This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: FpOy97KzJW6/hSQZD+TSf7auRu2E9oj5UcLVbKypFdU= Subject key identifier: EA:C5:48:6D:15:D5:4C:60:31:39:A7:9E:FA:95:43:AE:EE:66:88:8C Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 0598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0593 Signing time: Sat 20 Dec 2025 22:30:27 +0000 Manifest this update: Sat 20 Dec 2025 22:30:27 +0000 Manifest next update: Sat 27 Dec 2025 22:30:27 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: oXZXbJoALU0QhxySYaM4iPiLHrLSPImkwCFvLLsycP8=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Dec 20 22:30:27 2025 GMT Not After : Dec 27 22:30:27 2025 GMT Subject: CN=69472383-3d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:04:f6:80:63:b7:3b:92:8a:b7:1a:f7:8c:aa: 01:98:7d:36:7d:73:48:fb:75:d3:6d:b3:b3:26:5d: c5:56:86:91:b7:d8:57:aa:e4:de:bc:d5:49:f1:b5: 9d:e6:ed:03:8b:cc:8d:0b:fa:24:d0:42:51:a0:33: 1c:4c:c7:4c:21:ab:28:34:4b:c6:0a:a8:a9:f9:22: 72:6a:79:35:87:0d:af:44:9a:b9:31:c7:78:98:94: d8:c8:49:63:35:f5:b0:15:8b:e9:74:b8:27:2c:09: f5:4a:fe:3c:61:b8:4c:91:64:04:da:49:ff:87:de: 2a:68:14:cc:30:f7:55:ea:df:12:1a:e7:74:c5:c9: 90:39:ef:55:f9:e0:13:87:b3:29:68:b2:0b:f3:c1: f7:b9:c4:e6:ee:7f:9e:c1:3d:8b:2e:b2:11:7d:ef: f3:d6:40:c7:22:b7:17:71:b8:ff:cb:c1:c3:87:c8: 20:68:1a:d2:d0:66:4b:99:93:a0:fe:bf:3f:f3:c1: 89:e7:45:78:11:82:8a:51:05:d3:0d:1a:f7:86:7a: 9b:51:07:50:59:4a:33:e1:1a:8d:10:e0:22:b6:cf: 47:70:62:a0:49:f5:dc:6a:40:a2:7d:fe:cd:5f:06: 0c:e0:62:ee:2a:5a:7b:3c:ee:28:29:8e:35:b8:14: 5c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C5:48:6D:15:D5:4C:60:31:39:A7:9E:FA:95:43:AE:EE:66:88:8C X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3c:88:38:10:3a:96:ac:c1:dc:ed:16:39:c8:7f:b6:cc:7f: 32:82:18:05:77:77:77:3f:e7:1c:aa:1c:48:d7:e5:07:fe:0a: 48:8a:83:29:45:4a:b0:7a:ae:a3:88:7b:17:15:4b:d1:4e:54: ba:7d:1d:70:6c:0e:34:40:72:c0:d7:d8:a6:1d:18:da:c1:1d: aa:8d:ff:a3:a2:3a:82:43:45:25:12:10:4b:59:27:77:4d:1e: 0d:87:30:48:23:9b:d8:d3:06:60:8c:84:26:da:45:91:e9:03: 54:44:2a:54:75:25:d0:89:ed:b9:4b:a2:4e:bf:bf:0a:c6:aa: 0b:8d:17:2d:3b:b1:00:28:73:ca:73:f9:c5:08:5d:91:09:dd: 55:9a:cd:1d:cc:9f:9d:c0:ad:84:c3:a5:d5:c8:9f:e5:23:58: 5f:b0:50:f4:0d:4a:96:1a:39:27:c0:74:f6:10:1a:20:cc:df: 6a:66:9f:00:e7:76:51:a5:4a:57:93:b6:ad:9c:37:73:12:75: 74:4f:6f:8d:03:f2:af:1d:5f:47:65:d7:d3:83:43:be:a3:c1: 7b:70:79:45:c9:e0:ac:29:f4:a1:ad:3c:5d:e8:93:70:01:cb: 7c:3f:88:f5:91:0c:fd:f3:6d:d1:3a:ea:b8:8f:9d:17:f7:27: d2:92:f1:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUxMjIwMjIzMDI3WhcNMjUxMjI3MjIzMDI3WjAYMRYwFAYD VQQDDA02OTQ3MjM4My0zZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAT2gGO3O5KKtxr3jKoBmH02fXNI+3XTbbOzJl3FVoaRt9hXquTevNVJ8bWd 5u0Di8yNC/ok0EJRoDMcTMdMIasoNEvGCqip+SJyank1hw2vRJq5Mcd4mJTYyElj NfWwFYvpdLgnLAn1Sv48YbhMkWQE2kn/h94qaBTMMPdV6t8SGud0xcmQOe9V+eAT h7MpaLIL88H3ucTm7n+ewT2LLrIRfe/z1kDHIrcXcbj/y8HDh8ggaBrS0GZLmZOg /r8/88GJ50V4EYKKUQXTDRr3hnqbUQdQWUoz4RqNEOAits9HcGKgSfXcakCiff7N XwYM4GLuKlp7PO4oKY41uBRcOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrFSG0V 1UxgMTmnnvqVQ67uZoiMMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALPIg4EDqWrMHc7RY5yH+2zH8yghgFd3d3P+ccqhxI1+UH/gpIioMp RUqweq6jiHsXFUvRTlS6fR1wbA40QHLA19imHRjawR2qjf+jojqCQ0UlEhBLWSd3 TR4NhzBII5vY0wZgjIQm2kWR6QNURCpUdSXQie25S6JOv78KxqoLjRctO7EAKHPK c/nFCF2RCd1Vms0dzJ+dwK2Ew6XVyJ/lI1hfsFD0DUqWGjknwHT2EBogzN9qZp8A 53ZRpUpXk7atnDdzEnV0T2+NA/KvHV9HZdfTg0O+o8F7cHlFyeCsKfShrTxd6JNw Act8P4j1kQz9823ROuq4j50X9yfSkvHf -----END CERTIFICATE-----Generated at Sun Dec 21 23:00:28 2025 by rpki-client