This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft File: NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft (raw, json) Hash identifier: l79P2NGZr3g502P45qpJmCRHMyHKSM+qrZHwrp/Rb3I= Subject key identifier: D0:E4:33:EB:93:99:AC:F1:8C:0E:AE:F1:DC:7C:A5:62:55:54:7A:6E Authority key identifier: 35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 Certificate issuer: /CN=A9166AFF/serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft Manifest number: 0152 Signing time: Wed 17 Dec 2025 03:48:49 +0000 Manifest this update: Wed 17 Dec 2025 03:48:49 +0000 Manifest next update: Wed 24 Dec 2025 03:48:49 +0000 Files and hashes: 1: NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl (hash: 5r1x12CpxgSWbvpojHswY/Myd1Y8CJQTUYGii45lIDk=) 2: 8109B4CA9DF211F0B1ED220FC4F9AE02.roa (hash: /KMShVz7xPQb/IFHjv8WLpc7f7w5sCo+1tbPQq7vaKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 03:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166AFF, serialNumber=357A179CDD0AF9A3FB03E177D6A43FB8A57754E0 Validity Not Before: Dec 17 03:48:49 2025 GMT Not After : Dec 24 03:48:49 2025 GMT Subject: CN=69422821-76ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:87:3e:a3:36:19:b4:dc:b8:a8:53:bf:be: 2f:c7:61:7d:26:4b:79:3f:9b:c4:c9:08:c9:f8:9e: 60:e3:2f:25:01:65:38:9b:11:ab:ac:db:c5:6e:0a: ab:41:a2:44:fd:ba:6e:96:74:70:e5:19:8a:63:44: 3d:e3:8e:af:54:a1:78:e7:5a:55:82:2f:12:77:97: d0:95:5b:91:f0:ec:a3:70:d0:17:85:52:cb:51:b0: bc:c2:40:3c:e4:c4:53:fd:52:1f:9a:38:09:6c:a9: 56:87:91:61:11:a6:43:68:c7:95:af:62:61:a7:d1: a8:0a:86:f8:8a:c0:e7:46:89:e1:91:f9:2b:d9:31: 87:c8:e8:47:a7:43:af:01:6b:70:fc:50:a4:5e:16: ad:33:ab:d4:c9:2e:6e:23:a3:73:25:80:ea:c1:c7: f9:5a:c2:27:ca:8b:15:49:90:42:ae:c9:ca:73:02: cd:03:a7:69:a6:96:2f:c9:c2:0c:f2:7d:87:4c:6f: 06:29:1c:5f:98:43:8d:29:b9:1d:98:a9:88:e4:97: f1:ce:88:09:7e:a6:cb:57:af:77:99:d5:d0:49:ac: e6:3f:e8:f4:74:5d:37:ee:17:b4:3c:84:1b:cd:d8: 8f:c6:11:bb:45:8e:d9:9f:d2:7f:e9:d2:ec:ef:40: d0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E4:33:EB:93:99:AC:F1:8C:0E:AE:F1:DC:7C:A5:62:55:54:7A:6E X509v3 Authority Key Identifier: keyid:35:7A:17:9C:DD:0A:F9:A3:FB:03:E1:77:D6:A4:3F:B8:A5:77:54:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NXoXnN0K-aP7A-F31qQ_uKV3VOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166AFF/40CD1B54E50211EE9ABF7655C4F9AE02/NXoXnN0K-aP7A-F31qQ_uKV3VOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:11:2d:46:8c:51:4a:d8:a6:ce:c6:06:64:e8:2d:f6:99:41: