This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: TdkthK0yzeaOdoZmNd1g+lhV128KTZvQ0ACCfj2l5RI= Subject key identifier: DB:FD:94:6E:2E:BC:53:03:BE:75:7F:3C:CB:BD:62:EC:E0:A4:F0:6D Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 0215 Signing time: Tue 23 Dec 2025 01:14:27 +0000 Manifest this update: Tue 23 Dec 2025 01:14:26 +0000 Manifest next update: Tue 30 Dec 2025 01:14:26 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: fzepRRif/90ZOtbkMIAP0AydI5iMcV4Xba6U4ne8xZA=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860, serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Dec 23 01:14:26 2025 GMT Not After : Dec 30 01:14:26 2025 GMT Subject: CN=6949ecf3-136e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:20:21:24:8c:cc:d5:67:99:ce:64:0f:0c:4d: 51:67:e1:3b:df:28:2e:24:6b:9b:2c:2c:c2:be:38: dd:f0:7f:55:04:f9:20:35:38:7d:1a:85:78:27:c5: 38:8b:c1:e5:21:92:b0:bd:96:ea:ff:d5:84:1a:7e: 05:d0:81:1b:31:50:37:d5:f0:3e:8c:f9:30:dc:de: e7:77:66:b6:e4:15:a4:84:8c:85:f0:f7:43:dd:75: 44:f0:30:18:32:13:91:d4:67:28:e1:08:2e:df:3f: 85:4b:fe:56:87:e8:1e:fd:d4:6e:3f:53:eb:26:c1: b0:46:dd:ad:7c:e7:c2:3c:fc:1f:f6:97:b4:54:35: 4d:5c:b7:10:a3:5a:7a:1e:f3:63:72:23:f5:ec:de: c7:d8:f6:c8:f3:55:9d:b7:60:f6:54:44:40:f2:09: f2:91:9e:e1:30:bb:f5:3c:2c:56:25:99:d0:88:d5: 94:40:42:cc:77:e9:73:02:59:31:48:4d:7e:c3:8f: 7d:29:7f:d7:c9:b0:56:f3:5e:a3:ed:ec:b3:a5:e2: 61:34:8d:88:37:3a:87:28:55:b2:82:66:0d:ca:96: 61:b6:08:b7:1c:f1:7c:43:6c:45:8d:94:cc:09:9e: 2b:fa:c3:97:0f:a1:5b:55:b8:39:bf:6b:d0:62:5c: 9f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:94:6E:2E:BC:53:03:BE:75:7F:3C:CB:BD:62:EC:E0:A4:F0:6D X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c4:ce:32:73:97:94:00:19:07:f1:42:0f:02:63:c2:c5:43: c5:e9:60:65:63:30:85:0e:9f:3e:a7:5b:02:9f:82:da:48:1d: 58:23:b4:b7:b2:ff:90:61:6f:d1:41:8c:f2:3c:4b:7e:0e:17: 4d:f2:d5:1b:fd:41:c9:96:d1:5b:7d:aa:71:3a:0d:f6:b0:0b: 02:d3:02:d4:8d:a9:80:d9:9a:94:32:cb:e3:1a:a5:b8:7f:0c: f4:ee:4a:6d:fc:fe:32:fa:fb:7d:4b:3c:aa:cd:ef:45:0f:23: 43:08:b0:ad:6d:5c:aa:dd:e8:fc:6b:6b:d6:b9:57:65:05:62: ce:b5:f8:1b:f3:49:e1:da:bb:6b:01:5b:fb:ed:78:69:09:68: 2f:59:4d:38:49:57:5c:76:55:ae:2c:f5:dc:a3:6d:da:95:27: 49:09:5b:f5:a6:c2:16:25:2c:d7:64:75:9c:27:e5:e6:9c:f6: f1:62:cf:3a:06:7f:6b:4f:9e:35:02:85:0b:d9:c7:2b:13:a4: a7:5e:23:13:f6:0e:1e:b1:de:1e:3c:92:36:5e:48:06:5e:ae: ce:2e:cf:9d:e7:8f:4e:e9:59:27:58:13:e3:a8:3e:8e:08:0a: 50:0e:91:4e:0a:de:5c:49:77:5d:e3:1b:93:b2:13:12:c5:03: 19:95:11:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjUxMjIzMDExNDI2WhcNMjUxMjMwMDExNDI2WjAYMRYwFAYD VQQDDA02OTQ5ZWNmMy0xMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yAhJIzM1WeZzmQPDE1RZ+E73yguJGubLCzCvjjd8H9VBPkgNTh9GoV4J8U4 i8HlIZKwvZbq/9WEGn4F0IEbMVA31fA+jPkw3N7nd2a25BWkhIyF8PdD3XVE8DAY MhOR1Gco4Qgu3z+FS/5Wh+ge/dRuP1PrJsGwRt2tfOfCPPwf9pe0VDVNXLcQo1p6 HvNjciP17N7H2PbI81Wdt2D2VERA8gnykZ7hMLv1PCxWJZnQiNWUQELMd+lzAlkx SE1+w499KX/XybBW816j7eyzpeJhNI2INzqHKFWygmYNypZhtgi3HPF8Q2xFjZTM CZ4r+sOXD6FbVbg5v2vQYlyf2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNv9lG4u vFMDvnV/PMu9YuzgpPBtMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMxM4yc5eUABkH8UIPAmPCxUPF6WBlYzCFDp8+p1sCn4LaSB1YI7S3 sv+QYW/RQYzyPEt+DhdN8tUb/UHJltFbfapxOg32sAsC0wLUjamA2ZqUMsvjGqW4 fwz07kpt/P4y+vt9Szyqze9FDyNDCLCtbVyq3ej8a2vWuVdlBWLOtfgb80nh2rtr AVv77XhpCWgvWU04SVdcdlWuLPXco23alSdJCVv1psIWJSzXZHWcJ+XmnPbxYs86 Bn9rT541AoUL2ccrE6SnXiMT9g4esd4ePJI2XkgGXq7OLs+d549O6VknWBPjqD6O CApQDpFOCt5cSXdd4xuTshMSxQMZlRF2 -----END CERTIFICATE-----Generated at Tue Dec 23 09:22:57 2025 by rpki-client