This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: AEgeP65CpBoW5zk1QZ6qKdLBcdRTgmnHe/vN48ICZx8= Subject key identifier: 0D:4E:26:F4:1B:83:A7:89:29:EE:56:69:26:E1:96:FD:49:BE:F5:C6 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 06F7 Signing time: Mon 22 Dec 2025 21:12:18 +0000 Manifest this update: Mon 22 Dec 2025 21:12:18 +0000 Manifest next update: Mon 29 Dec 2025 21:12:18 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: kt72PigpSCkGMUvJMOkTda+VtIc6v+VWspiei5v8N6g=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: YZjAMIKzrQGmvLaN81HGMkVswmWuULphivjXeZ2sT84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Dec 22 21:12:18 2025 GMT Not After : Dec 29 21:12:18 2025 GMT Subject: CN=6949b432-7772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ce:e4:6f:7c:19:9b:50:f2:d7:ea:de:b0:92: 33:2a:9c:71:e2:05:b4:00:fd:8b:32:77:a7:64:54: ae:b8:df:f3:68:b1:c7:5d:5e:3d:23:09:99:1e:7f: 0c:86:54:11:42:64:04:9a:d9:d6:06:71:3e:d6:df: e0:39:53:c9:43:7f:e1:c6:a7:11:a6:e0:ad:aa:7c: c4:b6:20:ab:51:00:ab:92:93:79:3b:9f:64:6b:81: 4c:54:ba:dc:79:e2:4d:da:58:57:ff:c3:91:30:d5: 0f:9a:d3:d4:af:a2:31:8c:00:cf:a4:28:f8:a9:25: c5:50:7c:54:de:c5:4a:53:1a:30:26:c3:3c:9f:e1: f6:d7:73:ec:82:f4:1f:c0:42:fb:6b:a2:2f:85:36: 1b:e4:a4:ad:02:2b:4e:c6:04:6b:ae:f1:a5:60:91: f6:f9:61:e6:88:27:cb:60:a5:c6:90:0f:94:54:05: d5:d1:0c:0d:d2:db:35:77:e7:35:d3:6e:52:db:66: e8:ce:50:f4:0b:96:16:8c:aa:62:77:4d:14:23:40: 3a:3f:13:d6:25:82:07:13:73:9c:b3:33:4d:f6:bd: 3a:a4:f0:bf:ae:28:6e:64:1c:2f:46:c1:51:7d:5d: b6:c6:70:2f:9f:04:65:e3:c8:c4:1f:81:00:5d:2e: bc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4E:26:F4:1B:83:A7:89:29:EE:56:69:26:E1:96:FD:49:BE:F5:C6 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:0f:06:bf:71:a2:00:85:35:a9:2f:46:c1:11:7f:48:d8:b9: e6:10:ee:be:e0:d6:51:35:23:07:cb:60:d8:cc:50:7a:c6:6f: d1:6b:4c:59:b2:42:d6:52:ac:ed:13:d0:d0:b4:16:6d:b2:ac: b9:23:aa:40:d3:dd:3e:46:97:03:c2:c4:95:d6:72:8f:7e:6e: 35:8f:31:5e:6a:5d:87:4f:83:59:a2:a4:7c:28:54:3b:4e:63: b3:35:e5:35:2e:b6:8e:01:b9:89:d0:f6:e1:12:54:a7:9f:c2: 20:8f:35:62:7a:7f:0d:e6:7b:a1:d3:5e:66:c3:58:11:92:60: 66:ad:df:4e:09:0b:05:04:fd:3f:23:a1:ec:b6:3c:70:dd:04: 57:f4:e5:3e:e7:61:c1:88:61:ab:92:22:a6:5b:b6:01:f6:ac: 8b:b9:7d:d4:fc:67:ae:e8:e6:08:14:ec:e8:f3:62:8c:dc:24: c4:1f:90:75:c6:3d:76:54:cf:59:56:aa:b4:9a:51:d2:a5:84: 28:0a:23:c8:d6:1b:36:67:90:ee:8f:55:dc:dd:bc:dc:28:75: e9:28:1a:be:13:14:0c:49:25:2f:91:1d:44:2f:4e:f8:95:16: 77:2e:82:c2:51:ca:fb:cc:f8:f6:66:09:ee:4c:92:71:3f:e9: 83:f0:60:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUxMjIyMjExMjE4WhcNMjUxMjI5MjExMjE4WjAYMRYwFAYD VQQDDA02OTQ5YjQzMi03NzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7c7kb3wZm1Dy1+resJIzKpxx4gW0AP2LMnenZFSuuN/zaLHHXV49IwmZHn8M hlQRQmQEmtnWBnE+1t/gOVPJQ3/hxqcRpuCtqnzEtiCrUQCrkpN5O59ka4FMVLrc eeJN2lhX/8ORMNUPmtPUr6IxjADPpCj4qSXFUHxU3sVKUxowJsM8n+H213PsgvQf wEL7a6IvhTYb5KStAitOxgRrrvGlYJH2+WHmiCfLYKXGkA+UVAXV0QwN0ts1d+c1 025S22bozlD0C5YWjKpid00UI0A6PxPWJYIHE3OcszNN9r06pPC/rihuZBwvRsFR fV22xnAvnwRl48jEH4EAXS68uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1OJvQb g6eJKe5WaSbhlv1JvvXGMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmDwa/caIAhTWpL0bBEX9I2LnmEO6+4NZRNSMHy2DYzFB6xm/Ra0xZ skLWUqztE9DQtBZtsqy5I6pA090+RpcDwsSV1nKPfm41jzFeal2HT4NZoqR8KFQ7 TmOzNeU1LraOAbmJ0PbhElSnn8IgjzVien8N5nuh015mw1gRkmBmrd9OCQsFBP0/ I6Hstjxw3QRX9OU+52HBiGGrkiKmW7YB9qyLuX3U/Geu6OYIFOzo82KM3CTEH5B1 xj12VM9ZVqq0mlHSpYQoCiPI1hs2Z5Duj1Xc3bzcKHXpKBq+ExQMSSUvkR1EL074 lRZ3LoLCUcr7zPj2ZgnuTJJxP+mD8GCh -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:13 2025 by rpki-client