This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: V5ICpHXdqPXNSmIVYMvcXOWf176U/9kpipkTIaxfKZg= Subject key identifier: C8:55:98:8C:40:27:6C:BD:BD:8D:0E:35:53:78:E8:82:8A:32:B6:E1 Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 04FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 04F6 Signing time: Mon 22 Dec 2025 22:48:33 +0000 Manifest this update: Mon 22 Dec 2025 22:48:32 +0000 Manifest next update: Mon 29 Dec 2025 22:48:32 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: B17QDa6Bs6t4I2qzZN5i+LmZo2WCVmGHAoMiWcMRPL4=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: nj3zL8oObjV8NLXqj4IbNKya+FtBjMvRptjlINscrUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: Dec 22 22:48:32 2025 GMT Not After : Dec 29 22:48:32 2025 GMT Subject: CN=6949cac1-06ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1d:ae:01:44:90:b7:71:df:f2:41:f8:36:6f: be:f2:20:79:3d:b5:fb:e2:d4:dc:32:5a:7c:bc:b2: 7d:c7:ce:a6:98:02:87:b9:39:75:64:57:9a:ba:54: 34:ca:32:8c:39:a4:06:cc:9c:2e:6e:92:c7:73:08: f7:5e:a3:48:f8:e9:b6:10:c5:06:b1:d4:61:12:9f: c4:28:e5:03:55:2a:f8:1e:64:c4:a4:c7:3e:93:a7: 75:9a:48:61:90:8d:a1:cf:99:d2:53:e1:7f:31:f5: 37:f9:c5:10:ba:f8:a7:4d:40:31:bb:c3:d6:3a:79: 08:8c:91:73:12:65:de:0a:04:b9:14:ca:f2:cd:35: 39:08:70:36:3c:8d:e9:c0:ce:3b:ec:21:1b:15:c3: 9a:7e:53:58:0b:f6:1e:3e:14:40:68:4b:64:56:0b: ac:3c:89:ba:b3:37:37:fc:27:18:a7:0a:a1:22:a8: 20:94:fe:e6:36:0c:99:9a:7a:11:cb:c8:9f:10:8d: a1:3e:d4:d6:57:37:a9:6a:db:35:e8:b0:02:f7:26: 28:a3:e5:c6:a2:e8:ed:d7:86:4d:7e:8d:6d:c5:f6: a5:89:88:04:b0:a7:3b:68:bd:97:87:82:41:7f:d9: 75:4c:6c:49:ca:46:54:87:83:02:1c:0d:7f:83:83: e5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:55:98:8C:40:27:6C:BD:BD:8D:0E:35:53:78:E8:82:8A:32:B6:E1 X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:27:c4:20:b0:61:a1:97:e2:9a:ab:fb:b0:3b:72:0c:45:f4: cc:09:6b:dc:11:62:96:02:f8:94:88:bd:2f:85:8c:ef:43:d8: 2d:a7:e4:96:ce:ed:d3:65:0b:bf:ce:20:5f:1d:35:17:31:37: 62:4d:8f:e5:cf:ba:ef:91:b3:6e:eb:df:e7:c0:fc:df:a9:04: 94:07:c7:63:d5:84:8f:90:f1:e5:8d:61:7c:99:a6:c1:af:d3: a0:d4:19:b5:ae:89:1f:96:ce:86:27:b8:84:64:06:0f:59:4c: c4:13:4d:d3:42:9d:c6:e1:02:9d:61:d3:9a:64:91:70:5f:ca: 0e:a0:3a:10:1c:0b:90:5d:f1:75:d5:00:fb:96:5a:84:02:4a: 0f:b6:20:5d:72:8a:6a:ab:7a:40:be:41:48:ba:e5:1d:38:ca: bf:87:c1:e5:36:b2:e2:a8:02:63:c9:52:02:5d:25:0f:9e:88: 22:58:c5:21:2e:f1:b5:f0:18:79:41:e6:cd:1f:66:24:db:e7: 4e:e6:fd:f5:d9:98:bc:25:25:c2:4e:06:15:77:8e:70:e1:40: 84:e5:43:1d:16:40:90:1a:08:61:f1:90:69:04:ad:86:30:be: af:3a:05:53:ba:8b:ab:b9:81:82:50:42:8f:d3:d9:b5:89:65: 2c:bb:39:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjUxMjIyMjI0ODMyWhcNMjUxMjI5MjI0ODMyWjAYMRYwFAYD VQQDDA02OTQ5Y2FjMS0wNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtB2uAUSQt3Hf8kH4Nm++8iB5PbX74tTcMlp8vLJ9x86mmAKHuTl1ZFeaulQ0 yjKMOaQGzJwubpLHcwj3XqNI+Om2EMUGsdRhEp/EKOUDVSr4HmTEpMc+k6d1mkhh kI2hz5nSU+F/MfU3+cUQuvinTUAxu8PWOnkIjJFzEmXeCgS5FMryzTU5CHA2PI3p wM477CEbFcOaflNYC/YePhRAaEtkVgusPIm6szc3/CcYpwqhIqgglP7mNgyZmnoR y8ifEI2hPtTWVzepats16LAC9yYoo+XGoujt14ZNfo1txfaliYgEsKc7aL2Xh4JB f9l1TGxJykZUh4MCHA1/g4PlNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhVmIxA J2y9vY0ONVN46IKKMrbhMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzJ8QgsGGhl+Kaq/uwO3IMRfTMCWvcEWKWAviUiL0vhYzvQ9gtp+SW zu3TZQu/ziBfHTUXMTdiTY/lz7rvkbNu69/nwPzfqQSUB8dj1YSPkPHljWF8mabB r9Og1Bm1rokfls6GJ7iEZAYPWUzEE03TQp3G4QKdYdOaZJFwX8oOoDoQHAuQXfF1 1QD7llqEAkoPtiBdcopqq3pAvkFIuuUdOMq/h8HlNrLiqAJjyVICXSUPnogiWMUh LvG18Bh5QebNH2Yk2+dO5v312Zi8JSXCTgYVd45w4UCE5UMdFkCQGghh8ZBpBK2G ML6vOgVTuouruYGCUEKP09m1iWUsuznU -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:48 2025 by rpki-client