This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: Qu0BnYMxu+xzBE8erhFNDCGTspghpmwPyBG7PRTOEcA= Subject key identifier: C3:94:28:E3:BB:30:B9:F3:53:CE:B8:8E:F9:75:FC:40:9C:68:57:50 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 1038 Signing time: Sat 06 Dec 2025 17:04:20 +0000 Manifest this update: Sat 06 Dec 2025 17:04:20 +0000 Manifest next update: Sat 13 Dec 2025 17:04:20 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: 9Vz2qzUUPD93qXUNObKGyC4+GBF1JAxXXlRQLrQyj3Q=) 2: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 3: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 4: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 5: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 6: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) 7: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 8: C435900ACF7C11F0AAC14644C4F9AE02.roa (hash: 8rPBOsaa7rJzdB0g/EXgDCRIVsB3I1n1M1fgVfp0lqU=) 9: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 10: C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa (hash: e5x/yFpQ2lnc1Sq7uNqIiSYBP55fGfEsS4tL2Gu1MUE=) 11: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 14: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 15: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4525 (0x11ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Dec 6 17:04:20 2025 GMT Not After : Dec 13 17:04:20 2025 GMT Subject: CN=69346214-ed2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:52:eb:46:16:b5:cb:9c:72:4e:7a:b2:ab: 46:d6:e0:06:37:20:ef:79:5c:cc:83:3b:35:b1:05: 5d:e7:7e:60:fa:f5:9d:da:af:b6:97:ad:d6:24:68: cf:ee:ee:2e:85:0a:48:00:07:51:77:51:99:e1:de: 9e:e4:ce:cf:98:60:3e:1d:84:d0:4a:5e:34:7a:ec: 8c:8c:ce:35:13:8d:70:47:ef:c0:99:a8:fa:13:7b: 62:1d:15:fd:52:ac:06:d8:06:34:c2:28:22:d3:c4: 55:c9:80:26:7c:2c:bc:47:b7:ac:9f:bf:35:a5:f5: a2:51:dd:53:32:b9:98:00:4c:13:bf:af:34:f3:bc: 52:9f:75:c1:2b:a2:93:4b:7f:fa:e1:30:72:55:0b: ec:1b:7d:b8:73:02:2f:0e:0f:95:be:53:37:bc:2e: 0c:5a:fe:4a:91:a6:6d:92:9e:9f:36:a5:54:0d:3a: 12:ea:c1:e1:36:f3:c0:d4:61:1c:37:17:d8:a9:6b: 5c:74:81:78:92:0c:ca:0a:50:a1:c7:40:89:a9:7a: d2:bf:e8:88:c4:43:05:7c:c1:c3:10:dd:5d:6c:26: 1b:dc:43:a0:7a:ca:2d:d9:c5:a5:43:de:c1:f0:99: c1:38:93:07:e8:34:4c:eb:fb:92:48:9b:3f:90:44: 23:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:94:28:E3:BB:30:B9:F3:53:CE:B8:8E:F9:75:FC:40:9C:68:57:50 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:61:d6:6a:7a:f8:c7:ce:05:cd:35:4b:c9:35:ae:0c:29:e9: 0a:e9:6e:45:26:3e:d1:bf:3e:7f:46:d4:cc:d8:cb:98:a8:f2: a7:91:42:96:28:44:7e:e5:0f:43:16:cd:6c:7e:e1:a1:1c:c5: b8:c0:e2:a9:34:35:b6:48:25:15:83:22:0b:bb:f9:7c:c2:40: 94:1e:56:ba:bf:ba:8b:8b:8d:c2:47:85:43:4b:18:6b:f3:07: 35:8a:80:1e:b3:d1:45:d9:0b:95:50:c1:af:34:fd:b5:66:0c: a4:e6:b9:97:32:f1:2f:9a:fb:74:8f:9f:9d:31:c2:78:79:c8: 22:93:5b:5b:d1:e2:0b:5d:6e:d0:29:c4:1f:db:a6:91:10:30: 34:fb:75:06:77:b3:fc:f6:cf:50:1e:76:bb:cd:85:c4:db:9b: d6:c5:2d:d9:03:6a:0a:98:b1:e9:0d:fa:a0:d4:39:79:1d:7e: 02:e5:e0:5a:89:3b:4f:33:56:a7:d6:e1:f5:d5:75:28:2c:7b: 67:19:7d:65:0a:40:f6:6f:a9:b2:0e:a5:01:34:2d:40:85:c5: a7:60:74:5d:c3:f9:b7:11:54:d3:e2:78:35:af:c4:55:f6:d8: 01:78:a0:16:6e:92:fe:16:5d:48:aa:5d:32:82:d1:e3:ee:84: cd:b5:04:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUxMjA2MTcwNDIwWhcNMjUxMjEzMTcwNDIwWjAYMRYwFAYD VQQDEw02OTM0NjIxNC1lZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykVS60YWtcucck56sqtG1uAGNyDveVzMgzs1sQVd535g+vWd2q+2l63WJGjP 7u4uhQpIAAdRd1GZ4d6e5M7PmGA+HYTQSl40euyMjM41E41wR+/Amaj6E3tiHRX9 UqwG2AY0wigi08RVyYAmfCy8R7esn781pfWiUd1TMrmYAEwTv68087xSn3XBK6KT S3/64TByVQvsG324cwIvDg+VvlM3vC4MWv5KkaZtkp6fNqVUDToS6sHhNvPA1GEc NxfYqWtcdIF4kgzKClChx0CJqXrSv+iIxEMFfMHDEN1dbCYb3EOgesot2cWlQ97B 8JnBOJMH6DRM6/uSSJs/kEQjqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOUKOO7 MLnzU864jvl1/ECcaFdQMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+YdZqevjHzgXNNUvJNa4MKekK6W5FJj7Rvz5/RtTM2MuYqPKnkUKW KER+5Q9DFs1sfuGhHMW4wOKpNDW2SCUVgyILu/l8wkCUHla6v7qLi43CR4VDSxhr 8wc1ioAes9FF2QuVUMGvNP21Zgyk5rmXMvEvmvt0j5+dMcJ4ecgik1tb0eILXW7Q KcQf26aREDA0+3UGd7P89s9QHna7zYXE25vWxS3ZA2oKmLHpDfqg1Dl5HX4C5eBa iTtPM1an1uH11XUoLHtnGX1lCkD2b6myDqUBNC1AhcWnYHRdw/m3EVTT4ng1r8RV 9tgBeKAWbpL+Fl1Iql0ygtHj7oTNtQQ+ -----END CERTIFICATE-----Generated at Sat Dec 6 20:09:18 2025 by rpki-client