This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft File: NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft (raw, json) Hash identifier: yqfaBTma8Vtnuyk3xWUgi1KvGkcE1wIONQ0+bOEieIk= Subject key identifier: 50:D5:08:F2:70:0E:1F:AB:5B:F7:EA:51:1E:47:41:93:7E:A2:E3:96 Authority key identifier: 35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 Certificate issuer: /CN=A91E2EFF/serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft Manifest number: 62 Signing time: Sun 21 Dec 2025 06:05:19 +0000 Manifest this update: Sun 21 Dec 2025 06:05:19 +0000 Manifest next update: Sun 28 Dec 2025 06:05:19 +0000 Files and hashes: 1: NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl (hash: tYym7Xjh6+4y5c9f4Vkxaxf3LN/IJVXixOh1ZGAq9VY=) 2: 370DA046484A11F0B96B9D10C4F9AE02.roa (hash: 2Lm246NHiIIsj3yU5G9cofOj46hOe93SJKM95sww3VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Validity Not Before: Dec 21 06:05:19 2025 GMT Not After : Dec 28 06:05:19 2025 GMT Subject: CN=69478e1f-4854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f1:5f:fb:af:f8:48:7c:a6:25:6a:95:82:43: 23:03:d6:e2:60:d0:94:e4:f7:7f:ee:eb:b3:9d:a1: 12:e3:33:0f:3e:d6:15:5f:16:fb:15:04:be:80:0f: 21:e2:13:61:bb:a8:df:ef:b7:73:72:99:60:06:ac: 36:ee:b5:6d:be:7f:be:1f:2c:e3:eb:4a:78:7a:57: 7d:12:df:07:f1:57:3c:49:da:10:77:56:97:a0:95: b7:7a:4e:88:77:fe:c9:46:65:bb:56:ef:ca:8c:f1: e0:0a:57:d3:53:81:d2:38:1a:bd:bb:4c:5c:da:0e: ff:31:49:06:9e:e9:0f:4a:41:fb:7e:b8:0b:29:3f: 0e:e7:8e:53:70:91:c7:1e:e0:a6:0e:91:b6:4b:87: f7:09:76:65:ba:06:1d:ca:14:d2:79:9d:d5:fd:6a: 40:ec:99:ce:8c:27:98:eb:ec:b3:11:75:c5:b1:2c: 5f:cc:06:ac:b3:b6:89:12:62:40:be:d6:86:dd:74: 29:17:96:30:03:a3:79:0a:af:6c:8d:95:ce:a1:82: fd:6b:26:d9:f1:b1:86:d2:d9:83:14:6a:94:6d:27: de:52:98:4e:e9:2d:5b:a7:27:3c:ae:c4:fb:83:2a: 2e:19:58:09:0d:74:79:61:84:d8:1f:fd:72:37:18: 20:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D5:08:F2:70:0E:1F:AB:5B:F7:EA:51:1E:47:41:93:7E:A2:E3:96 X509v3 Authority Key Identifier: keyid:35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c0:f1:5e:0b:24:f3:df:08:57:9c:7c:b1:6a:e6:d2:92:38: 6e:42:8f:38:9b:65:95:82:5a:a8:ef:b2:d4:50:b9:d6:33:23: 55:e0:53:34:c2:b8:cd:6d:18:1a:89:5a:8d:45:49:56:13:ff: 80:51:91:08:00:d9:20:1f:01:65:a3:ab:1c:3a:3a:56:f6:87: be:ce:ec:1b:eb:6d:0e:7f:89:b4:96:4b:5e:5f:b7:84:1c:2f: c3:8f:44:e0:9f:fc:ad:b0:91:73:3d:d1:60:c8:4e:1e:45:5f: bc:ac:8d:a6:5f:d0:ce:57:99:f5:7c:40:f3:00:f8:6e:c8:6c: 3a:62:10:8c:9b:1c:81:f8:fb:8c:97:b6:15:f9:bb:e3:c9:db: 25:82:7d:66:3e:eb:0c:9c:db:75:9b:59:7b:65:4d:35:53:94: c4:13:43:30:07:f0:7e:1e:01:b0:15:2d:b3:3d:83:37:32:74: eb:e4:ea:ec:28:ce:a8:24:32:6b:4b:b0:07:57:6d:51:e6:c0: 6a:e7:10:b9:25:ed:61:1b:a8:87:11:84:df:0c:0e:4e:b0:78: f7:be:a8:07:b7:e0:49:89:97:6c:14:54:c6:27:9d:75:82:c3: b2:b9:f9:a4:56:3b:a3:d6:c1:fc:c1:66:e1:4c:f6:d8:56:38: 04:41:9e:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMzU0MzNDOUVDNDA4MDk5RjcwMThCQzUxNDQxRDIyQzRD MTFGQzM4NTAeFw0yNTEyMjEwNjA1MTlaFw0yNTEyMjgwNjA1MTlaMBgxFjAUBgNV BAMMDTY5NDc4ZTFmLTQ4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCK8V/7r/hIfKYlapWCQyMD1uJg0JTk93/u67OdoRLjMw8+1hVfFvsVBL6ADyHi E2G7qN/vt3NymWAGrDbutW2+f74fLOPrSnh6V30S3wfxVzxJ2hB3Vpeglbd6Toh3 /slGZbtW78qM8eAKV9NTgdI4Gr27TFzaDv8xSQae6Q9KQft+uAspPw7njlNwkcce 4KYOkbZLh/cJdmW6Bh3KFNJ5ndX9akDsmc6MJ5jr7LMRdcWxLF/MBqyztokSYkC+ 1obddCkXljADo3kKr2yNlc6hgv1rJtnxsYbS2YMUapRtJ95SmE7pLVunJzyuxPuD Ki4ZWAkNdHlhhNgf/XI3GCB/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUNUI8nAO H6tb9+pRHkdBk36i45YwHwYDVR0jBBgwFoAUNUM8nsQICZ9wGLxRRB0ixMEfw4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0FCOTc1QkNFNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5d0dMeFJSQjBpeE1FZnc0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlVNOG5zUUlDWjl3R0x4UlJCMGl4TUVmdzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0FCOTc1QkNFNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5 d0dMeFJSQjBpeE1FZnc0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA/A8V4LJPPfCFecfLFq5tKSOG5CjzibZZWCWqjvstRQudYzI1XgUzTC uM1tGBqJWo1FSVYT/4BRkQgA2SAfAWWjqxw6Olb2h77O7BvrbQ5/ibSWS15ft4Qc L8OPROCf/K2wkXM90WDITh5FX7ysjaZf0M5XmfV8QPMA+G7IbDpiEIybHIH4+4yX thX5u+PJ2yWCfWY+6wyc23WbWXtlTTVTlMQTQzAH8H4eAbAVLbM9gzcydOvk6uwo zqgkMmtLsAdXbVHmwGrnELkl7WEbqIcRhN8MDk6wePe+qAe34EmJl2wUVMYnnXWC w7K5+aRWO6PWwfzBZuFM9thWOARBnp0= -----END CERTIFICATE-----Generated at Sun Dec 21 18:33:41 2025 by rpki-client