This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: mGz04wWfxYM+Nma/SRSrawoA3XQ0MjnW9IJqtXYhjmw= Subject key identifier: 13:DF:27:F5:04:51:F4:A9:40:12:06:1F:3E:48:98:BA:68:81:FE:F3 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: F8 Signing time: Thu 25 Dec 2025 04:29:17 +0000 Manifest this update: Thu 25 Dec 2025 04:29:16 +0000 Manifest next update: Thu 01 Jan 2026 04:29:16 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: ZIty2K/vVHmuVSb9DJ0SmERkOLuD/JEtDEIgmvDoXyg=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: v8ohmUSHk0fnin1T0AiYUETFghcnt5SEXbq5Yrmd+XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Dec 25 04:29:16 2025 GMT Not After : Jan 1 04:29:16 2026 GMT Subject: CN=694cbd9c-eb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:31:05:f0:ac:79:41:91:3a:53:1b:85:1d:29: a2:72:6d:91:44:ae:83:b9:99:6d:3f:e8:72:0e:b5: 7c:92:1e:ed:eb:69:83:96:b8:05:06:5d:09:4c:f8: fe:35:17:ed:02:70:8e:b0:8e:c9:08:29:f4:65:e4: 53:6d:82:0a:9b:a3:53:06:96:39:9c:5c:84:c9:63: e2:1e:f9:6f:0e:29:49:64:5b:22:01:95:2c:0e:21: b7:46:f3:23:48:25:76:c7:f5:7d:f0:d3:4d:58:61: c5:a9:91:77:b0:c1:09:f8:24:fd:07:bb:3b:b3:a0: 04:44:7b:e7:d4:b4:3f:76:4c:85:7a:91:77:45:08: 84:1e:8a:e1:d0:2a:fb:58:d6:ee:f9:43:f7:62:89: 1c:ef:ba:7a:33:3c:62:ef:f4:48:57:33:2c:ea:da: 68:11:32:7b:bc:3c:9c:5a:cf:87:6a:55:d5:6e:81: fe:d1:46:0c:fc:f0:61:8a:ba:41:1b:96:42:8c:5a: 2a:fe:cc:58:d4:55:97:22:52:b4:4c:bd:00:86:16: 38:a2:b9:0e:7e:25:90:00:9b:62:e5:cd:df:37:04: 31:f6:c5:f8:84:80:b5:98:e4:0c:df:1c:6b:b1:13: 84:ac:87:24:c0:87:6c:9d:9b:ec:66:e2:7c:65:3d: 41:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DF:27:F5:04:51:F4:A9:40:12:06:1F:3E:48:98:BA:68:81:FE:F3 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:e2:39:3a:0e:50:49:59:2c:32:72:bd:6b:40:3e:d1:b7:ec: 04:69:e2:45:53:7b:88:66:7c:cc:93:c9:de:f4:5e:92:70:31: e4:6c:4f:c4:bf:cc:de:b0:b9:af:90:e9:c9:4c:54:0a:15:64: 96:33:83:ac:9f:fd:99:94:6d:33:9e:9e:e0:3c:e0:7a:bf:58: aa:ba:33:89:22:58:cf:7a:2e:60:e6:bc:82:be:fe:68:6f:7a: 14:35:59:b9:86:5e:15:7e:ea:2d:36:de:b7:c4:a9:a3:fb:e5: ee:2f:c4:e0:f9:09:7e:05:b2:23:f9:ad:ba:b1:d7:6d:8d:06: eb:cb:3a:29:c2:e8:00:e7:8b:cf:74:ca:90:ae:ac:db:c5:e3: 06:53:d2:01:18:19:f2:a5:49:b2:85:88:87:1b:83:dc:77:c2: 32:e8:b3:75:9a:11:07:c4:15:02:47:5a:6f:dd:01:82:e4:60: 0f:a5:91:2b:95:92:d4:0d:6f:c0:48:aa:d3:ae:46:6c:74:eb: 96:e1:d5:87:e5:b5:de:40:11:3b:4e:30:df:5f:12:17:67:19: da:d6:2d:90:46:48:fe:92:c5:2d:0f:68:51:b4:8c:ed:06:a6: 15:6b:e9:f5:ed:42:3e:48:c6:5a:7c:1b:a1:95:a2:49:42:95: 73:6b:7f:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUxMjI1MDQyOTE2WhcNMjYwMTAxMDQyOTE2WjAYMRYwFAYD VQQDDA02OTRjYmQ5Yy1lYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jEF8Kx5QZE6UxuFHSmicm2RRK6DuZltP+hyDrV8kh7t62mDlrgFBl0JTPj+ NRftAnCOsI7JCCn0ZeRTbYIKm6NTBpY5nFyEyWPiHvlvDilJZFsiAZUsDiG3RvMj SCV2x/V98NNNWGHFqZF3sMEJ+CT9B7s7s6AERHvn1LQ/dkyFepF3RQiEHorh0Cr7 WNbu+UP3Yokc77p6Mzxi7/RIVzMs6tpoETJ7vDycWs+HalXVboH+0UYM/PBhirpB G5ZCjFoq/sxY1FWXIlK0TL0AhhY4orkOfiWQAJti5c3fNwQx9sX4hIC1mOQM3xxr sROErIckwIdsnZvsZuJ8ZT1BZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPfJ/UE UfSpQBIGHz5ImLpogf7zMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp4jk6DlBJWSwycr1rQD7Rt+wEaeJFU3uIZnzMk8ne9F6ScDHkbE/E v8zesLmvkOnJTFQKFWSWM4Osn/2ZlG0znp7gPOB6v1iqujOJIljPei5g5ryCvv5o b3oUNVm5hl4VfuotNt63xKmj++XuL8Tg+Ql+BbIj+a26sddtjQbryzopwugA54vP dMqQrqzbxeMGU9IBGBnypUmyhYiHG4Pcd8Iy6LN1mhEHxBUCR1pv3QGC5GAPpZEr lZLUDW/ASKrTrkZsdOuW4dWH5bXeQBE7TjDfXxIXZxna1i2QRkj+ksUtD2hRtIzt BqYVa+n17UI+SMZafBuhlaJJQpVza3/q -----END CERTIFICATE-----Generated at Thu Dec 25 11:00:30 2025 by rpki-client