This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: pWbwKHv/X286rKXw8rEl2n487/PLiofGK8bRPGj4nUw= Subject key identifier: E4:4B:10:74:A0:DA:81:01:B8:E7:40:56:74:43:D9:F4:16:8E:D3:27 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 07AF Signing time: Mon 22 Dec 2025 20:43:11 +0000 Manifest this update: Mon 22 Dec 2025 20:43:10 +0000 Manifest next update: Mon 29 Dec 2025 20:43:10 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: tV3hXQMD/hGdyvshxAhQi2r5jINgq0lhN0rMu3Q3nUc=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: b75OO6moLJ/LsRE3ZkAYlUImD8cqw/G/vg1FI9kPZGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Dec 22 20:43:10 2025 GMT Not After : Dec 29 20:43:10 2025 GMT Subject: CN=6949ad5e-17a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:ef:98:9e:12:03:53:88:f8:f4:84:7d:d4: c5:b5:79:a2:9e:20:32:c5:cf:f4:a6:5a:07:94:86: 31:24:44:f2:b3:d3:0c:78:0a:3d:be:80:f8:2e:44: 98:9a:e2:13:84:47:8f:d2:43:6b:4c:20:38:de:a6: bc:f5:4d:4a:10:08:64:51:37:bd:49:ae:ac:0c:2b: da:5a:b3:84:91:8a:79:a9:21:55:51:ba:56:fd:21: 3b:1f:2a:ba:6c:1e:75:62:07:db:40:e6:34:48:28: 12:ad:ac:b9:03:21:c2:99:b6:73:f7:9c:86:ad:47: 03:02:59:1f:d7:dd:0f:0e:8f:29:1e:8c:4a:f6:55: 46:75:b4:1c:31:e0:3c:70:66:37:6e:ca:2c:9e:96: 5a:cc:59:a3:62:9b:6d:14:27:d9:e4:23:b7:f2:f6: f9:c6:48:ea:f9:4f:5e:b9:ae:c3:e8:d6:8b:a5:76: 35:02:47:ae:45:5d:10:6b:c4:4f:1c:e3:b8:34:a8: 32:05:c8:8b:9e:3c:9a:f3:3e:f5:66:2c:b6:41:1c: 1e:3e:59:70:d3:3f:e5:3e:0d:f0:5e:39:4e:e7:90: 8e:12:8f:78:52:74:e6:ef:3d:b1:b8:a4:37:19:eb: 43:af:12:32:7c:1e:f8:68:d9:2e:1f:32:5d:88:99: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4B:10:74:A0:DA:81:01:B8:E7:40:56:74:43:D9:F4:16:8E:D3:27 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:c6:97:78:51:ec:69:d2:2a:cb:9f:a2:63:16:00:1f:90:75: 60:eb:4b:e9:8e:35:09:69:15:4d:f5:9c:3c:0e:65:e4:d0:68: a0:c7:d5:11:07:b2:f2:ea:8a:43:7a:38:bb:6e:3b:7d:5b:b9: b9:2f:aa:72:72:33:de:9a:3d:75:fe:02:24:e4:b1:5e:4c:34: f1:e6:c1:2d:0d:e3:58:54:ef:9b:02:d9:44:ae:32:3b:3e:69: f6:cc:b3:a8:a7:9f:72:0e:c4:66:97:1a:5b:30:7f:4b:ba:e3: f8:50:44:fe:7d:86:ea:11:8e:04:56:34:cc:f2:c5:78:58:47: e8:8f:3b:00:d0:59:29:a4:48:62:4f:70:85:71:bf:b2:da:a6: bd:a2:8b:21:d0:d0:64:78:eb:e2:41:f8:cc:03:89:ba:2e:68: f5:8a:14:44:f6:4c:fd:3b:d2:2d:c6:bd:e9:10:26:c9:5d:59: 30:35:39:56:8f:1d:cc:77:ea:6e:7d:00:6b:63:0b:e4:a8:aa: 5b:6b:1a:30:79:59:bd:7f:6f:49:84:14:b2:cf:d9:bc:22:b4: 48:00:9a:91:12:c7:3d:23:0f:be:30:fe:c0:2b:b9:22:0a:0d: cd:78:4e:b1:25:96:f8:8a:98:bf:73:b6:ee:45:94:30:b1:5a: 99:3e:37:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUxMjIyMjA0MzEwWhcNMjUxMjI5MjA0MzEwWjAYMRYwFAYD VQQDDA02OTQ5YWQ1ZS0xN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrzvmJ4SA1OI+PSEfdTFtXminiAyxc/0ploHlIYxJETys9MMeAo9voD4LkSY muIThEeP0kNrTCA43qa89U1KEAhkUTe9Sa6sDCvaWrOEkYp5qSFVUbpW/SE7Hyq6 bB51YgfbQOY0SCgSray5AyHCmbZz95yGrUcDAlkf190PDo8pHoxK9lVGdbQcMeA8 cGY3bsosnpZazFmjYpttFCfZ5CO38vb5xkjq+U9eua7D6NaLpXY1AkeuRV0Qa8RP HOO4NKgyBciLnjya8z71Ziy2QRwePllw0z/lPg3wXjlO55COEo94UnTm7z2xuKQ3 GetDrxIyfB74aNkuHzJdiJn7PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORLEHSg 2oEBuOdAVnRD2fQWjtMnMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyxpd4Uexp0irLn6JjFgAfkHVg60vpjjUJaRVN9Zw8DmXk0Gigx9UR B7Ly6opDeji7bjt9W7m5L6pycjPemj11/gIk5LFeTDTx5sEtDeNYVO+bAtlErjI7 Pmn2zLOop59yDsRmlxpbMH9LuuP4UET+fYbqEY4EVjTM8sV4WEfojzsA0FkppEhi T3CFcb+y2qa9oosh0NBkeOviQfjMA4m6Lmj1ihRE9kz9O9Itxr3pECbJXVkwNTlW jx3Md+pufQBrYwvkqKpbaxoweVm9f29JhBSyz9m8IrRIAJqREsc9Iw++MP7AK7ki Cg3NeE6xJZb4ipi/c7buRZQwsVqZPjcV -----END CERTIFICATE-----Generated at Tue Dec 23 14:40:14 2025 by rpki-client