This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json) Hash identifier: 9LaAgLZLoPLSiS1aoYZ2dgDEMBVW3/vY36Ark8+wdPQ= Subject key identifier: 60:C4:6C:20:6D:2E:65:05:5F:24:A1:7D:B4:8E:1C:CB:0E:38:2B:74 Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft Manifest number: 08 Signing time: Wed 03 Dec 2025 06:36:58 +0000 Manifest this update: Wed 03 Dec 2025 06:36:57 +0000 Manifest next update: Wed 10 Dec 2025 06:36:57 +0000 Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: TNyTAfDWoSWsmHi5XKhNy5DMq9chshAhjvdHbS76iyE=) 2: 86227722C92A11F0872AB883C4F9AE02.roa (hash: RCgqSnz/5wU5bIIOXEkp3UnnvACHFxrmmpLQxkHAG04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B Validity Not Before: Dec 3 06:36:57 2025 GMT Not After : Dec 10 06:36:57 2025 GMT Subject: CN=692fda8a-2a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:13:b6:6c:94:f5:96:20:e6:28:24:91:14: 0b:1d:fb:a1:f6:e2:55:b5:d3:dc:da:81:99:f5:bf: 16:33:38:63:ab:7c:78:d5:b8:dd:03:f5:6d:13:4d: 2d:61:6a:91:16:0c:c0:21:b6:10:75:7c:34:67:14: 86:4f:f7:96:b4:ac:c6:09:5d:e3:e3:7a:97:e5:52: 9f:59:22:38:e7:1d:d1:57:da:75:6e:b1:a8:53:6c: 9f:31:9f:22:ba:61:04:03:b0:ad:58:ce:f3:51:84: 68:3c:75:11:77:e1:48:cf:d5:e2:d3:59:a6:0c:77: 9a:e6:1c:89:d7:e4:d4:2e:3a:7e:99:82:52:0d:38: 63:b7:92:cd:6c:f8:bf:c6:1d:fe:c9:21:25:60:3d: 44:eb:06:c0:44:42:e9:5c:e3:89:c5:96:ab:a1:14: 51:ee:b2:75:61:e1:1a:ad:39:ac:5e:d5:eb:6f:ec: 3e:74:0c:cb:11:65:68:72:20:90:f4:1e:b0:43:3a: 8a:e4:4c:97:6b:af:5e:50:9c:73:b2:80:47:f7:9f: 8b:33:80:58:41:45:d1:a1:61:ac:3f:08:bc:02:ba: 21:51:8f:f0:61:e4:85:cb:03:89:91:99:37:05:bc: 1a:46:b6:a6:ce:14:9f:23:6c:95:df:af:08:6f:50: 9b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C4:6C:20:6D:2E:65:05:5F:24:A1:7D:B4:8E:1C:CB:0E:38:2B:74 X509v3 Authority Key Identifier: keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:51:91:89:90:88:bd:9d:63:90:57:df:82:89:0c:9f:ad:a9: 1b:07:f2:15:5c:85:a6:45:1c:42:db:2e:44:9e:59:28:2e:65: 38:f6:6e:29:9e:51:bb:d2:e2:0a:68:f8:46:7e:1a:1b:fd:4b: 71:d9:ef:9f:4c:f5:c6:b5:0a:61:15:31:e6:e8:42:cb:fb:01: c0:7f:22:f2:86:a2:4c:7b:bb:a8:fa:c8:e1:b4:1a:e4:59:68: ee:de:1b:55:24:10:d1:27:f5:31:0a:60:37:01:bb:eb:d8:8b: 8f:93:3d:aa:43:10:52:16:90:6a:ec:89:fa:0c:fd:d9:cc:35: b9:7d:d0:c9:09:21:8e:00:14:a4:1c:83:cc:19:9e:ac:83:fd: f3:79:3c:06:12:2c:ec:cf:42:55:54:f1:5f:bf:2e:9f:ba:fd: 9c:95:ea:bc:51:d6:97:cd:45:12:b6:44:d4:6c:ae:9f:32:55: a5:72:c9:3c:59:a2:9a:24:ce:d0:db:48:9b:93:5a:f0:c9:e8: 5a:43:da:d3:15:48:4e:66:98:1e:cb:d7:81:f2:6b:68:4a:d7: 5c:98:9f:bf:5b:0e:2a:ce:51:c7:e7:5a:7d:ce:dc:45:39:4c: 57:28:dd:10:2e:25:be:c6:f3:2b:a0:52:fa:e0:63:85:d0:40: 64:4c:12:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjY2NjExMC8GA1UEBRMoMzUwODE5N0ExMEZFQTQ2QTcxODQ2MzMxNEZFQkE5Mzk0 NEI2MjQ4QjAeFw0yNTEyMDMwNjM2NTdaFw0yNTEyMTAwNjM2NTdaMBgxFjAUBgNV BAMTDTY5MmZkYThhLTJhNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCURO2bJT1liDmKCSRFAsd+6H24lW109zagZn1vxYzOGOrfHjVuN0D9W0TTS1h apEWDMAhthB1fDRnFIZP95a0rMYJXePjepflUp9ZIjjnHdFX2nVusahTbJ8xnyK6 YQQDsK1YzvNRhGg8dRF34UjP1eLTWaYMd5rmHInX5NQuOn6ZglINOGO3ks1s+L/G Hf7JISVgPUTrBsBEQulc44nFlquhFFHusnVh4RqtOaxe1etv7D50DMsRZWhyIJD0 HrBDOorkTJdrr15QnHOygEf3n4szgFhBRdGhYaw/CLwCuiFRj/Bh5IXLA4mRmTcF vBpGtqbOFJ8jbJXfrwhvUJufAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYMRsIG0u ZQVfJKF9tI4cyw44K3QwHwYDVR0jBBgwFoAUNQgZehD+pGpxhGMxT+upOUS2JIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNjY2Lzk5MzYxQTdDQzky OTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdweGhHTXhULXVwT1VTMkpJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlFnWmVoRC1wR3B4aEdNeFQtdXBPVVMySklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NjY2Lzk5MzYxQTdDQzkyOTExRjBCMjM4RjI4MUM0RjlBRTAyL05RZ1plaEQtcEdw eGhHTXhULXVwT1VTMkpJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC5RkYmQiL2dY5BX34KJDJ+tqRsH8hVchaZFHELbLkSeWSguZTj2bime UbvS4gpo+EZ+Ghv9S3HZ759M9ca1CmEVMeboQsv7AcB/IvKGokx7u6j6yOG0GuRZ aO7eG1UkENEn9TEKYDcBu+vYi4+TPapDEFIWkGrsifoM/dnMNbl90MkJIY4AFKQc g8wZnqyD/fN5PAYSLOzPQlVU8V+/Lp+6/ZyV6rxR1pfNRRK2RNRsrp8yVaVyyTxZ opokztDbSJuTWvDJ6FpD2tMVSE5mmB7L14Hya2hK11yYn79bDirOUcfnWn3O3EU5 TFco3RAuJb7G8yugUvrgY4XQQGRMEh4= -----END CERTIFICATE-----Generated at Wed Dec 3 16:49:11 2025 by rpki-client