e1:35:05:2a:7a:bd:00:f4:b9:cf:e9:9a:26:88:13:a3:55:11: d2:73:49:1a:a0:23:e9:fd:0a:ad:6f:84:ed:46:0d:f6:ef:0f: 85:ed:ab:f5:5e:ae:f6:ca:79:22:c1:dd:d2:59:66:a3:93:56: 47:b3:21:77:aa:ae:9c:c4:d9:8a:44:66:18:fa:38:8a:79:96: de:f3:a6:7e:c2:0a:3c:ff:c6:26:84:5d:eb:2d:ac:4d:5d:b3: 05:75:3e:64:e1:c8:6a:72:93:81:4c:6f:48:ab:c2:0f:e1:66: 2a:53:10:6c:a1:45:8a:8d:ea:75:ac:e9:71:76:6a:2e:a1:34: 94:25:95:76:4b:0c:53:c7:e7:17:c6:c0:86:50:e9:4d:a5:ad: 57:43:5b:5b:cf:e5:f8:97:8e:1f:e2:3b:ce:f9:ce:50:72:ca: bd:37:26:69:23:d6:ee:3b:cb:2a:9c:72:a1:2e:39:4d:99:88: 92:3c:98:e8:ea:3d:f2:15:44:7c:6b:99:e0:44:22:7a:04:98: 5d:18:b4:a3:9c:37:48:8a:d2:05:e6:79:ab:1c:20:37:0e:36: 96:79:d9:a7:13:1c:72:92:b3:9a:2c:7e:c2:23:b3:89:48:3d: 8d:49:8e:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZBRkYxMTAvBgNVBAUTKDM1N0ExNzlDREQwQUY5QTNGQjAzRTE3N0Q2QTQzRkI4 QTU3NzU0RTAwHhcNMjUxMjE3MDM0ODQ5WhcNMjUxMjI0MDM0ODQ5WjAYMRYwFAYD VQQDDA02OTQyMjgyMS03NmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF6HPqM2GbTcuKhTv74vx2F9Jkt5P5vEyQjJ+J5g4y8lAWU4mxGrrNvFbgqr QaJE/bpulnRw5RmKY0Q9446vVKF451pVgi8Sd5fQlVuR8OyjcNAXhVLLUbC8wkA8 5MRT/VIfmjgJbKlWh5FhEaZDaMeVr2Jhp9GoCob4isDnRonhkfkr2TGHyOhHp0Ov AWtw/FCkXhatM6vUyS5uI6NzJYDqwcf5WsInyosVSZBCrsnKcwLNA6dpppYvycIM 8n2HTG8GKRxfmEONKbkdmKmI5JfxzogJfqbLV693mdXQSazmP+j0dF037he0PIQb zdiPxhG7RY7Zn9J/6dLs70DQowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDkM+uT mazxjA6u8dx8pWJVVHpuMB8GA1UdIwQYMBaAFDV6F5zdCvmj+wPhd9akP7ild1Tg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkFGRi80MENEMUI1NEU1 MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1hUDdBLUYzMXFRX3VLVjNW T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Yb1huTjBLLWFQN0EtRjMxcVFfdUtWM1ZPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkFGRi80MENEMUI1NEU1MDIxMUVFOUFCRjc2NTVDNEY5QUUwMi9OWG9Ybk4wSy1h UDdBLUYzMXFRX3VLVjNWT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ES1GjFFK2KbOxgZk6C32mUHhNQUqer0A9LnP6ZomiBOjVRHSc0ka oCPp/Qqtb4TtRg327w+F7av1Xq72ynkiwd3SWWajk1ZHsyF3qq6cxNmKRGYY+jiK eZbe86Z+wgo8/8YmhF3rLaxNXbMFdT5k4chqcpOBTG9Iq8IP4WYqUxBsoUWKjep1 rOlxdmouoTSUJZV2SwxTx+cXxsCGUOlNpa1XQ1tbz+X4l44f4jvO+c5Qcsq9NyZp I9buO8sqnHKhLjlNmYiSPJjo6j3yFUR8a5ngRCJ6BJhdGLSjnDdIitIF5nmrHCA3 DjaWedmnExxykrOaLH7CI7OJSD2NSY4h -----END CERTIFICATE-----Generated at Thu Dec 18 23:32:59 2025 by rpki-client