 05:42:43 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: JaXnsBrNmAcGPBHC7Ym8QDEHftxYk+XTIITCUJY2YgI=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: xmriq54EyLF1B3bTExDk9IsDRaD4W5eEAO8AyaCzAaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Dec 21 05:42:43 2025 GMT Not After : Dec 28 05:42:43 2025 GMT Subject: CN=694788d4-b91f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3d:67:98:bc:ba:e9:32:42:10:a0:87:06:28: 6b:1b:b0:50:a4:92:35:83:a9:e3:58:ef:42:2c:c4: d6:02:28:64:56:17:51:b6:5f:aa:8b:42:3f:f4:2f: b8:38:dc:9c:cb:a5:00:b9:e3:6f:cd:8d:56:6b:47: 52:5f:97:b2:77:a6:cd:42:82:de:5b:18:3e:39:53: 69:27:09:6c:8c:0e:50:63:cd:31:22:a7:29:88:d7: 2c:16:6d:5e:17:2d:58:4a:ec:57:7d:55:5f:96:dc: 48:c2:d6:a4:5a:87:74:c8:54:4f:07:dc:8f:98:24: f7:1a:c5:56:36:e2:a4:5f:c8:60:75:b8:20:3a:55: c2:b2:42:a4:e7:8c:a1:7b:84:6b:8e:e8:f7:ed:0e: 3d:c8:8f:a7:58:60:2c:ad:ca:01:da:e6:99:61:88: 5d:49:f9:4b:b1:aa:00:cd:88:aa:96:f9:60:65:b0: e7:8b:c4:d6:45:e2:40:35:4b:ce:7a:d3:97:36:f1: 25:5d:32:30:37:36:87:19:f6:2d:db:fa:5a:43:d3: 58:c6:bc:a6:22:1f:c7:85:b0:79:17:62:be:44:5f: 4d:1e:d3:f5:66:7d:fc:e2:cd:95:d4:69:22:0c:32: 1d:43:76:93:a3:78:04:cb:a0:6f:bc:96:b3:7d:cc: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:46:E2:92:D6:41:DB:07:C6:9C:3F:1C:AC:12:77:C2:12:F4:85:3D X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ca:df:2c:93:9f:d0:49:3e:e2:f3:42:9f:20:df:28:3f:ba: 35:8f:91:6b:0a:64:83:d1:de:2f:4f:61:e1:c1:ca:ed:94:50: 07:f3:4f:9c:4b:5c:06:fa:8a:77:cc:75:18:7f:d3:c6:3e:1d: 82:ff:08:7f:1c:c5:12:49:80:6c:f2:c0:e1:c6:07:3c:2f:61: ec:09:3f:64:55:33:eb:69:29:f2:f2:50:d8:1b:bd:4f:20:ce: 82:13:42:73:10:34:bb:f2:ad:00:51:6a:bd:a4:91:e9:1e:e6: d9:a6:30:9d:e2:11:16:a2:9a:49:69:3a:ce:70:37:4c:a4:f0: c1:71:f2:8b:15:7a:4a:ba:cc:6f:3f:00:5f:c8:b5:4e:0c:54: f8:75:c0:01:a8:92:d1:9f:da:8e:25:45:de:ac:1d:37:a7:0d: b0:eb:79:c8:bb:d2:ad:32:19:2b:53:42:75:f0:b0:8f:24:26: b7:76:a0:a9:54:c7:92:01:aa:04:d9:fc:5d:b4:3a:bd:68:d7: 1c:a1:30:8d:dc:16:e6:59:d0:4d:7f:30:5d:18:5e:43:29:03: 8e:d6:fc:88:61:ac:37:32:d4:9f:5a:b5:fa:3f:85:f1:13:62: 14:6b:99:ce:72:fe:b8:d0:56:19:8d:66:6b:65:e8:36:4f:a2: 9d:a5:81:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGQUMxMTAvBgNVBAUTKDlENDU2N0ZCRTI1MkM2NjE2NDJBQTMzRTc4MDQ4QTg3 MTdGQTdDQjMwHhcNMjUxMjIxMDU0MjQzWhcNMjUxMjI4MDU0MjQzWjAYMRYwFAYD VQQDDA02OTQ3ODhkNC1iOTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnj1nmLy66TJCEKCHBihrG7BQpJI1g6njWO9CLMTWAihkVhdRtl+qi0I/9C+4 ONycy6UAueNvzY1Wa0dSX5eyd6bNQoLeWxg+OVNpJwlsjA5QY80xIqcpiNcsFm1e Fy1YSuxXfVVfltxIwtakWod0yFRPB9yPmCT3GsVWNuKkX8hgdbggOlXCskKk54yh e4Rrjuj37Q49yI+nWGAsrcoB2uaZYYhdSflLsaoAzYiqlvlgZbDni8TWReJANUvO etOXNvElXTIwNzaHGfYt2/paQ9NYxrymIh/HhbB5F2K+RF9NHtP1Zn384s2V1Gki DDIdQ3aTo3gEy6BvvJazfcxzvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNG4pLW QdsHxpw/HKwSd8IS9IU9MB8GA1UdIwQYMBaAFJ1FZ/viUsZhZCqjPngEiocX+nyz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0ZBQy9BRkY1NjNFNjEw MTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9uVVZuLS1KU3htRmtLcU0tZUFTS2h4ZjZm TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0ZBQy9BRkY1NjNFNjEwMTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9uVVZuLS1KU3ht RmtLcU0tZUFTS2h4ZjZmTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbyt8sk5/QST7i80KfIN8oP7o1j5FrCmSD0d4vT2HhwcrtlFAH80+c S1wG+op3zHUYf9PGPh2C/wh/HMUSSYBs8sDhxgc8L2HsCT9kVTPraSny8lDYG71P IM6CE0JzEDS78q0AUWq9pJHpHubZpjCd4hEWoppJaTrOcDdMpPDBcfKLFXpKusxv PwBfyLVODFT4dcABqJLRn9qOJUXerB03pw2w63nIu9KtMhkrU0J18LCPJCa3dqCp VMeSAaoE2fxdtDq9aNccoTCN3BbmWdBNfzBdGF5DKQOO1vyIYaw3MtSfWrX6P4Xx E2IUa5nOcv640FYZjWZrZeg2T6KdpYFS -----END CERTIFICATE-----Generated at Mon Dec 22 01:46:37 2025 by rpki-client