This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: 2sfcBr0vFyWVlHGYz3cxMcZ18YP0cjMPEGFkFUvdqdc= Subject key identifier: BC:5F:CD:52:9E:F2:29:BC:67:5F:F6:FF:B9:E4:BD:63:A8:81:F8:F5 Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 49 Signing time: Wed 03 Dec 2025 05:35:17 +0000 Manifest this update: Wed 03 Dec 2025 05:35:16 +0000 Manifest next update: Wed 10 Dec 2025 05:35:16 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: CauyUL17atzHhthmTtiQ6EWV1clE1CH+oy+8KfEQro4=) 2: CD603AAA6B2B11F0B21D7F0EC4F9AE02.roa (hash: I4V72owrg5qiCod5LgKXA3su1gxxiAdnYcB+BZWhJ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Dec 3 05:35:16 2025 GMT Not After : Dec 10 05:35:16 2025 GMT Subject: CN=692fcc14-64f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:c3:f5:f1:9d:36:cf:eb:55:d5:90:fb:f4: 5e:c1:11:5e:30:01:14:6f:d0:e1:9d:c2:89:e6:07: 2c:ef:f6:08:41:a8:c4:c5:d6:9f:ee:0a:28:0c:ed: df:26:ac:6b:27:10:81:97:89:f0:40:51:fb:e4:23: c8:ff:70:7b:97:5c:04:26:66:5f:17:ba:c0:10:1b: 4a:6e:72:ec:7e:4a:09:7c:eb:a0:26:83:2e:8d:53: 02:61:0b:81:33:ee:9c:1d:5f:81:4f:7f:3d:88:ec: db:02:68:60:bb:0b:d3:86:3b:c8:8e:f9:f7:62:7e: e5:cb:d7:62:47:2e:72:57:55:8f:b1:d6:4d:42:8f: d5:97:45:98:7c:ed:ed:42:41:df:e9:d3:02:92:9d: ac:e2:38:28:7f:e7:d4:a2:cb:f5:fa:ff:2d:24:d2: 08:77:bb:7b:f2:62:04:c4:f7:7d:fa:ee:fc:5c:a9: 72:12:f2:2b:a4:aa:da:4c:9b:be:5c:9a:ac:03:b5: ab:32:ef:9e:e2:30:5d:4d:8b:e5:ca:65:36:04:97: ba:73:de:81:f3:35:f0:b6:29:ce:6e:5f:b2:48:6d: fc:87:83:50:08:0a:12:3c:7c:bd:c3:1d:54:11:5a: e3:86:f4:51:b5:26:2b:4a:e6:e6:79:f0:c9:f2:5f: c1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5F:CD:52:9E:F2:29:BC:67:5F:F6:FF:B9:E4:BD:63:A8:81:F8:F5 X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:33:dd:ac:19:86:a5:5f:71:fd:7f:e6:8b:72:67:a5:83:1e: 3b:04:0c:75:b9:32:37:e0:33:eb:d6:4f:af:f2:7c:f9:bd:1d: d5:fa:6f:78:9a:f4:59:d8:af:22:72:2a:5b:d4:08:4c:4c:f8: 24:77:cf:41:aa:ec:b0:ab:01:78:4c:62:0b:eb:1c:6b:3f:9d: 48:75:ed:e5:2e:ac:51:c1:ba:18:b8:2f:f1:91:af:5f:50:82: a3:21:a9:f8:45:30:76:a8:61:74:16:d0:c7:20:f1:fd:4f:07: f8:c0:23:e7:f0:fc:ce:18:a0:82:36:90:09:eb:a9:56:fc:9d: 83:ff:d6:c0:63:e2:d9:75:46:6c:3c:35:82:b1:f0:0e:5f:0c: a5:18:94:a2:58:c5:2d:7d:8d:5f:80:76:57:4e:a8:9e:60:13: 1f:a6:92:c9:f3:d5:db:25:f7:ce:19:98:86:40:d0:9a:60:70: 62:1e:41:fa:05:2b:88:39:29:9c:7d:23:21:4b:71:d6:ba:4c: 67:45:58:bd:ca:5d:f9:84:c2:95:65:5a:c6:8c:3f:19:38:46: 3f:72:06:57:d5:db:37:27:dd:07:8f:c3:ed:a0:a5:3f:94:f4: 83:61:b3:93:92:1f:54:ae:4e:07:74:6e:68:3b:d7:3a:50:e1: 32:df:b5:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjVDMzExMC8GA1UEBRMoOUVCREExMjNEOUVFODMwOTQzMDVBMTE4MEMyQTA4MDU3 RkU1NDA2QTAeFw0yNTEyMDMwNTM1MTZaFw0yNTEyMTAwNTM1MTZaMBgxFjAUBgNV BAMTDTY5MmZjYzE0LTY0ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyCcP18Z02z+tV1ZD79F7BEV4wARRv0OGdwonmByzv9ghBqMTF1p/uCigM7d8m rGsnEIGXifBAUfvkI8j/cHuXXAQmZl8XusAQG0pucux+Sgl866Amgy6NUwJhC4Ez 7pwdX4FPfz2I7NsCaGC7C9OGO8iO+fdifuXL12JHLnJXVY+x1k1Cj9WXRZh87e1C Qd/p0wKSnaziOCh/59Siy/X6/y0k0gh3u3vyYgTE93367vxcqXIS8iukqtpMm75c mqwDtasy757iMF1Ni+XKZTYEl7pz3oHzNfC2Kc5uX7JIbfyHg1AIChI8fL3DHVQR WuOG9FG1JitK5uZ58MnyX8FbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvF/NUp7y KbxnX/b/ueS9Y6iB+PUwHwYDVR0jBBgwFoAUnr2hI9nugwlDBaEYDCoIBX/lQGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNUMzLzIzMjZDNjNFNjYw NDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbnIyaEk5bnVnd2xEQmFFWURDb0lCWF9sUUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy NUMzLzIzMjZDNjNFNjYwNDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3ds REJhRVlEQ29JQlhfbFFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEoz3awZhqVfcf1/5otyZ6WDHjsEDHW5MjfgM+vWT6/yfPm9HdX6b3ia 9FnYryJyKlvUCExM+CR3z0Gq7LCrAXhMYgvrHGs/nUh17eUurFHBuhi4L/GRr19Q gqMhqfhFMHaoYXQW0Mcg8f1PB/jAI+fw/M4YoII2kAnrqVb8nYP/1sBj4tl1Rmw8 NYKx8A5fDKUYlKJYxS19jV+AdldOqJ5gEx+mksnz1dsl984ZmIZA0JpgcGIeQfoF K4g5KZx9IyFLcda6TGdFWL3KXfmEwpVlWsaMPxk4Rj9yBlfV2zcn3QePw+2gpT+U 9INhs5OSH1SuTgd0bmg71zpQ4TLftUE= -----END CERTIFICATE-----Generated at Wed Dec 3 14:48:48 2025 by rpki-client