This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: KKci/JQL0xCTx5pB4qJ0xIrrtPePjexQp0Cjn+unHC0= Subject key identifier: AA:FC:6F:0D:D6:C2:05:1B:71:73:A7:8B:69:5E:97:14:B5:BB:8E:63 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 06A2 Signing time: Mon 22 Dec 2025 21:34:59 +0000 Manifest this update: Mon 22 Dec 2025 21:34:58 +0000 Manifest next update: Mon 29 Dec 2025 21:34:58 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: IYkUxsO9HUl0xmg4kBAzEsUSR2kBqD2cmJgTQZKh7fY=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Dec 22 21:34:58 2025 GMT Not After : Dec 29 21:34:58 2025 GMT Subject: CN=6949b983-a150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9a:eb:f5:44:e0:db:d4:a5:13:8f:2b:9b:fb: 1e:09:e6:e2:10:20:99:24:68:99:36:ea:f0:a5:49: 6a:c7:7c:61:fd:fb:a2:74:cd:2a:c1:f5:22:aa:d8: b7:61:bf:9e:6a:57:98:8f:5d:e9:6e:d4:cc:d9:33: 91:4f:4d:fe:a3:51:85:74:4b:76:10:2a:5b:f8:64: 01:f7:15:22:e4:fd:f8:44:71:b4:a4:be:4a:5b:a1: ea:a6:4c:3f:6a:8a:74:cf:f0:99:41:41:e8:af:fe: ae:1f:11:58:d6:ba:79:a4:9c:bc:b5:80:6f:22:5c: 91:04:4c:ba:29:ad:c7:7d:a7:77:fe:c2:57:2a:40: 43:46:0f:a8:1c:29:5a:be:33:a1:b1:7f:dd:53:43: f1:2e:82:b6:cc:e8:8a:30:6d:ae:a0:06:ac:0d:a4: 1e:3e:e1:7d:f2:ce:3a:a8:8f:05:51:c7:18:fe:df: 22:1a:f2:e0:b3:7a:56:eb:78:66:e0:c9:ea:16:ea: ae:73:dc:99:9e:e7:64:8f:5c:39:03:13:2e:75:df: 15:d7:6c:74:22:eb:30:28:51:0c:f7:59:48:ad:7f: ec:2f:ad:a8:9a:d8:a8:29:a5:70:20:90:9d:9b:fc: 2e:04:5f:79:6d:14:c5:da:52:2c:a9:d8:cc:86:9d: e6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FC:6F:0D:D6:C2:05:1B:71:73:A7:8B:69:5E:97:14:B5:BB:8E:63 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f6:e3:ea:05:11:4b:7f:52:09:fd:1e:52:03:81:0c:94:e5: 34:b0:f8:9d:c4:a1:80:a8:b7:e2:db:0d:b3:95:ef:98:76:c0: 95:19:cb:17:d7:dc:fc:94:4c:d5:de:e6:c8:7a:91:da:5c:9f: 2f:f5:71:f3:e9:07:50:fc:af:6f:ad:31:f7:0b:69:e6:c4:54: ca:24:f3:91:f2:b4:76:d2:25:9c:14:e8:9f:07:04:e2:42:06: c8:19:d7:83:1c:8c:da:59:8a:97:b8:1d:96:7a:2b:49:c2:26: 5f:93:6e:f4:13:53:33:2c:41:56:31:60:30:c9:3b:04:aa:1f: 27:c7:ce:37:05:d7:df:fe:c2:85:28:97:79:26:be:16:5c:10: 9d:33:57:8c:ad:6e:a4:f7:21:17:e2:30:2f:1b:89:cb:16:fa: 69:14:d3:9e:02:58:3e:86:af:04:0b:f6:5c:32:93:88:ba:95: 35:02:03:41:af:28:72:ed:77:ce:ac:c7:0c:fb:97:47:ee:ab: bf:13:04:16:ca:cf:16:84:f8:71:5b:81:ad:37:86:4d:7f:a5: 57:af:79:9a:2b:53:d5:e0:b6:53:46:69:51:ea:21:7c:eb:fe: ad:b8:d5:69:08:fd:00:4c:6f:16:57:f5:bb:2a:39:23:ec:2b: 0d:7e:46:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUxMjIyMjEzNDU4WhcNMjUxMjI5MjEzNDU4WjAYMRYwFAYD VQQDDA02OTQ5Yjk4My1hMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtprr9UTg29SlE48rm/seCebiECCZJGiZNurwpUlqx3xh/fuidM0qwfUiqti3 Yb+ealeYj13pbtTM2TORT03+o1GFdEt2ECpb+GQB9xUi5P34RHG0pL5KW6Hqpkw/ aop0z/CZQUHor/6uHxFY1rp5pJy8tYBvIlyRBEy6Ka3Hfad3/sJXKkBDRg+oHCla vjOhsX/dU0PxLoK2zOiKMG2uoAasDaQePuF98s46qI8FUccY/t8iGvLgs3pW63hm 4MnqFuquc9yZnudkj1w5AxMudd8V12x0IuswKFEM91lIrX/sL62omtioKaVwIJCd m/wuBF95bRTF2lIsqdjMhp3mUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKr8bw3W wgUbcXOni2lelxS1u45jMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC69uPqBRFLf1IJ/R5SA4EMlOU0sPidxKGAqLfi2w2zle+YdsCVGcsX 19z8lEzV3ubIepHaXJ8v9XHz6QdQ/K9vrTH3C2nmxFTKJPOR8rR20iWcFOifBwTi QgbIGdeDHIzaWYqXuB2WeitJwiZfk270E1MzLEFWMWAwyTsEqh8nx843Bdff/sKF KJd5Jr4WXBCdM1eMrW6k9yEX4jAvG4nLFvppFNOeAlg+hq8EC/ZcMpOIupU1AgNB ryhy7XfOrMcM+5dH7qu/EwQWys8WhPhxW4GtN4ZNf6VXr3maK1PV4LZTRmlR6iF8 6/6tuNVpCP0ATG8WV/W7Kjkj7CsNfkYY -----END CERTIFICATE-----Generated at Wed Dec 24 21:23:54 2025 by rpki-client