This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft File: NDyCcTdhxY6CRQ2UqleWffm0bxU.mft (raw, json) Hash identifier: LI4Ps6lTkqa0QHnlN6ws0HjwTVjTxWKYmJbWwwcMgu8= Subject key identifier: D7:DB:C6:FC:FD:86:E5:C1:28:A5:BE:CE:BE:1E:14:C4:7B:DE:FA:AA Authority key identifier: 34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 Certificate issuer: /CN=A91DE10F/serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Certificate serial: 1877 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft Manifest number: 186D Signing time: Thu 18 Dec 2025 16:22:52 +0000 Manifest this update: Thu 18 Dec 2025 16:22:52 +0000 Manifest next update: Thu 25 Dec 2025 16:22:52 +0000 Files and hashes: 1: NDyCcTdhxY6CRQ2UqleWffm0bxU.crl (hash: 2WDX6E/jeuKWNZ0JULtW3BDfI0fa8k/fLym1N/m9W6M=) 2: 31AA8496B62811E7882B893BC4F9AE02.roa (hash: 0Z6kDXRBMxwvIo1Q10HNFq5Rb/AOMQ+sUO12LNkbJR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6263 (0x1877) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE10F, serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Validity Not Before: Dec 18 16:22:52 2025 GMT Not After : Dec 25 16:22:52 2025 GMT Subject: CN=69442a5c-a64b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e3:e4:3a:9b:e5:c0:64:b0:09:94:bf:67:0a: ce:97:ee:ff:da:76:1f:60:55:ba:b0:32:c3:6e:fa: 26:08:d2:12:c8:c4:4b:e1:30:e3:50:fe:66:95:26: 0b:b4:a9:e2:91:36:9b:5d:3f:eb:05:67:99:bf:ec: b8:ad:4f:85:f7:25:b5:09:7f:31:fe:8a:90:80:4a: 60:2f:41:0e:34:fd:4a:17:df:c6:36:6d:8e:75:7c: ee:c7:bc:f4:dd:ea:4d:06:c2:b7:9b:0e:71:b3:9e: 18:f5:04:87:82:1a:62:78:e6:00:bf:b9:d7:96:b1: a3:09:d1:f5:92:1d:44:89:db:b7:cd:ec:7e:16:25: 5e:f9:62:af:9c:f1:7d:e1:3c:31:db:91:fb:3a:ec: 79:e2:63:f0:8f:27:d0:21:d3:54:65:86:b9:58:64: a6:3d:b8:b0:08:2e:db:77:14:10:85:d0:37:8a:bb: 23:ca:de:2b:dd:e7:f3:eb:3c:c9:ae:f9:47:c2:13: af:8d:13:3c:e6:ca:d5:17:02:51:41:2c:24:1e:89: d7:56:30:74:6b:01:98:13:47:ef:5a:ac:f5:e3:ca: ad:c0:ce:dc:19:ab:69:31:29:a7:d7:e3:14:1f:29: 83:ca:8b:a3:31:02:b6:fd:46:a8:32:19:22:37:27: 2e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DB:C6:FC:FD:86:E5:C1:28:A5:BE:CE:BE:1E:14:C4:7B:DE:FA:AA X509v3 Authority Key Identifier: keyid:34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:59:88:fb:0f:39:34:a3:90:08:df:d7:72:08:8e:a8:c4:d0: 84:ca:de:71:de:dc:df:17:36:13:cb:a4:02:5e:bb:01:3a:30: 52:d3:0e:e9:54:db:01:6f:e1:06:fc:e9:20:13:ce:00:37:df: e9:05:3b:b2:0f:01:1b:69:c4:df:3a:94:ce:e9:2b:a1:d8:4a: 6a:b5:84:bc:03:fb:c0:b3:48:1b:3c:f5:ef:c7:2e:d6:68:3f: 53:81:05:ee:c1:a1:c5:cd:28:f5:38:e6:5a:27:3a:f0:d3:2b: f1:ee:c0:d5:66:bc:48:6d:f8:85:1c:b5:f3:fa:00:fc:b1:8f: af:f4:f8:2d:fd:73:66:ea:b6:52:da:9a:54:55:29:c1:75:24: f2:4f:ba:0d:e5:19:da:20:7f:4b:d6:76:5c:e7:7f:a5:f4:cd: 69:21:6e:91:d3:b6:84:8e:2c:77:43:ef:d1:5f:cb:a7:ad:cc: 77:4b:3e:9e:09:fd:42:39:8f:f5:99:00:fa:cb:91:b6:f9:5b: 3d:14:62:e1:58:f5:2c:0c:6c:e1:e9:87:41:2b:9b:eb:ce:5a: 74:1a:c3:5f:6d:e3:d3:67:eb:9d:d5:43:8b:8c:d5:7a:14:3c: 24:6d:26:93:a1:68:0d:92:0f:f6:98:a1:2a:59:54:43:12:0b: 8f:9f:64:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUxMEYxMTAvBgNVBAUTKDM0M0M4MjcxMzc2MUM1OEU4MjQ1MEQ5NEFBNTc5NjdE RjlCNDZGMTUwHhcNMjUxMjE4MTYyMjUyWhcNMjUxMjI1MTYyMjUyWjAYMRYwFAYD VQQDDA02OTQ0MmE1Yy1hNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApePkOpvlwGSwCZS/ZwrOl+7/2nYfYFW6sDLDbvomCNISyMRL4TDjUP5mlSYL tKnikTabXT/rBWeZv+y4rU+F9yW1CX8x/oqQgEpgL0EONP1KF9/GNm2OdXzux7z0 3epNBsK3mw5xs54Y9QSHghpieOYAv7nXlrGjCdH1kh1Eidu3zex+FiVe+WKvnPF9 4Twx25H7Oux54mPwjyfQIdNUZYa5WGSmPbiwCC7bdxQQhdA3irsjyt4r3efz6zzJ rvlHwhOvjRM85srVFwJRQSwkHonXVjB0awGYE0fvWqz148qtwM7cGatpMSmn1+MU HymDyoujMQK2/UaoMhkiNycu+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfbxvz9 huXBKKW+zr4eFMR73vqqMB8GA1UdIwQYMBaAFDQ8gnE3YcWOgkUNlKpXln35tG8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTEwRi82MEVBNUMyQ0I1 RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZNkNSUTJVcWxlV2ZmbTBi eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05EeUNjVGRoeFk2Q1JRMlVxbGVXZmZtMGJ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTEwRi82MEVBNUMyQ0I1RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZ NkNSUTJVcWxlV2ZmbTBieFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaWYj7Dzk0o5AI39dyCI6oxNCEyt5x3tzfFzYTy6QCXrsBOjBS0w7p VNsBb+EG/OkgE84AN9/pBTuyDwEbacTfOpTO6Suh2EpqtYS8A/vAs0gbPPXvxy7W aD9TgQXuwaHFzSj1OOZaJzrw0yvx7sDVZrxIbfiFHLXz+gD8sY+v9Pgt/XNm6rZS 2ppUVSnBdSTyT7oN5RnaIH9L1nZc53+l9M1pIW6R07aEjix3Q+/RX8unrcx3Sz6e Cf1COY/1mQD6y5G2+Vs9FGLhWPUsDGzh6YdBK5vrzlp0GsNfbePTZ+ud1UOLjNV6 FDwkbSaToWgNkg/2mKEqWVRDEguPn2Rt -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:42 2025 by rpki-client