This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: zN565NPsmkex3ltKKIkKvSY9Fpr6FahX/y4kvOaBilg= Subject key identifier: 48:E4:1F:4C:66:7F:CF:84:17:07:65:B1:54:59:C6:E6:2E:B0:DC:EE Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 045D Signing time: Mon 22 Dec 2025 23:13:18 +0000 Manifest this update: Mon 22 Dec 2025 23:13:18 +0000 Manifest next update: Mon 29 Dec 2025 23:13:18 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: woMdKnAD0D0OFKVJEkWPAN6wJKkCufshG/mQ9TcrLK8=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: iYM80ZUZv11SjTkmdUWv3G7CQp9g2JbkQfuMruAgJ5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351, serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Dec 22 23:13:18 2025 GMT Not After : Dec 29 23:13:18 2025 GMT Subject: CN=6949d08e-ed25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:d0:2b:42:19:da:a2:80:f2:af:a3:52:f3: 4d:d4:7d:22:b3:6c:47:1e:79:d6:43:cf:2a:ea:80: fb:00:0d:5b:31:0e:7d:de:25:23:26:c9:a9:ec:95: ff:eb:75:b5:28:b7:dd:6c:55:c5:42:5e:9e:a8:f8: 3e:92:a4:08:5d:9b:d8:99:71:9e:35:c0:86:87:17: f5:92:b3:a4:5f:1e:3b:7d:f8:43:d3:40:80:b6:a5: cd:0a:fa:fd:6c:b3:8c:03:f1:06:10:05:45:fe:a8: a7:9d:4c:f7:08:de:72:b9:5c:11:a6:a3:80:60:ce: 15:e0:e4:1e:4a:43:3d:05:de:15:89:11:1d:a0:ac: 73:af:d7:78:c6:a9:71:ad:a3:e7:c0:86:b3:6a:1a: ed:40:58:87:43:7d:b6:48:98:28:77:37:0e:e8:97: 5a:53:21:36:9b:aa:63:c5:5f:d0:88:57:83:3d:8b: ca:3d:55:61:db:40:50:45:79:87:fb:86:d3:1c:d7: e1:3b:41:d8:ac:28:3d:45:c4:28:42:a9:56:6e:dc: 68:1a:b0:28:05:6d:20:d8:ed:96:c6:39:98:a8:7d: 58:8b:64:70:8f:78:ee:87:b6:a6:21:79:e0:4d:f9: 32:18:26:fd:86:e5:00:c4:b2:7c:97:e3:d9:25:a1: 56:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E4:1F:4C:66:7F:CF:84:17:07:65:B1:54:59:C6:E6:2E:B0:DC:EE X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:93:f9:08:14:7d:98:6a:f6:0b:40:9e:93:39:e6:54:49:7c: 00:bd:41:5d:cc:29:08:de:61:da:3e:2d:59:2b:d4:06:d2:1b: de:2d:9d:8e:b1:c0:77:65:85:81:10:66:31:6a:f0:9d:67:da: 96:15:74:31:30:99:1c:eb:d9:d0:73:ab:f7:ef:7d:80:b5:01: ce:ea:e3:d9:da:7a:0e:c2:e9:7d:4f:fa:b3:df:ff:0d:09:03: 20:e7:93:50:99:e6:f3:55:e1:cd:63:33:c3:f7:c9:77:e7:02: fb:d1:27:79:7c:9f:c0:26:2c:04:12:02:ee:09:99:54:4d:9f: 07:cc:02:fc:6d:0d:95:75:f9:b2:cc:22:4b:e3:ed:67:c0:19: f5:58:e7:a6:10:cd:d3:63:1a:8b:1a:52:9d:7c:b6:5e:c8:b3: 75:2b:d1:ec:69:c6:33:3e:6c:f3:b0:3e:46:c2:e4:e1:03:54: ac:0e:de:12:a8:a7:28:66:24:aa:b5:de:e7:72:f6:be:09:60: 54:d2:06:51:5f:90:8d:04:92:37:e4:f0:44:4f:5a:15:e4:d9: 5a:79:d5:1c:3b:16:23:5a:ee:1f:62:0f:fe:7b:d4:df:f6:f2: a6:c9:0c:b2:5d:2e:14:93:fb:a1:77:97:0a:52:f3:c5:46:8c: 53:d0:66:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjUxMjIyMjMxMzE4WhcNMjUxMjI5MjMxMzE4WjAYMRYwFAYD VQQDDA02OTQ5ZDA4ZS1lZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7/QK0IZ2qKA8q+jUvNN1H0is2xHHnnWQ88q6oD7AA1bMQ593iUjJsmp7JX/ 63W1KLfdbFXFQl6eqPg+kqQIXZvYmXGeNcCGhxf1krOkXx47ffhD00CAtqXNCvr9 bLOMA/EGEAVF/qinnUz3CN5yuVwRpqOAYM4V4OQeSkM9Bd4ViREdoKxzr9d4xqlx raPnwIazahrtQFiHQ322SJgodzcO6JdaUyE2m6pjxV/QiFeDPYvKPVVh20BQRXmH +4bTHNfhO0HYrCg9RcQoQqlWbtxoGrAoBW0g2O2WxjmYqH1Yi2Rwj3juh7amIXng TfkyGCb9huUAxLJ8l+PZJaFW2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjkH0xm f8+EFwdlsVRZxuYusNzuMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMk/kIFH2YavYLQJ6TOeZUSXwAvUFdzCkI3mHaPi1ZK9QG0hveLZ2O scB3ZYWBEGYxavCdZ9qWFXQxMJkc69nQc6v3732AtQHO6uPZ2noOwul9T/qz3/8N CQMg55NQmebzVeHNYzPD98l35wL70Sd5fJ/AJiwEEgLuCZlUTZ8HzAL8bQ2Vdfmy zCJL4+1nwBn1WOemEM3TYxqLGlKdfLZeyLN1K9HsacYzPmzzsD5GwuThA1SsDt4S qKcoZiSqtd7ncva+CWBU0gZRX5CNBJI35PBET1oV5NlaedUcOxYjWu4fYg/+e9Tf 9vKmyQyyXS4Uk/uhd5cKUvPFRoxT0Gai -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:13 2025 by rpki-client