This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: R+dEmLV2YgyZgE7odvjeiH8af9268LsCUejRPPJn8D0= Subject key identifier: A6:F7:5F:04:B5:7D:3D:1B:7A:AB:52:AD:48:DF:5B:15:A9:73:AC:13 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: 7E Signing time: Sun 07 Dec 2025 04:50:44 +0000 Manifest this update: Sun 07 Dec 2025 04:50:44 +0000 Manifest next update: Sun 14 Dec 2025 04:50:44 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: qQLM4WrLih5qzxdAvwJz/oI8Xfs5xBzMhcEsAkD6big=) 2: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: ZDuunhoBLIFxkgffUJp6fhz6W2Ysr7yM0HyGKDGLaSU=) 3: 4A3C802012A711F099020A73C4F9AE02.roa (hash: EvMFCkIZLxU/4T9yDv4rTrnplB41rjMOAziWwMgP5hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Dec 7 04:50:44 2025 GMT Not After : Dec 14 04:50:44 2025 GMT Subject: CN=693507a4-f176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6f:e3:a4:7f:4a:b9:e6:89:bd:e1:85:4f:03: ab:43:f5:de:05:47:f0:5e:bd:11:50:f2:57:15:45: 43:e5:e1:c7:10:99:83:be:d6:4f:e4:dd:2a:7b:f7: f7:35:c4:21:3c:69:6a:4d:d3:a2:3e:b5:8b:b9:65: 55:61:f8:2b:64:9d:a5:91:8c:84:2e:95:a2:0f:3c: c3:ab:9b:e7:db:db:36:71:56:c9:81:a0:b4:f0:4d: 8f:2d:a9:33:22:f5:59:f3:67:a1:9b:7c:b8:77:68: b3:08:62:93:07:86:06:5e:aa:ee:69:26:a6:b1:d3: 18:b3:7c:6c:40:90:5f:da:68:2d:be:b2:56:3b:6d: 76:97:a2:0d:c7:c1:7b:b3:71:cc:30:5f:d0:95:09: 84:1b:1d:cb:a8:78:f4:38:1c:03:30:d1:9f:af:3b: 6c:26:48:9f:c0:99:e8:ab:b7:28:9d:a4:9e:79:cb: 9e:1b:e7:9d:e1:d6:57:fc:05:65:09:eb:77:3f:80: 96:d8:10:e5:55:28:c7:03:f0:49:54:d4:0b:5b:a8: 61:a9:af:d5:2b:72:e1:2a:c8:60:85:10:65:cb:a6: 74:be:f5:ad:68:38:53:0f:9f:b0:14:70:bb:61:c7: dc:27:d2:5e:9e:00:e0:98:a5:36:1d:f1:1e:e0:89: 97:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F7:5F:04:B5:7D:3D:1B:7A:AB:52:AD:48:DF:5B:15:A9:73:AC:13 X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:d7:b1:fb:d2:c0:0f:c6:b2:68:a5:51:38:7b:ef:60:1e:71: 44:a1:d5:82:8b:d2:9a:81:82:08:a7:85:ee:58:b0:f4:9a:ac: c2:16:7b:3a:d1:9e:d2:6b:76:8e:bf:2f:e3:1a:3c:bd:3b:d4: 62:61:4a:e4:20:cf:1a:60:4b:a5:ad:07:ed:44:f7:a2:e5:57: 36:a6:29:7f:e9:28:90:83:d0:59:63:15:b2:3c:6e:ec:ff:3e: 98:ff:77:e6:95:33:3b:00:5d:b3:5f:cc:1e:fb:ed:cf:13:ad: 59:83:e2:1a:4d:d4:10:86:32:ee:d1:8b:e9:28:59:be:78:02: b5:ab:be:09:db:35:ae:06:95:79:63:ec:1b:cc:da:f9:f7:0b: 54:a8:c0:1f:d6:1d:2b:55:1a:fd:ae:7f:16:a4:99:52:6d:de: d1:f8:cb:89:9b:9f:f4:f5:8b:57:16:00:b5:2b:29:b1:78:f4: 35:ed:80:b8:99:79:d9:4f:fd:67:a8:0f:9f:ea:b6:cd:39:d5: bf:cf:f0:11:7e:49:c4:4a:37:9a:08:97:ae:30:e2:4e:00:a7: 38:39:9d:00:8b:e6:1f:d3:09:7c:87:f4:8e:c9:31:97:3a:14: 54:a2:9c:06:41:1f:e1:97:a9:3a:28:39:30:ee:38:e5:0f:6c: ae:8f:80:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjUxMjA3MDQ1MDQ0WhcNMjUxMjE0MDQ1MDQ0WjAYMRYwFAYD VQQDEw02OTM1MDdhNC1mMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02/jpH9KueaJveGFTwOrQ/XeBUfwXr0RUPJXFUVD5eHHEJmDvtZP5N0qe/f3 NcQhPGlqTdOiPrWLuWVVYfgrZJ2lkYyELpWiDzzDq5vn29s2cVbJgaC08E2PLakz IvVZ82ehm3y4d2izCGKTB4YGXqruaSamsdMYs3xsQJBf2mgtvrJWO212l6INx8F7 s3HMMF/QlQmEGx3LqHj0OBwDMNGfrztsJkifwJnoq7conaSeecueG+ed4dZX/AVl Cet3P4CW2BDlVSjHA/BJVNQLW6hhqa/VK3LhKshghRBly6Z0vvWtaDhTD5+wFHC7 YcfcJ9JengDgmKU2HfEe4ImXnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKb3XwS1 fT0beqtSrUjfWxWpc6wTMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hi b3VkOHQzV2pyWm5HaGNRR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC517H70sAPxrJopVE4e+9gHnFEodWCi9KagYIIp4XuWLD0mqzCFns6 0Z7Sa3aOvy/jGjy9O9RiYUrkIM8aYEulrQftRPei5Vc2pil/6SiQg9BZYxWyPG7s /z6Y/3fmlTM7AF2zX8we++3PE61Zg+IaTdQQhjLu0YvpKFm+eAK1q74J2zWuBpV5 Y+wbzNr59wtUqMAf1h0rVRr9rn8WpJlSbd7R+MuJm5/09YtXFgC1KymxePQ17YC4 mXnZT/1nqA+f6rbNOdW/z/ARfknESjeaCJeuMOJOAKc4OZ0Ai+Yf0wl8h/SOyTGX OhRUopwGQR/hl6k6KDkw7jjlD2yuj4Dh -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:52 2025 by rpki-client