This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: KPO2tIM6UggHnPmxwLB3J+HFcHREXgGzpb+LtHfF3BU= Subject key identifier: 9A:B4:0C:13:E9:9D:DA:C9:6C:96:F4:16:76:F6:E4:02:B8:C7:60:9B Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2A73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A68 Signing time: Sat 20 Dec 2025 14:23:18 +0000 Manifest this update: Sat 20 Dec 2025 14:23:18 +0000 Manifest next update: Sat 27 Dec 2025 14:23:18 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: i0TlIuKZrQTOwASzEFC/RQYbEcs3lK4F1WmKA74/T/U=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: symelOI4KiPwqS+zxOG2abXkQkOu/9Ecrvxkqaxc9Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10867 (0x2a73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Dec 20 14:23:18 2025 GMT Not After : Dec 27 14:23:18 2025 GMT Subject: CN=6946b156-5ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:45:28:38:12:35:00:97:ce:d9:42:59:e4:4d: fd:6b:14:c8:a0:74:96:5e:d6:5b:be:a5:56:d6:e9: 73:2b:f5:ef:9e:eb:36:68:e6:f3:ae:1f:b7:bf:3c: e2:e7:37:df:1c:aa:29:77:6a:bc:ae:40:5b:02:07: d0:05:74:98:e9:df:2f:71:e8:58:35:6e:f9:97:8a: a8:c8:0d:90:cf:69:14:d3:7a:43:00:cc:af:4e:9b: fd:ef:79:14:02:80:a2:f4:77:9c:88:9c:2f:12:de: b9:95:f3:04:dc:97:23:f6:85:a1:c4:21:79:30:fa: bc:5d:a9:86:f1:58:2e:5e:fb:71:9c:0f:3f:8d:55: 56:49:82:16:ef:49:23:17:64:2a:25:44:33:16:18: 4e:bb:c8:64:58:e8:1c:bd:f3:49:04:67:22:42:39: a9:68:74:85:34:04:a5:76:7c:8f:ad:be:7b:8f:6b: e8:d6:c7:59:55:34:ee:8a:1f:77:12:93:83:8e:7b: 03:7c:33:a9:bb:09:8f:fc:e2:15:4e:42:f7:10:6e: 53:68:a5:e4:45:00:9b:70:a8:ca:ee:6b:20:47:9f: 6b:42:af:81:02:fd:1d:c4:be:c1:6a:09:9f:12:88: 53:42:ab:be:76:dd:6d:bc:55:44:5a:47:68:af:55: 7f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B4:0C:13:E9:9D:DA:C9:6C:96:F4:16:76:F6:E4:02:B8:C7:60:9B X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:85:8f:37:bb:56:42:7c:13:d5:98:bf:85:40:08:2e:1a:b8: 44:a0:01:be:ea:12:4a:80:d9:50:0f:43:25:a4:23:40:8f:b5: 2e:1d:f0:1c:af:db:04:e9:c5:ba:20:62:73:5c:0a:61:fa:a6: c3:ca:b8:cd:7b:89:ec:44:25:db:2c:ae:ab:79:77:28:b7:84: 07:70:16:fb:67:1d:d6:c9:55:69:b0:fd:75:2f:f3:ff:2a:31: e5:8d:64:15:7f:f4:b2:a8:9c:fa:a6:f5:a7:5b:14:b1:81:56: 4b:4c:06:8b:01:6e:b2:c1:ad:35:3d:21:65:79:51:04:54:39: 06:ae:26:74:36:cf:4f:9a:6e:58:f8:47:2d:9b:a0:b8:9f:04: 68:44:bc:72:4b:3f:5f:e4:5e:be:65:a5:08:be:51:03:9a:ae: 13:4a:48:78:f7:bd:e7:32:20:fe:36:96:8e:2d:a1:32:da:4d: d4:20:29:e2:d0:2b:ac:dd:26:fe:17:de:7a:e3:b2:e4:f9:1f: 24:54:41:1d:2f:d9:14:35:16:f1:28:89:11:73:13:d8:08:a0: 0c:82:80:65:06:b1:80:7d:83:4c:76:64:47:99:3d:40:14:62: d9:ea:8f:5c:77:ee:2c:9f:79:fe:f1:95:46:11:2e:0e:ec:4d: f1:ee:2d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjUxMjIwMTQyMzE4WhcNMjUxMjI3MTQyMzE4WjAYMRYwFAYD VQQDDA02OTQ2YjE1Ni01YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEUoOBI1AJfO2UJZ5E39axTIoHSWXtZbvqVW1ulzK/Xvnus2aObzrh+3vzzi 5zffHKopd2q8rkBbAgfQBXSY6d8vcehYNW75l4qoyA2Qz2kU03pDAMyvTpv973kU AoCi9HeciJwvEt65lfME3Jcj9oWhxCF5MPq8XamG8VguXvtxnA8/jVVWSYIW70kj F2QqJUQzFhhOu8hkWOgcvfNJBGciQjmpaHSFNASldnyPrb57j2vo1sdZVTTuih93 EpODjnsDfDOpuwmP/OIVTkL3EG5TaKXkRQCbcKjK7msgR59rQq+BAv0dxL7Bagmf EohTQqu+dt1tvFVEWkdor1V/YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJq0DBPp ndrJbJb0Fnb25AK4x2CbMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDhY83u1ZCfBPVmL+FQAguGrhEoAG+6hJKgNlQD0MlpCNAj7UuHfAc r9sE6cW6IGJzXAph+qbDyrjNe4nsRCXbLK6reXcot4QHcBb7Zx3WyVVpsP11L/P/ KjHljWQVf/SyqJz6pvWnWxSxgVZLTAaLAW6ywa01PSFleVEEVDkGriZ0Ns9Pmm5Y +Ectm6C4nwRoRLxySz9f5F6+ZaUIvlEDmq4TSkh4973nMiD+NpaOLaEy2k3UICni 0Cus3Sb+F95647Lk+R8kVEEdL9kUNRbxKIkRcxPYCKAMgoBlBrGAfYNMdmRHmT1A FGLZ6o9cd+4sn3n+8ZVGES4O7E3x7i3R -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:35 2025 by rpki-client