This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: haAn0EmM7EQwpf8VUypWU7m36cjMHeexe8x1rhlEiJE= Subject key identifier: FA:E9:B4:7F:D4:C7:A7:44:EB:45:2C:F6:3C:66:B5:32:7D:F7:76:D9 Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 0A7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0A66 Signing time: Thu 18 Dec 2025 19:16:24 +0000 Manifest this update: Thu 18 Dec 2025 19:16:24 +0000 Manifest next update: Thu 25 Dec 2025 19:16:24 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: hNRpBCT/qA9D2TiIhkp5EBgojj//wZrOPMiGdxDw/S0=) 2: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: 9GaBS9IbS88to+9kkQ6jxibXk5BWsO+3f5H1a6SCfEE=) 3: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: MzXzYE5MrqHvRoe17AJmK7I+zMsNRRFLd5oWGTmAVM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2684 (0xa7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: Dec 18 19:16:24 2025 GMT Not After : Dec 25 19:16:24 2025 GMT Subject: CN=69445308-8236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:af:a3:16:af:09:be:3e:0c:99:ae:78:9f:fc: 19:14:f6:c0:d7:71:7d:f9:98:0f:43:0c:69:96:c4: 27:64:99:d0:64:bb:1f:99:78:df:a0:75:60:8e:4d: b7:77:03:f2:9b:10:c1:96:f3:bf:e4:d7:6f:ee:94: fd:4c:9a:20:a2:0c:1a:95:b7:7c:a0:d2:4b:db:f7: bc:b7:98:93:50:1a:18:e6:ad:87:3e:92:5d:fd:6a: b7:c5:87:e0:e6:f9:99:f1:97:7b:f6:aa:f0:a5:48: 67:3c:db:17:b4:78:1b:2e:8c:81:60:51:b0:b0:b6: d8:55:be:6f:64:8b:d4:c3:99:eb:4f:c3:1f:ab:6b: 5f:1e:42:7b:99:37:d7:51:c1:cb:41:2f:1b:a8:20: f8:54:9f:bd:0b:9b:b6:14:d4:85:16:0e:ab:df:7b: 5f:96:af:90:e3:8f:a5:ab:45:7e:69:9b:bd:2e:1b: 92:34:63:bf:e3:e9:a7:bd:c4:4a:cc:8b:66:ee:5f: 5e:a6:0e:f9:f9:1a:eb:57:62:3a:c6:29:57:4f:19: 3a:5a:78:56:2a:00:35:a4:31:87:ba:f9:f7:95:89: b9:cc:41:e0:82:53:77:39:7a:0d:47:5d:2f:0b:cf: d3:38:65:b4:22:67:80:c0:99:a3:4e:6b:1f:fb:d7: 37:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E9:B4:7F:D4:C7:A7:44:EB:45:2C:F6:3C:66:B5:32:7D:F7:76:D9 X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:cc:8c:7b:f5:5d:2f:9f:d1:93:b0:76:ee:b0:cb:41:cf:5d: 16:35:24:35:40:26:47:c8:c7:7d:85:bf:b9:d1:63:eb:82:23: 1c:59:95:bf:07:6a:fc:b0:a5:b9:1e:4e:e7:17:95:68:68:12: 19:b2:87:fe:b0:b3:3c:59:24:e1:86:92:67:88:35:68:ae:22: 05:50:38:fb:e2:f2:5f:05:a1:dd:5a:a7:1e:d2:2b:c4:51:a3: 89:f1:c5:a4:6c:ec:30:dc:eb:99:2b:84:91:6c:25:3f:0f:72: 9e:56:aa:2c:9b:10:94:fa:73:de:f3:e4:a6:9b:51:de:b8:16: 40:08:37:7f:cf:76:f2:d4:be:4c:3a:03:50:13:41:52:89:7e: 5f:b5:07:60:57:c9:7f:41:a2:e0:d5:4a:cc:d5:8a:31:cf:5f: f9:5e:eb:b7:b1:2c:2c:7b:68:3a:ba:5d:1b:b0:0c:b4:6f:4b: 22:51:18:43:6d:09:b6:1b:a9:c3:f1:59:a3:e9:f1:96:74:85: 60:02:0e:01:6c:5d:a6:8e:aa:5a:f5:73:57:14:9a:57:98:ca: b6:55:3d:fe:9b:f4:6f:ec:f5:a5:bf:db:ae:3f:0f:4a:a7:b7: e5:59:3c:78:0a:b7:ce:aa:a7:bb:8b:0d:0e:b5:01:e6:57:bb: bd:3f:20:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjUxMjE4MTkxNjI0WhcNMjUxMjI1MTkxNjI0WjAYMRYwFAYD VQQDDA02OTQ0NTMwOC04MjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K+jFq8Jvj4Mma54n/wZFPbA13F9+ZgPQwxplsQnZJnQZLsfmXjfoHVgjk23 dwPymxDBlvO/5Ndv7pT9TJogogwalbd8oNJL2/e8t5iTUBoY5q2HPpJd/Wq3xYfg 5vmZ8Zd79qrwpUhnPNsXtHgbLoyBYFGwsLbYVb5vZIvUw5nrT8Mfq2tfHkJ7mTfX UcHLQS8bqCD4VJ+9C5u2FNSFFg6r33tflq+Q44+lq0V+aZu9LhuSNGO/4+mnvcRK zItm7l9epg75+RrrV2I6xilXTxk6WnhWKgA1pDGHuvn3lYm5zEHgglN3OXoNR10v C8/TOGW0ImeAwJmjTmsf+9c3wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrptH/U x6dE60Us9jxmtTJ993bZMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAzIx79V0vn9GTsHbusMtBz10WNSQ1QCZHyMd9hb+50WPrgiMcWZW/ B2r8sKW5Hk7nF5VoaBIZsof+sLM8WSThhpJniDVoriIFUDj74vJfBaHdWqce0ivE UaOJ8cWkbOww3OuZK4SRbCU/D3KeVqosmxCU+nPe8+Smm1HeuBZACDd/z3by1L5M OgNQE0FSiX5ftQdgV8l/QaLg1UrM1Yoxz1/5Xuu3sSwse2g6ul0bsAy0b0siURhD bQm2G6nD8Vmj6fGWdIVgAg4BbF2mjqpa9XNXFJpXmMq2VT3+m/Rv7PWlv9uuPw9K p7flWTx4CrfOqqe7iw0OtQHmV7u9PyAR -----END CERTIFICATE-----Generated at Fri Dec 19 07:20:34 2025 by rpki-client