This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: qUorfQEyKjevOMV48H2IEsH8Xe+ivVslGrPf1LPdizc= Subject key identifier: 04:F5:40:B2:A5:B2:3B:E6:F2:F5:79:B1:F2:88:3D:C6:7D:CB:33:84 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08D1 Signing time: Sat 20 Dec 2025 19:50:20 +0000 Manifest this update: Sat 20 Dec 2025 19:50:19 +0000 Manifest next update: Sat 27 Dec 2025 19:50:19 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: NN3kC+V25ge5FpGFg96Ge+euka+dTup54kESPmJPF8A=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Dec 20 19:50:19 2025 GMT Not After : Dec 27 19:50:19 2025 GMT Subject: CN=6946fdfc-0d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:38:6f:ba:de:fa:85:ae:56:08:dd:87:75: b3:43:58:f1:7b:36:ef:a1:be:e9:5b:99:6e:b0:da: b1:23:3d:af:c2:3a:b0:dc:82:f3:ab:60:4d:ed:64: 5c:20:69:fb:ba:18:16:95:36:44:02:b5:4b:f3:4b: 22:80:4d:ee:c9:5b:7c:fa:2f:7a:38:f4:d3:f9:54: 50:28:eb:c5:8d:22:60:54:24:bd:b6:13:c1:2e:71: 5c:d0:b0:59:65:6b:eb:0b:df:cd:96:bc:ea:e6:26: c8:2c:57:61:0d:bf:c4:f1:16:01:72:0f:22:cd:52: 68:f5:5f:6e:3e:ac:06:7a:b2:fe:51:8b:eb:a1:13: 2b:80:cb:12:fd:00:3d:6c:0a:2c:16:16:eb:cf:7f: eb:84:fd:95:cc:1e:c4:e1:8f:31:5e:c7:4b:17:82: 64:52:2a:67:19:b2:0d:e2:15:c1:1f:cf:4b:ff:6a: 6d:f1:6e:40:92:00:31:0b:ac:db:af:cc:31:51:57: 9b:56:21:18:f5:28:d0:37:f4:3e:83:a2:e7:aa:61: b1:eb:c7:40:fc:ba:85:e4:ae:e7:1c:ef:90:a8:f7: 20:df:7c:bf:ef:b1:f7:58:d9:39:7d:a6:03:78:2b: 91:8e:59:ce:03:0f:ab:66:fa:4e:96:85:ea:2a:43: 34:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:F5:40:B2:A5:B2:3B:E6:F2:F5:79:B1:F2:88:3D:C6:7D:CB:33:84 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:71:19:62:2c:e0:0e:5e:b3:bf:45:04:04:68:c8:3b:31:c3: 7c:43:b6:92:04:8c:25:b5:c0:21:af:d6:e1:7d:6d:a2:91:c9: a6:84:12:88:8e:81:a8:1a:e9:c5:c0:48:db:61:7f:14:b7:51: a4:c5:79:8e:ce:02:bd:32:bd:89:13:52:7c:fc:bc:05:0c:4d: 2a:5f:d0:37:4a:9c:d7:61:96:a2:3b:fd:9a:bf:66:90:5a:42: d5:2c:4a:6f:aa:80:f7:93:de:67:59:d5:c3:c9:8b:0d:c7:58: c0:fc:54:3b:ef:06:98:fa:a9:55:a0:09:1e:35:32:01:c8:87: 04:a1:a4:18:24:24:eb:97:79:69:62:65:36:f6:c8:ec:e4:87: 52:b7:15:26:da:31:5f:27:e5:a1:ee:e2:ef:c1:af:f6:31:80: c7:7f:19:33:b4:23:52:0a:8d:94:bf:f9:74:1c:21:85:ad:fd: 13:8f:56:65:58:0d:b9:66:19:9c:ca:2e:e5:b1:46:9b:03:e6: c3:88:d6:ec:96:1e:01:3a:b7:f6:63:8a:91:d1:a5:47:06:ed: 1b:3c:d3:e3:0e:af:b6:00:41:c6:f5:d3:b8:aa:07:0a:04:b7: c6:e6:64:a7:29:d3:50:5f:74:65:50:f1:be:da:6c:ce:10:8c: 32:41:f5:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUxMjIwMTk1MDE5WhcNMjUxMjI3MTk1MDE5WjAYMRYwFAYD VQQDDA02OTQ2ZmRmYy0wZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaQ4b7re+oWuVgjdh3WzQ1jxezbvob7pW5lusNqxIz2vwjqw3ILzq2BN7WRc IGn7uhgWlTZEArVL80sigE3uyVt8+i96OPTT+VRQKOvFjSJgVCS9thPBLnFc0LBZ ZWvrC9/Nlrzq5ibILFdhDb/E8RYBcg8izVJo9V9uPqwGerL+UYvroRMrgMsS/QA9 bAosFhbrz3/rhP2VzB7E4Y8xXsdLF4JkUipnGbIN4hXBH89L/2pt8W5AkgAxC6zb r8wxUVebViEY9SjQN/Q+g6LnqmGx68dA/LqF5K7nHO+QqPcg33y/77H3WNk5faYD eCuRjlnOAw+rZvpOloXqKkM0IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAT1QLKl sjvm8vV5sfKIPcZ9yzOEMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMcRliLOAOXrO/RQQEaMg7McN8Q7aSBIwltcAhr9bhfW2ikcmmhBKI joGoGunFwEjbYX8Ut1GkxXmOzgK9Mr2JE1J8/LwFDE0qX9A3SpzXYZaiO/2av2aQ WkLVLEpvqoD3k95nWdXDyYsNx1jA/FQ77waY+qlVoAkeNTIByIcEoaQYJCTrl3lp YmU29sjs5IdStxUm2jFfJ+Wh7uLvwa/2MYDHfxkztCNSCo2Uv/l0HCGFrf0Tj1Zl WA25Zhmcyi7lsUabA+bDiNbslh4BOrf2Y4qR0aVHBu0bPNPjDq+2AEHG9dO4qgcK BLfG5mSnKdNQX3RlUPG+2mzOEIwyQfVj -----END CERTIFICATE-----Generated at Sun Dec 21 02:28:44 2025 by rpki-client