This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: OtoRoF6crxWcNywGbi00YRv2+HW8zLzKv1iOyw4HMyY= Subject key identifier: 42:B1:C7:2F:0F:8D:27:2B:7E:AC:AD:34:0A:0A:DD:ED:34:1F:AD:A9 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 035A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 0355 Signing time: Fri 19 Dec 2025 00:13:03 +0000 Manifest this update: Fri 19 Dec 2025 00:13:03 +0000 Manifest next update: Fri 26 Dec 2025 00:13:03 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: BHij6/DF0+EiZ+7LnDLTHubic4q9s9uZLBcIA3TE8xY=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: HwkSTw7raizrXpljDXnHXfZQCr+VPlFOvS2ci48bY0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Dec 19 00:13:03 2025 GMT Not After : Dec 26 00:13:03 2025 GMT Subject: CN=6944988f-5202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:6f:fc:4c:3c:4c:04:fb:4c:ea:90:b5:d8: 3e:d7:31:78:e6:93:7b:04:1e:a6:b8:0b:28:b9:d3: c5:6c:c5:34:f2:12:5f:75:66:13:f2:38:1e:92:eb: 58:da:57:7d:b4:03:43:5c:84:04:e0:86:a0:d7:6f: f1:9e:57:70:61:c0:6b:8d:1a:a3:c4:d6:65:8f:73: ae:dc:3b:57:77:a6:f2:cd:b3:c1:bc:c5:e4:17:4d: c5:85:fe:04:6e:e5:22:0e:14:f3:f3:9a:e3:d7:03: 2d:ae:ab:69:49:72:36:ed:39:6c:ae:9e:de:7a:a7: 04:2a:80:be:f9:14:1f:2b:9d:95:09:5d:d6:b8:59: a3:83:f2:2b:b8:79:9b:51:28:f5:44:f7:1b:2c:de: 66:ec:5f:d0:b5:1c:79:aa:93:44:c8:46:b0:52:c9: 1e:e1:07:35:23:63:19:20:ee:97:ae:05:d2:0b:9f: bc:79:5c:4e:19:50:44:0b:09:fa:11:58:30:1b:cb: a8:11:55:00:68:9f:76:ad:ff:bc:43:0e:33:73:a6: 88:c3:d3:2b:6a:1c:01:8d:ab:cd:48:d3:1e:e5:a2: 47:8a:eb:34:39:61:d1:04:07:c4:57:15:ea:71:f0: 6d:53:1b:af:4f:f3:de:35:55:18:22:57:5d:93:21: 36:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B1:C7:2F:0F:8D:27:2B:7E:AC:AD:34:0A:0A:DD:ED:34:1F:AD:A9 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5d:69:d5:d6:01:31:72:1b:80:28:ca:a8:e7:f2:bb:f1:25: 54:81:96:82:1a:ff:8a:01:3e:85:3c:86:e9:34:c0:ba:8e:bb: 9c:4e:e4:d2:b3:97:24:90:1a:5d:0f:df:1a:90:f5:1a:50:79: 5e:cc:15:1a:e7:c4:f5:49:a7:06:f6:81:e0:c8:b1:53:a8:92: 2b:36:69:db:8c:c5:1d:4d:bd:5d:74:d1:5b:7d:04:b8:3b:04: 95:bf:15:cb:50:fe:91:55:70:07:a9:f2:6a:9d:85:53:9c:e0: 72:c4:55:91:30:20:00:f0:05:9e:8b:52:2d:78:81:86:6c:25: 84:e5:8b:e4:4b:18:a0:ea:61:42:d6:e7:2d:4f:5d:90:eb:c4: ef:e5:f0:72:08:ba:21:f4:81:84:59:9c:2c:50:28:55:bb:a3: bb:1e:2e:41:b9:c2:80:ca:52:eb:a6:18:ba:44:1f:55:31:0c: e4:1a:b0:57:18:51:88:cd:3e:e2:2c:68:4b:ee:1b:f4:02:d8: a5:e4:c0:4f:9b:2f:79:ff:e7:7b:a1:e1:70:81:1b:9d:d8:c0: 0c:68:ae:58:34:9c:eb:5f:d3:9c:c9:4a:25:36:62:97:0d:fd: aa:83:9c:97:95:1b:01:55:79:bb:21:93:12:86:62:84:6f:50: 89:ad:e9:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUxMjE5MDAxMzAzWhcNMjUxMjI2MDAxMzAzWjAYMRYwFAYD VQQDDA02OTQ0OTg4Zi01MjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQ5v/Ew8TAT7TOqQtdg+1zF45pN7BB6muAsoudPFbMU08hJfdWYT8jgekutY 2ld9tANDXIQE4Iag12/xnldwYcBrjRqjxNZlj3Ou3DtXd6byzbPBvMXkF03Fhf4E buUiDhTz85rj1wMtrqtpSXI27Tlsrp7eeqcEKoC++RQfK52VCV3WuFmjg/IruHmb USj1RPcbLN5m7F/QtRx5qpNEyEawUske4Qc1I2MZIO6XrgXSC5+8eVxOGVBECwn6 EVgwG8uoEVUAaJ92rf+8Qw4zc6aIw9MrahwBjavNSNMe5aJHius0OWHRBAfEVxXq cfBtUxuvT/PeNVUYIlddkyE2ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKxxy8P jScrfqytNAoK3e00H62pMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZXWnV1gExchuAKMqo5/K78SVUgZaCGv+KAT6FPIbpNMC6jrucTuTS s5ckkBpdD98akPUaUHlezBUa58T1SacG9oHgyLFTqJIrNmnbjMUdTb1ddNFbfQS4 OwSVvxXLUP6RVXAHqfJqnYVTnOByxFWRMCAA8AWei1IteIGGbCWE5YvkSxig6mFC 1uctT12Q68Tv5fByCLoh9IGEWZwsUChVu6O7Hi5BucKAylLrphi6RB9VMQzkGrBX GFGIzT7iLGhL7hv0Atil5MBPmy95/+d7oeFwgRud2MAMaK5YNJzrX9OcyUolNmKX Df2qg5yXlRsBVXm7IZMShmKEb1CJrem+ -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:15 2025 by rpki-client