This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: yPBYiBjZKBcUsnQiNj97nU+f5yxuCV2XiMoE5GokolY= Subject key identifier: 9D:28:84:D5:68:50:81:9D:AA:94:23:34:72:00:A9:B6:A1:BE:77:AF Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 13E5 Signing time: Thu 18 Dec 2025 18:56:14 +0000 Manifest this update: Thu 18 Dec 2025 18:56:14 +0000 Manifest next update: Thu 25 Dec 2025 18:56:14 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: 0DpDUTAQNt+JwAayQMpxmjMYU/t3oKv9o98SNqvSths=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Dec 18 18:56:14 2025 GMT Not After : Dec 25 18:56:14 2025 GMT Subject: CN=69444e4e-e5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:a8:46:65:48:6e:0a:23:36:e7:3e:c9:d4: 4c:12:f5:b7:2c:5c:fc:cf:d3:b0:c2:dc:c3:d1:7e: 95:5e:41:8a:b4:ab:55:c3:6b:0f:7a:89:41:83:89: 9e:f3:70:77:a0:2e:fe:35:27:23:70:5a:4b:e9:ea: e4:f5:9d:1e:b6:1f:76:3d:72:4e:3a:e3:a3:93:78: 54:19:eb:9f:15:07:02:31:5f:0c:13:39:9c:5e:73: bd:eb:b7:e5:34:3d:b5:ec:16:67:6c:2a:1b:80:3d: 57:d5:8f:0b:75:18:8e:f2:ce:7f:e9:a8:e3:c2:9c: fb:4e:2b:18:4d:fb:31:c1:6d:bc:b0:fe:1c:f5:2f: e3:b7:94:db:f6:7e:01:3d:c1:e4:be:84:50:ec:f7: 5b:a8:d8:9c:24:b8:a5:d4:67:2a:7f:11:9a:a3:0a: 96:67:d2:e9:63:25:41:e2:ce:ff:9c:ab:a9:e1:89: 5f:f2:52:56:0b:f5:01:cc:b9:c5:e0:4f:ce:7f:ac: 60:0e:f5:77:80:d0:08:3b:86:8b:fb:fd:99:a5:d1: 4f:32:b5:7d:d6:07:61:42:2f:3f:9a:c9:c5:a9:92: 6c:3e:03:89:32:82:de:bd:9c:8b:c0:f1:5b:59:76: f4:e0:20:df:a6:12:74:71:7e:b6:f5:4a:18:d7:f8: 7d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:28:84:D5:68:50:81:9D:AA:94:23:34:72:00:A9:B6:A1:BE:77:AF X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:27:b8:cc:64:4d:f1:69:25:3e:b4:97:3c:85:db:d2:64:7e: 8a:1c:af:7c:1a:02:5e:aa:ab:56:4c:77:d6:2b:cc:80:a8:75: cb:f2:89:f6:74:1d:71:bf:f6:bb:74:28:53:1e:85:a3:de:15: 36:9a:81:38:f3:0f:13:40:c6:d7:b6:6b:58:8f:5d:08:90:be: 0a:57:fb:98:45:c9:de:48:9d:11:99:dc:28:5e:9f:ba:93:b8: a7:f8:63:7f:a5:a8:f3:fb:d5:c1:71:1d:e0:c6:28:d9:14:18: dc:d4:dd:0a:e2:1c:ab:5b:84:80:97:d5:a7:16:0a:bf:5b:7b: 24:5e:a4:a5:b1:8d:d6:56:20:62:d4:95:b8:01:5b:a6:ef:f9: a2:1c:e8:fb:05:9b:0b:d4:0b:d6:92:25:12:1c:1c:1f:2c:09: 80:7b:92:77:26:eb:70:ba:f1:36:5e:a6:45:0e:af:64:d1:af: c3:8b:29:23:a1:87:86:ae:6a:db:73:13:3f:cf:63:f1:c7:41: 86:5f:12:5c:26:d7:1a:4d:28:62:bf:84:db:c2:a9:42:dd:df: 41:0b:5c:36:69:4c:b7:5a:78:47:3b:79:65:44:36:52:73:e1: 4e:c4:69:51:25:83:24:8f:7f:85:82:f9:02:e2:26:75:42:e9: 5b:36:af:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUxMjE4MTg1NjE0WhcNMjUxMjI1MTg1NjE0WjAYMRYwFAYD VQQDDA02OTQ0NGU0ZS1lNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0z2oRmVIbgojNuc+ydRMEvW3LFz8z9OwwtzD0X6VXkGKtKtVw2sPeolBg4me 83B3oC7+NScjcFpL6erk9Z0eth92PXJOOuOjk3hUGeufFQcCMV8MEzmcXnO967fl ND217BZnbCobgD1X1Y8LdRiO8s5/6ajjwpz7TisYTfsxwW28sP4c9S/jt5Tb9n4B PcHkvoRQ7PdbqNicJLil1GcqfxGaowqWZ9LpYyVB4s7/nKup4Ylf8lJWC/UBzLnF 4E/Of6xgDvV3gNAIO4aL+/2ZpdFPMrV91gdhQi8/msnFqZJsPgOJMoLevZyLwPFb WXb04CDfphJ0cX629UoY1/h9ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0ohNVo UIGdqpQjNHIAqbahvnevMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjJ7jMZE3xaSU+tJc8hdvSZH6KHK98GgJeqqtWTHfWK8yAqHXL8on2 dB1xv/a7dChTHoWj3hU2moE48w8TQMbXtmtYj10IkL4KV/uYRcneSJ0RmdwoXp+6 k7in+GN/pajz+9XBcR3gxijZFBjc1N0K4hyrW4SAl9WnFgq/W3skXqSlsY3WViBi 1JW4AVum7/miHOj7BZsL1AvWkiUSHBwfLAmAe5J3JutwuvE2XqZFDq9k0a/Diykj oYeGrmrbcxM/z2Pxx0GGXxJcJtcaTShiv4TbwqlC3d9BC1w2aUy3WnhHO3llRDZS c+FOxGlRJYMkj3+FgvkC4iZ1QulbNq/u -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:20 2025 by rpki-client