This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: aLBW9LDHgZrzyNBiffV+B0F3jNsNT5pv0srInicDKOc= Subject key identifier: F1:37:51:F5:FA:48:D2:A0:E4:F9:3E:79:35:99:C7:F3:57:CB:2D:8A Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 0840 Signing time: Thu 18 Dec 2025 20:15:39 +0000 Manifest this update: Thu 18 Dec 2025 20:15:38 +0000 Manifest next update: Thu 25 Dec 2025 20:15:38 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: Ie/ixxthPudgHVBgqfhxhGlHKawacdyBaNdJpfFHorQ=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Dec 18 20:15:38 2025 GMT Not After : Dec 25 20:15:38 2025 GMT Subject: CN=694460eb-0d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9a:2d:28:7c:45:c4:d0:7d:bd:b5:9b:bb:98: f7:ae:62:74:5d:2e:4a:34:78:d4:89:a5:f0:7d:3a: 69:8a:ce:8c:e8:1b:a2:05:d1:35:78:d9:58:d4:5b: 71:0b:38:d9:01:53:ff:da:41:4f:2d:61:e2:b3:a0: ce:fb:e8:94:35:ec:fc:5a:f6:41:bb:b1:59:58:30: aa:30:90:48:84:3b:d5:83:84:8f:d4:89:db:c0:76: 5d:b5:2c:39:87:b8:43:ab:be:4c:f6:cc:58:ed:05: 82:e4:1b:80:44:14:6c:52:5c:49:22:25:62:be:61: 81:02:d5:d3:cb:c2:ff:dd:ce:2e:d2:6f:df:87:99: 39:f4:68:06:9f:b9:29:25:ff:e1:d9:d2:10:9f:75: 4d:f5:c3:b0:31:b3:de:58:cf:5e:09:6f:eb:28:2c: 57:04:a7:70:bc:1b:2f:7e:66:1a:4c:62:98:67:16: 8c:b7:c5:0b:7b:45:76:fe:a0:48:ff:c3:2f:48:35: ed:5b:d6:81:8c:12:2b:9a:07:20:b2:7f:04:d2:54: 09:e6:47:1d:96:11:d7:d0:65:5e:38:99:52:22:fc: dc:e6:90:89:42:71:91:96:1e:d9:1f:73:32:78:06: 01:41:bd:78:5e:60:e3:86:5f:96:77:59:a0:d5:f9: 9c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:37:51:F5:FA:48:D2:A0:E4:F9:3E:79:35:99:C7:F3:57:CB:2D:8A X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:71:ab:61:4b:fe:11:e4:0a:6d:7e:4a:f9:74:70:4c:9b:3d: 0f:a1:f3:52:b7:d9:fc:13:aa:e1:d2:8c:5c:2b:02:ae:74:97: 1c:34:28:90:9a:72:19:a0:65:8a:3f:1a:70:65:4b:1f:77:fd: 0c:dd:31:62:b2:e9:f4:ec:e4:c1:00:b4:2d:be:f5:2d:e7:53: 36:51:82:8f:54:ef:92:bd:33:9b:0b:8d:0d:5c:12:b5:c2:ab: 1e:3e:22:35:e6:3d:13:35:0b:52:ff:1f:49:4d:b0:ce:32:dc: 92:8c:9d:2a:16:3f:0f:ae:7e:94:b1:75:48:6b:80:ca:96:0b: af:fd:98:cc:d6:ff:02:88:94:96:ed:d8:2f:ba:82:03:05:ca: 87:cc:ee:f6:67:e5:41:8c:63:08:a6:73:63:3b:00:10:bb:d1: 76:5c:f2:3a:5d:6e:7b:fc:92:8f:27:96:1f:67:d2:25:e4:ae: 03:8f:b3:02:51:4c:5b:71:85:4c:0a:72:b3:ce:48:9c:04:e0: 3a:1d:e3:a7:3f:22:76:61:6b:ac:fc:ee:53:35:cb:b8:d6:af: db:cd:42:d6:33:38:7a:99:c3:d1:0b:5b:70:aa:e1:ad:5c:1f: 82:db:a3:ec:cc:82:eb:33:13:e6:cf:25:dd:44:e5:9d:39:e0: 3f:bc:9a:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUxMjE4MjAxNTM4WhcNMjUxMjI1MjAxNTM4WjAYMRYwFAYD VQQDDA02OTQ0NjBlYi0wZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZotKHxFxNB9vbWbu5j3rmJ0XS5KNHjUiaXwfTppis6M6BuiBdE1eNlY1Ftx CzjZAVP/2kFPLWHis6DO++iUNez8WvZBu7FZWDCqMJBIhDvVg4SP1InbwHZdtSw5 h7hDq75M9sxY7QWC5BuARBRsUlxJIiVivmGBAtXTy8L/3c4u0m/fh5k59GgGn7kp Jf/h2dIQn3VN9cOwMbPeWM9eCW/rKCxXBKdwvBsvfmYaTGKYZxaMt8ULe0V2/qBI /8MvSDXtW9aBjBIrmgcgsn8E0lQJ5kcdlhHX0GVeOJlSIvzc5pCJQnGRlh7ZH3My eAYBQb14XmDjhl+Wd1mg1fmcowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPE3UfX6 SNKg5Pk+eTWZx/NXyy2KMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIcathS/4R5Aptfkr5dHBMmz0PofNSt9n8E6rh0oxcKwKudJccNCiQ mnIZoGWKPxpwZUsfd/0M3TFisun07OTBALQtvvUt51M2UYKPVO+SvTObC40NXBK1 wqsePiI15j0TNQtS/x9JTbDOMtySjJ0qFj8Prn6UsXVIa4DKlguv/ZjM1v8CiJSW 7dgvuoIDBcqHzO72Z+VBjGMIpnNjOwAQu9F2XPI6XW57/JKPJ5YfZ9Il5K4Dj7MC UUxbcYVMCnKzzkicBOA6HeOnPyJ2YWus/O5TNcu41q/bzULWMzh6mcPRC1twquGt XB+C26PszILrMxPmzyXdROWdOeA/vJqd -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:43 2025 by rpki-client