This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: BOBr+VqZuO8SmxvN36y2FjA+ljLNIWdjV1zmoH7aACg= Subject key identifier: 62:18:DE:D1:36:1A:E8:18:0A:D7:F6:E0:9B:81:66:24:AF:22:04:D0 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 091B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 08F9 Signing time: Mon 22 Dec 2025 19:44:22 +0000 Manifest this update: Mon 22 Dec 2025 19:44:21 +0000 Manifest next update: Mon 29 Dec 2025 19:44:21 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: iYtiM/lugDx9fFN4qaYLwk/utozZI1rqpAOvifuREg0=) 2: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: XAx1J/DLce82S0DJ6QETMIUPs/8svCL35NE1zYijtJ8=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: cndw19Zty56t27dvRNtU0GtVAt1H5pGdcRIcu3Z2IPk=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: K91u4jcxoGdVwNsfyPrjf+VTjR+CX+rH0W4KKBUnjNU=) 5: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: 437Z5enRuaQO92H2FAcbSA65gK3IxD6GTsjTk9iVKzU=) 6: F814A546C01411EA912AC365C4F9AE02.roa (hash: VCA7ATdoKb3bc3VrnHWvqH8lcWu2vv1KBpe9G26/lek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2331 (0x91b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Dec 22 19:44:21 2025 GMT Not After : Dec 29 19:44:21 2025 GMT Subject: CN=69499f96-0726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:de:19:20:62:06:8f:a6:1e:11:e0:5f:06:17: 44:cd:12:36:12:47:6a:31:08:3f:bf:99:7d:1a:b9: b4:a0:18:02:d0:69:77:57:54:9d:86:6c:39:21:50: 47:ce:46:0b:99:b1:e3:f8:ac:47:db:06:dd:b5:4d: 07:b8:ee:13:24:80:93:46:64:00:34:e7:3a:07:f6: 7e:80:a0:e6:bb:51:35:e4:0e:84:50:db:7b:be:c9: a9:e1:a2:a7:84:6a:98:b8:a5:67:39:41:31:04:5e: 92:43:69:29:4e:41:6b:e8:28:48:9c:58:72:ff:9f: 75:3f:fe:d9:b4:4d:9e:36:2d:a5:b2:bb:f7:1e:4d: 41:f5:42:2f:e9:98:3a:fc:24:ed:61:79:dc:17:3c: 67:7d:5f:62:10:86:b8:db:59:39:8b:6d:77:b1:0e: 23:f5:f5:a6:93:da:49:76:f1:49:1c:68:db:94:fc: 32:9b:6b:ae:4a:93:d6:8f:de:c2:e4:64:e5:fe:16: 74:d9:24:cb:60:12:0e:e2:ed:f0:80:08:f9:e1:af: bc:36:6e:ea:a6:8d:b2:51:26:c3:82:e2:d8:6c:97: be:32:9f:ef:ab:50:9e:ca:ab:24:cd:70:0d:9e:58: c5:6b:33:91:16:f6:98:84:60:90:ca:26:bf:02:51: a0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:18:DE:D1:36:1A:E8:18:0A:D7:F6:E0:9B:81:66:24:AF:22:04:D0 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:1a:5b:95:2e:cd:91:58:96:9b:e8:a5:ad:d8:82:09:3b:6d: d9:1d:e4:86:bd:2a:89:fe:fb:e5:21:2a:12:b1:3e:77:ea:34: 5c:0c:24:ef:0a:9a:ac:be:59:be:98:00:6e:72:89:b6:9f:65: 59:21:af:9a:96:84:b3:ec:65:ee:a6:2a:2c:55:2f:86:3a:80: e9:df:8b:9c:a2:8f:e8:7c:40:2a:1d:f0:5b:94:71:5f:b5:35: 9c:3c:89:22:cb:5b:59:3b:ef:60:08:54:1c:c4:ae:8b:28:5c: e0:36:d7:b5:a6:8d:c7:a2:ce:40:be:f0:37:06:89:2d:0b:02: 01:02:dc:4b:34:0c:71:ba:ef:e1:6d:2a:b5:4d:49:80:c3:71: fa:b8:5d:9b:91:2f:ae:e4:6c:19:8b:ed:bf:9d:ac:ca:45:d2: f2:aa:78:54:d3:f5:fd:0a:48:8a:48:1f:4b:79:73:4f:ae:98: 09:8f:02:09:a6:cb:7f:58:a3:08:fb:e6:78:2e:25:f3:9c:1b: a5:09:12:0f:34:3a:75:d2:35:54:15:d9:b1:09:5b:8c:a2:a8: 06:d8:7a:13:fd:04:0c:2d:9e:ee:82:0c:6d:fb:80:02:cf:f0: 00:d7:91:a3:b8:b1:15:a9:b5:b5:19:44:32:f0:79:fd:89:1a: 38:42:be:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUxMjIyMTk0NDIxWhcNMjUxMjI5MTk0NDIxWjAYMRYwFAYD VQQDDA02OTQ5OWY5Ni0wNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN4ZIGIGj6YeEeBfBhdEzRI2EkdqMQg/v5l9Grm0oBgC0Gl3V1Sdhmw5IVBH zkYLmbHj+KxH2wbdtU0HuO4TJICTRmQANOc6B/Z+gKDmu1E15A6EUNt7vsmp4aKn hGqYuKVnOUExBF6SQ2kpTkFr6ChInFhy/591P/7ZtE2eNi2lsrv3Hk1B9UIv6Zg6 /CTtYXncFzxnfV9iEIa421k5i213sQ4j9fWmk9pJdvFJHGjblPwym2uuSpPWj97C 5GTl/hZ02STLYBIO4u3wgAj54a+8Nm7qpo2yUSbDguLYbJe+Mp/vq1CeyqskzXAN nljFazORFvaYhGCQyia/AlGgKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIY3tE2 GugYCtf24JuBZiSvIgTQMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1GluVLs2RWJab6KWt2IIJO23ZHeSGvSqJ/vvlISoSsT536jRcDCTv Cpqsvlm+mABucom2n2VZIa+aloSz7GXupiosVS+GOoDp34ucoo/ofEAqHfBblHFf tTWcPIkiy1tZO+9gCFQcxK6LKFzgNte1po3Hos5AvvA3BoktCwIBAtxLNAxxuu/h bSq1TUmAw3H6uF2bkS+u5GwZi+2/nazKRdLyqnhU0/X9CkiKSB9LeXNPrpgJjwIJ pst/WKMI++Z4LiXznBulCRIPNDp10jVUFdmxCVuMoqgG2HoT/QQMLZ7uggxt+4AC z/AA15GjuLEVqbW1GUQy8Hn9iRo4Qr6x -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:34 2025 by rpki-client