This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: cS3ipn6hvS6aVjqIpZ5gHTePQiKTV4iNPDtRVmvORPk= Subject key identifier: 54:79:7E:B9:6C:8E:77:00:3D:00:BE:53:7D:D9:75:C0:9C:87:CC:E7 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0282 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0270 Signing time: Tue 23 Dec 2025 00:41:35 +0000 Manifest this update: Tue 23 Dec 2025 00:41:34 +0000 Manifest next update: Tue 30 Dec 2025 00:41:34 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: XEzXvz9RsX+AA6YQijh0ghfjJ2ajVAtY/ak27tftUhQ=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 04Cy+y4IVlv3nSRQiE3T4udS3Y09bNADoSP454aG6f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Dec 23 00:41:34 2025 GMT Not After : Dec 30 00:41:34 2025 GMT Subject: CN=6949e53e-0214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:9d:20:96:6a:57:e8:7b:ad:e5:e9:cc:22: 70:1e:bb:b7:fd:8b:8c:17:98:2f:c1:40:f6:33:05: 62:34:ed:63:1e:41:71:b8:f1:88:10:4c:01:21:1e: 51:08:da:d8:a8:0d:9c:95:96:f6:28:77:02:20:b9: c3:81:06:c6:25:a6:27:af:cf:cd:43:fa:86:a9:88: db:4f:92:b9:12:ba:0c:29:01:1e:0c:fa:5b:33:7b: d2:d8:76:df:4d:85:3f:11:1b:61:6a:72:d1:8d:29: 0d:79:df:18:53:37:45:3a:d4:7d:83:dc:90:78:8d: ba:15:43:87:44:b2:93:ce:9b:38:01:60:62:68:dc: 83:18:97:01:7b:27:78:9a:43:6c:b2:9d:c7:9b:92: bc:83:f9:5d:32:0e:24:19:5e:94:c9:35:4e:74:e4: 6f:34:8b:c6:e2:83:99:65:d5:64:7b:5c:a0:30:1f: ae:71:71:18:79:b6:df:56:1e:00:3c:54:c8:37:55: 08:cc:c0:35:9a:de:d1:7e:25:10:f7:0b:88:1e:2b: f2:94:15:ff:68:70:e7:64:05:7b:9e:9d:e2:1b:91: 68:f0:a4:ae:05:27:7a:6e:a1:cc:ae:1d:f5:5f:27: 6a:1a:23:a8:84:65:82:a7:c4:2f:ad:5b:92:b0:4b: 93:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:79:7E:B9:6C:8E:77:00:3D:00:BE:53:7D:D9:75:C0:9C:87:CC:E7 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:0f:f7:53:b1:a3:b4:7a:9d:0e:67:e7:b9:28:81:5f:e5:31: 52:31:dd:09:d9:41:47:6f:00:d8:b1:0d:9b:07:08:8b:b6:6a: 24:00:20:74:69:06:73:fb:35:e7:ca:c0:4e:ce:db:90:33:b5: 9c:50:2c:60:a7:9c:31:39:fe:6e:bb:d8:80:2c:56:60:0e:64: 52:9f:21:10:b6:ac:be:b6:90:0c:0b:12:e9:a1:4c:9f:ab:a9: ac:c6:8e:cf:86:fa:d1:a7:c0:12:90:43:c1:e9:76:d7:82:24: 14:e8:39:19:38:73:61:15:0f:84:9f:1f:0b:98:b9:ad:61:a5: b7:c2:da:ae:0a:7a:82:51:f5:f1:56:2b:a5:4c:a2:f6:d3:07: b5:85:2d:bf:9e:4e:cf:39:63:ff:c3:62:5a:44:e3:9f:3e:34: 84:b3:65:cd:19:20:1a:f7:45:a5:c1:79:17:d7:a3:68:18:b6: 4e:fa:56:f4:a9:45:40:ef:d5:68:9c:eb:ae:b1:32:15:86:5c: 6a:90:85:35:9b:eb:9c:aa:bc:d9:85:5e:3f:ef:09:47:06:48: ad:21:66:de:c4:fb:ed:9e:7f:bb:a5:ab:60:20:53:c7:c0:04: eb:3a:82:a2:10:15:94:6d:f3:f7:4b:37:d7:d3:eb:7a:90:c0: e8:fd:ea:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjUxMjIzMDA0MTM0WhcNMjUxMjMwMDA0MTM0WjAYMRYwFAYD VQQDDA02OTQ5ZTUzZS0wMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFydIJZqV+h7reXpzCJwHru3/YuMF5gvwUD2MwViNO1jHkFxuPGIEEwBIR5R CNrYqA2clZb2KHcCILnDgQbGJaYnr8/NQ/qGqYjbT5K5EroMKQEeDPpbM3vS2Hbf TYU/ERthanLRjSkNed8YUzdFOtR9g9yQeI26FUOHRLKTzps4AWBiaNyDGJcBeyd4 mkNssp3Hm5K8g/ldMg4kGV6UyTVOdORvNIvG4oOZZdVke1ygMB+ucXEYebbfVh4A PFTIN1UIzMA1mt7RfiUQ9wuIHivylBX/aHDnZAV7np3iG5Fo8KSuBSd6bqHMrh31 XydqGiOohGWCp8QvrVuSsEuTKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR5frls jncAPQC+U33ZdcCch8znMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWD/dTsaO0ep0OZ+e5KIFf5TFSMd0J2UFHbwDYsQ2bBwiLtmokACB0 aQZz+zXnysBOztuQM7WcUCxgp5wxOf5uu9iALFZgDmRSnyEQtqy+tpAMCxLpoUyf q6msxo7PhvrRp8ASkEPB6XbXgiQU6DkZOHNhFQ+Enx8LmLmtYaW3wtquCnqCUfXx ViulTKL20we1hS2/nk7POWP/w2JaROOfPjSEs2XNGSAa90WlwXkX16NoGLZO+lb0 qUVA79VonOuusTIVhlxqkIU1m+ucqrzZhV4/7wlHBkitIWbexPvtnn+7patgIFPH wATrOoKiEBWUbfP3SzfX0+t6kMDo/erC -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:02 2025 by rpki-client