This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft (raw, json) Hash identifier: TCY9thn9nRzZ3nAddwVO9f1JK1iF6bEKCXeDvI8qzHU= Subject key identifier: 97:77:EC:29:AB:22:E3:A0:A0:7D:D4:F6:A6:DF:4F:1B:F2:E5:42:FA Authority key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 Certificate issuer: /CN=A9175906/serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Certificate serial: 044D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft Manifest number: 0446 Signing time: Tue 30 Dec 2025 23:23:27 +0000 Manifest this update: Tue 30 Dec 2025 23:23:27 +0000 Manifest next update: Tue 06 Jan 2026 23:23:27 +0000 Files and hashes: 1: nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl (hash: dW+XRzTEj30Lw/bqE8/PmgV908orTCBB0tvO1aMWu/I=) 2: 27A6D5CAAF1C11EC94FF9534C4F9AE02.roa (hash: tuiOvz0EtN5gYIcDBljazRXB+32WdpyvWw0LqnkHLT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 23:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Validity Not Before: Dec 30 23:23:27 2025 GMT Not After : Jan 6 23:23:27 2026 GMT Subject: CN=69545eef-7abc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:cf:bc:5c:cf:6e:cc:10:fb:64:ef:35:2b:dc: 83:f1:9d:2d:dd:43:bf:52:76:70:4f:66:68:c0:8d: 8b:6b:49:b3:79:68:ed:20:9c:21:7b:31:d9:2a:8d: 8f:7a:cc:a5:74:73:f4:10:84:85:1f:8c:e6:74:4e: 28:10:ed:10:be:be:7e:5a:1b:39:c3:9b:a3:05:69: 48:76:ee:9a:a5:1e:38:86:46:89:c1:d3:be:3d:ae: a8:e2:bd:48:90:e7:20:d6:33:23:b4:50:c7:1e:b7: f9:10:55:00:27:15:e3:ae:3e:e8:84:63:fa:e2:60: 45:60:47:6b:2e:6f:e7:83:24:6b:91:3b:4d:a7:7b: ae:c6:e0:a9:b4:3c:bd:4d:3a:65:7e:13:cc:4d:d1: 3b:40:63:e5:12:fe:13:e6:25:88:72:c9:2f:f1:90: 62:79:89:27:4c:3a:db:4a:e3:60:7d:4e:c5:12:86: 21:9a:4a:04:aa:e8:57:6e:32:ed:37:95:15:06:95: 9f:33:79:74:d4:40:28:05:07:9b:c2:f8:2b:84:1f: 22:84:f9:7e:96:e3:d3:e0:cb:63:3a:b5:78:5c:fb: b7:96:91:bf:3e:a9:f3:a6:36:95:f7:d8:56:5c:8d: f2:9d:13:40:31:69:b7:f8:10:5d:17:c7:5d:51:2d: 5e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:77:EC:29:AB:22:E3:A0:A0:7D:D4:F6:A6:DF:4F:1B:F2:E5:42:FA X509v3 Authority Key Identifier: keyid:9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:6a:0d:fc:07:a1:2d:84:b8:64:d9:cb:94:df:e6:58:b2:ed: 6d:21:fb:4a:b8:9a:f2:a7:2f:ee:75:f8:9b:2b:d7:c7:71:02: b5:16:56:65:6b:a0:3a:57:9b:51:b8:ae:01:b7:46:00:63:b4: da:64:55:6e:03:be:65:44:71:62:8c:da:c3:a3:24:12:2c:e5: 8b:19:01:09:ab:92:9d:5e:ae:4b:90:cb:37:a0:ec:fd:02:a4: 2e:b4:d8:15:4e:ae:43:5f:bc:d2:e9:38:21:de:18:25:cd:f5: e0:ba:b0:f5:03:c8:5c:35:a2:3a:db:ca:89:b2:d7:e9:8e:c6: 2e:58:39:b3:89:08:e5:e8:21:e4:ae:93:b9:87:3e:3d:ae:e3: 6d:ae:b2:3b:18:e2:14:8b:2c:0e:b1:35:a7:43:77:59:6d:0c: 42:68:8e:06:c9:b9:0a:c7:5c:95:5b:c6:07:6d:82:f8:62:04: 36:97:15:43:04:0a:13:05:44:a9:12:b8:13:8a:56:a9:ca:66: a0:4e:3d:49:b0:89:a9:94:de:b4:36:5a:71:3a:8b:3d:be:64: c7:37:39:9d:af:70:d9:c5:d6:9b:c8:71:06:9f:12:4c:41:32: b5:85:21:96:40:2a:c4:ce:ce:c9:fe:bb:04:7a:89:df:59:32: a8:33:0e:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5MDYxMTAvBgNVBAUTKDlEMUJBQ0Q0MEE4MjU5OTI0Q0QyQzU2OTUxQTQzRTBC Rjg3MkQ2ODYwHhcNMjUxMjMwMjMyMzI3WhcNMjYwMTA2MjMyMzI3WjAYMRYwFAYD VQQDDA02OTU0NWVlZi03YWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68+8XM9uzBD7ZO81K9yD8Z0t3UO/UnZwT2ZowI2La0mzeWjtIJwhezHZKo2P esyldHP0EISFH4zmdE4oEO0Qvr5+Whs5w5ujBWlIdu6apR44hkaJwdO+Pa6o4r1I kOcg1jMjtFDHHrf5EFUAJxXjrj7ohGP64mBFYEdrLm/ngyRrkTtNp3uuxuCptDy9 TTplfhPMTdE7QGPlEv4T5iWIcskv8ZBieYknTDrbSuNgfU7FEoYhmkoEquhXbjLt N5UVBpWfM3l01EAoBQebwvgrhB8ihPl+luPT4MtjOrV4XPu3lpG/PqnzpjaV99hW XI3ynRNAMWm3+BBdF8ddUS1eEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJd37Cmr IuOgoH3U9qbfTxvy5UL6MB8GA1UdIwQYMBaAFJ0brNQKglmSTNLFaVGkPgv4ctaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTkwNi84Q0NDQ0JBNDgz RTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1daSk0wc1ZwVWFRLUNfaHkx b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25SdXMxQXFDV1pKTTBzVnBVYVEtQ19oeTFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTkwNi84Q0NDQ0JBNDgzRTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1da Sk0wc1ZwVWFRLUNfaHkxb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxag38B6EthLhk2cuU3+ZYsu1tIftKuJrypy/udfibK9fHcQK1FlZl a6A6V5tRuK4Bt0YAY7TaZFVuA75lRHFijNrDoyQSLOWLGQEJq5KdXq5LkMs3oOz9 AqQutNgVTq5DX7zS6Tgh3hglzfXgurD1A8hcNaI628qJstfpjsYuWDmziQjl6CHk rpO5hz49ruNtrrI7GOIUiywOsTWnQ3dZbQxCaI4GybkKx1yVW8YHbYL4YgQ2lxVD BAoTBUSpErgTilapymagTj1JsImplN60NlpxOos9vmTHNzmdr3DZxdabyHEGnxJM QTK1hSGWQCrEzs7J/rsEeonfWTKoMw7i -----END CERTIFICATE-----Generated at Wed Dec 31 13:28:21 2025 by rpki-client