This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft File: NU4yud4OVpoZUal7kyAZ9oijUKw.mft (raw, json) Hash identifier: +9ecsKccC+GCfavH8ayEaYtSNc4UYX3qZ8d+HOUHq/Y= Subject key identifier: 72:29:C1:F1:D7:0B:15:EB:C7:31:E1:1A:7D:B5:E2:D9:7D:77:AA:9B Authority key identifier: 35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC Certificate issuer: /CN=A912442A/serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft Manifest number: 5D Signing time: Mon 15 Dec 2025 00:18:32 +0000 Manifest this update: Mon 15 Dec 2025 00:18:32 +0000 Manifest next update: Mon 22 Dec 2025 00:18:32 +0000 Files and hashes: 1: NU4yud4OVpoZUal7kyAZ9oijUKw.crl (hash: ox7z1RLaB6lFCJ4G6TFEf8B2KcRe9IWxXB3DucvesNo=) 2: 19D89DB656F311F083F53B5DC4F9AE02.roa (hash: hMuLJheRFMre3o95xQZ4egylCXlDJ3pGeYvC5sIkz/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Validity Not Before: Dec 15 00:18:32 2025 GMT Not After : Dec 22 00:18:32 2025 GMT Subject: CN=693f53d8-4ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:43:82:40:73:7f:2e:0e:b4:c1:d3:11:53:66: 8b:2c:60:fa:f3:e5:b5:c3:f2:99:f1:27:e8:d8:0b: fd:7f:54:cd:1b:bd:38:69:40:13:75:60:03:21:14: ec:f3:19:25:b5:f8:7f:89:1b:29:bb:0f:3f:c4:64: f5:f3:be:ff:f6:58:2c:cd:bc:31:62:16:ca:de:85: 05:0e:86:1a:45:38:68:f9:fb:7f:c6:70:7a:50:0b: 20:d0:36:b7:48:c3:57:bf:26:79:c6:46:1e:a0:90: 97:63:0a:5c:f9:3c:bd:18:4c:fd:ec:a9:a3:d7:e0: 82:00:c7:22:41:33:f3:c7:da:42:31:a8:56:a2:79: 60:8d:05:75:b7:26:52:be:3e:e8:60:27:d9:00:33: 23:11:82:9a:a2:25:6d:f3:4f:d7:9a:87:05:93:85: 2b:fc:d0:e6:18:f6:b7:db:b2:ae:c0:b6:c6:7f:49: f7:a4:50:18:3e:bd:d2:e1:89:ea:84:01:b1:ee:58: bd:39:4a:d8:1b:87:9d:7b:b7:59:74:fe:7f:19:bc: bd:77:11:fa:b9:e2:90:2e:47:46:0e:68:8c:17:ac: 9d:13:2d:57:10:23:04:29:61:50:2c:60:c1:58:5a: c2:22:3b:84:f0:f6:89:c1:0d:cb:f8:17:67:f2:c6: 53:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:29:C1:F1:D7:0B:15:EB:C7:31:E1:1A:7D:B5:E2:D9:7D:77:AA:9B X509v3 Authority Key Identifier: keyid:35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f1:b8:14:b1:5b:78:fa:9e:1f:53:0c:7e:d3:14:9e:3a:09: aa:4e:a0:11:e7:a2:0f:e0:5c:ee:98:69:6b:e3:21:b7:49:ad: c9:89:28:e3:04:d9:6b:d3:04:42:6d:77:e7:24:61:ec:00:e5: b2:71:0c:b9:e3:bc:28:7f:08:37:6d:db:27:cb:17:cd:d3:e1: ad:bf:b1:d9:e3:9f:a2:ab:2c:0a:f9:7c:a2:ae:1e:eb:98:81: 77:0b:df:e8:68:88:89:02:94:61:21:f4:95:2a:25:a1:43:89: 5c:8b:38:95:a2:ee:d5:9c:94:76:89:b7:44:9e:ba:4a:94:de: 8f:22:d3:bc:16:44:50:a7:40:84:fd:a8:1a:6f:7a:cf:07:26: 23:94:d3:95:a8:57:50:fa:82:5d:46:12:1d:a7:2b:6f:27:dc: 1c:b1:04:51:7b:28:20:1c:ab:28:a1:eb:eb:1e:a8:91:de:31: 46:0e:7a:8d:6f:01:ab:f9:23:35:4c:3c:cc:81:26:c8:a7:38: b8:5c:09:09:99:f7:a8:23:a0:4f:8c:fc:2f:f8:e3:f8:42:fe: e8:95:34:49:87:0b:14:a0:4c:2f:8b:2a:5f:0e:f0:63:46:90: d3:f3:22:dc:a6:91:ea:a5:d9:e5:55:dd:b9:21:07:2f:be:2a: 97:94:bb:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDQyQTExMC8GA1UEBRMoMzU0RTMyQjlERTBFNTY5QTE5NTFBOTdCOTMyMDE5RjY4 OEEzNTBBQzAeFw0yNTEyMTUwMDE4MzJaFw0yNTEyMjIwMDE4MzJaMBgxFjAUBgNV BAMMDTY5M2Y1M2Q4LTRlZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbQ4JAc38uDrTB0xFTZossYPrz5bXD8pnxJ+jYC/1/VM0bvThpQBN1YAMhFOzz GSW1+H+JGym7Dz/EZPXzvv/2WCzNvDFiFsrehQUOhhpFOGj5+3/GcHpQCyDQNrdI w1e/JnnGRh6gkJdjClz5PL0YTP3sqaPX4IIAxyJBM/PH2kIxqFaieWCNBXW3JlK+ PuhgJ9kAMyMRgpqiJW3zT9eahwWThSv80OYY9rfbsq7AtsZ/SfekUBg+vdLhieqE AbHuWL05Stgbh517t1l0/n8ZvL13Efq54pAuR0YOaIwXrJ0TLVcQIwQpYVAsYMFY WsIiO4Tw9onBDcv4F2fyxlOHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcinB8dcL FevHMeEafbXi2X13qpswHwYDVR0jBBgwFoAUNU4yud4OVpoZUal7kyAZ9oijUKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NDJBLzU1RUJCODU4NEUz QjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBvWlVhbDdreUFaOW9palVL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTlU0eXVkNE9WcG9aVWFsN2t5QVo5b2lqVUt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NDJBLzU1RUJCODU4NEUzQjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBv WlVhbDdreUFaOW9palVLdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGDxuBSxW3j6nh9TDH7TFJ46CapOoBHnog/gXO6YaWvjIbdJrcmJKOME 2WvTBEJtd+ckYewA5bJxDLnjvCh/CDdt2yfLF83T4a2/sdnjn6KrLAr5fKKuHuuY gXcL3+hoiIkClGEh9JUqJaFDiVyLOJWi7tWclHaJt0SeukqU3o8i07wWRFCnQIT9 qBpves8HJiOU05WoV1D6gl1GEh2nK28n3ByxBFF7KCAcqyih6+seqJHeMUYOeo1v Aav5IzVMPMyBJsinOLhcCQmZ96gjoE+M/C/44/hC/uiVNEmHCxSgTC+LKl8O8GNG kNPzItymkeql2eVV3bkhBy++KpeUu0c= -----END CERTIFICATE-----Generated at Mon Dec 15 18:19:37 2025 by rpki-client