This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: FzVHFgL6RromUH8Yo5vo5QBXOj8WEjnYL29NCK1S46s= Subject key identifier: 40:03:CA:CA:D4:11:CE:3B:90:FA:7A:91:1F:1C:3C:0E:3C:53:3A:D7 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CDD Signing time: Mon 22 Dec 2025 17:48:13 +0000 Manifest this update: Mon 22 Dec 2025 17:48:13 +0000 Manifest next update: Mon 29 Dec 2025 17:48:13 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: 3ggxYUmQg/Vg/MjgfctdUDRQDo2SAqyEQcW4yHHtzMI=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: DxAfEgav23qNw9acbrJvstjPzIpBZbMgGcy+koP3ZBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Dec 22 17:48:13 2025 GMT Not After : Dec 29 17:48:13 2025 GMT Subject: CN=6949845d-61af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e0:cd:44:9b:df:27:76:89:d5:0a:f1:b8:c7: 36:1e:88:44:54:c8:80:70:52:c8:14:07:18:96:a9: b7:e5:9c:07:44:24:87:75:6e:d1:ac:5a:e6:c4:e3: 7a:0a:c9:54:d1:19:f9:62:81:52:72:48:49:7d:95: 7c:3e:30:fe:86:a4:15:37:05:0b:14:c8:65:68:b0: 4f:84:4c:90:55:1c:5a:23:70:e4:89:e5:f1:83:64: 36:7d:50:39:e7:ff:c2:ba:89:ca:aa:76:ea:31:4e: 2b:e6:a2:f5:0d:c8:d0:bb:97:90:de:62:9c:fe:e4: 6f:52:69:60:2a:9f:c5:fd:49:90:5f:4b:af:ad:f0: 3a:26:c8:9f:1f:11:80:6c:98:31:46:9f:f9:6a:14: c1:b9:30:4e:38:47:29:26:f2:aa:08:16:ba:93:13: cc:fa:72:b0:da:36:50:18:61:f2:4b:60:71:40:40: ac:62:0f:b1:6d:d1:6e:5f:aa:49:59:a8:33:15:fc: 4e:fd:f9:7a:62:cf:11:09:8d:f3:93:29:20:8b:31: ec:64:25:74:1e:63:1c:c6:cc:bf:6c:66:cf:4e:4d: 8a:59:55:ea:83:c1:51:72:12:c4:6a:e4:f0:ac:b4: f1:12:b1:8b:b6:9f:b1:40:29:b5:9f:88:f9:8a:e0: c2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:03:CA:CA:D4:11:CE:3B:90:FA:7A:91:1F:1C:3C:0E:3C:53:3A:D7 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:ec:eb:08:45:ce:07:9f:16:c6:18:b3:7e:2c:46:36:5b:6e: e5:e1:18:c8:6e:b3:59:a2:90:c6:09:a9:75:a0:aa:a6:c1:78: d3:69:6c:a0:72:cf:35:e8:68:ae:6c:c1:bd:09:4d:01:f1:9e: 3a:46:42:4f:6b:eb:76:bc:dc:31:f3:af:b6:94:f0:49:33:b4: 30:b4:ad:dd:de:9e:d0:2e:7b:df:dd:fc:07:8f:c1:59:24:f2: 15:72:cb:6d:57:67:1c:ca:55:d5:bd:d9:b5:b0:8d:6d:77:49: 95:06:bb:db:a1:f4:b8:b1:db:88:25:83:42:7b:9c:79:07:d7: 98:ea:a2:7e:00:9a:dd:52:e0:1c:9b:cd:fb:c4:0b:5d:de:88: c4:ab:16:4a:97:c1:f8:af:a1:ae:a1:cd:10:ae:0b:67:09:f3: ac:c4:d6:78:c9:c9:a7:a8:82:65:20:0c:7a:f8:22:46:6d:fe: 0d:f0:a5:f4:34:64:cc:26:81:25:d5:9c:53:96:fa:cc:29:4f: 90:0a:a4:67:8c:26:49:8e:ce:e5:4d:35:cd:22:37:8b:6b:b7: 44:c3:42:81:d4:71:a7:63:6a:e4:78:1d:ba:79:88:fa:64:50: 42:ed:56:e7:9e:94:2d:a2:40:de:98:84:9d:31:5a:fe:67:98: c7:ac:06:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUxMjIyMTc0ODEzWhcNMjUxMjI5MTc0ODEzWjAYMRYwFAYD VQQDDA02OTQ5ODQ1ZC02MWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eDNRJvfJ3aJ1QrxuMc2HohEVMiAcFLIFAcYlqm35ZwHRCSHdW7RrFrmxON6 CslU0Rn5YoFSckhJfZV8PjD+hqQVNwULFMhlaLBPhEyQVRxaI3DkieXxg2Q2fVA5 5//CuonKqnbqMU4r5qL1DcjQu5eQ3mKc/uRvUmlgKp/F/UmQX0uvrfA6JsifHxGA bJgxRp/5ahTBuTBOOEcpJvKqCBa6kxPM+nKw2jZQGGHyS2BxQECsYg+xbdFuX6pJ WagzFfxO/fl6Ys8RCY3zkykgizHsZCV0HmMcxsy/bGbPTk2KWVXqg8FRchLEauTw rLTxErGLtp+xQCm1n4j5iuDCewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEADysrU Ec47kPp6kR8cPA48UzrXMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO7OsIRc4HnxbGGLN+LEY2W27l4RjIbrNZopDGCal1oKqmwXjTaWyg cs816GiubMG9CU0B8Z46RkJPa+t2vNwx86+2lPBJM7QwtK3d3p7QLnvf3fwHj8FZ JPIVcsttV2ccylXVvdm1sI1td0mVBrvbofS4sduIJYNCe5x5B9eY6qJ+AJrdUuAc m837xAtd3ojEqxZKl8H4r6Guoc0QrgtnCfOsxNZ4ycmnqIJlIAx6+CJGbf4N8KX0 NGTMJoEl1ZxTlvrMKU+QCqRnjCZJjs7lTTXNIjeLa7dEw0KB1HGnY2rkeB26eYj6 ZFBC7VbnnpQtokDemISdMVr+Z5jHrAZ9 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:34 2025 by rpki-client