This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft File: nMiKhtCzfs7o1XZX75l4lTJoDN8.mft (raw, json) Hash identifier: EbihmNf/Ygo1KMtwlTP8rRD2WjR6MkwF6KYTubASeMA= Subject key identifier: C5:0B:CB:4C:DB:5C:FB:0B:E9:87:88:7C:EF:1B:1B:EC:F3:A0:73:D4 Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft Manifest number: 0174 Signing time: Sun 21 Dec 2025 03:05:47 +0000 Manifest this update: Sun 21 Dec 2025 03:05:47 +0000 Manifest next update: Sun 28 Dec 2025 03:05:47 +0000 Files and hashes: 1: nMiKhtCzfs7o1XZX75l4lTJoDN8.crl (hash: waYCBsYzyAurSUeEUmaaN7V6EXdFi1HdhUHO9gQXKPk=) 2: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (hash: da2ZawdG5alxBTyeAyi7NwDwyDeUsxgI6h/wI95o9Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: Dec 21 03:05:47 2025 GMT Not After : Dec 28 03:05:47 2025 GMT Subject: CN=6947640b-e3a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:e3:e6:d7:ff:47:e5:83:41:b7:07:d3:be: 6f:5c:8e:bf:ea:3c:f7:45:ad:6c:63:3a:da:ed:a0: 7e:d5:00:e4:63:5b:8f:cd:6e:85:1e:d6:84:a1:94: 5d:ac:6e:a4:7d:95:87:1c:da:7e:68:0d:bd:5e:e2: b6:b2:10:d2:ac:55:fa:35:48:d9:49:1d:56:ec:0f: f3:da:e2:99:e9:4c:0a:10:06:76:a1:90:6a:d9:3d: 97:a3:85:91:af:27:ef:7c:93:90:25:0c:2d:bc:a1: dc:71:00:93:4e:e0:3c:56:d5:92:da:ce:fb:b5:9d: 2d:6e:73:29:ae:99:f8:13:bc:03:12:1a:75:ee:3a: f9:14:6e:74:ee:ed:4c:44:ad:1d:8e:bc:db:71:f9: 3e:a7:fe:4a:56:f2:79:32:74:4f:2f:0d:16:41:cc: b7:c0:0d:8d:6e:86:46:56:07:2a:87:ba:f7:af:f8: ce:8d:50:0a:69:c3:8d:97:30:e7:65:bb:5b:42:fd: df:42:d3:0f:8c:60:1b:31:44:f7:d2:d0:8a:8e:96: dd:d0:75:0f:06:a8:19:86:55:c8:41:52:f8:94:34: 46:fd:39:ad:06:18:31:5c:f6:0a:23:ce:c7:f4:f3: 78:76:8d:33:fa:2f:98:2e:1c:01:fc:2a:2e:81:54: a7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0B:CB:4C:DB:5C:FB:0B:E9:87:88:7C:EF:1B:1B:EC:F3:A0:73:D4 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3a:69:b2:6d:2a:d8:23:33:86:92:20:f0:8a:89:0f:64:a1: bd:c9:42:7d:45:f0:3d:c0:8c:93:a1:a4:24:97:4d:7e:6b:d0: f6:18:dd:7c:97:ba:b0:38:c7:0e:62:55:13:8e:88:f3:14:06: 08:f5:57:86:06:88:ec:48:37:9f:83:4a:68:55:b9:bb:6a:4d: d3:fa:c4:26:e0:d8:89:97:37:b5:57:9c:49:86:c4:87:3a:de: 0a:84:b9:50:47:42:b8:4b:dd:69:d1:6a:3c:41:5a:4a:7e:a8: ce:a2:e2:c3:79:c6:3f:fe:c6:48:f5:94:1d:4b:d1:41:f1:ff: e3:05:ff:3b:33:55:22:63:f3:83:31:50:5f:48:b3:f4:6e:e6: 05:ba:96:50:e1:35:17:0e:06:1b:96:09:1c:9d:84:da:37:71: 96:ec:3e:85:61:64:a1:2c:a3:05:17:7a:73:d8:4a:d7:d3:73: ac:62:09:8b:8e:ab:27:15:39:54:19:40:59:7d:de:34:09:07: d8:63:d3:70:ef:df:78:5e:00:50:ef:b6:42:43:65:33:cf:c1: 3b:5d:bc:18:c0:71:f5:55:cc:ff:fe:7c:1a:18:9e:ca:11:19: 01:f5:9a:ea:38:de:cb:f2:79:4d:3d:7f:29:65:93:fa:54:40: b6:c3:ef:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjUxMjIxMDMwNTQ3WhcNMjUxMjI4MDMwNTQ3WjAYMRYwFAYD VQQDDA02OTQ3NjQwYi1lM2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+fj5tf/R+WDQbcH075vXI6/6jz3Ra1sYzra7aB+1QDkY1uPzW6FHtaEoZRd rG6kfZWHHNp+aA29XuK2shDSrFX6NUjZSR1W7A/z2uKZ6UwKEAZ2oZBq2T2Xo4WR ryfvfJOQJQwtvKHccQCTTuA8VtWS2s77tZ0tbnMprpn4E7wDEhp17jr5FG507u1M RK0djrzbcfk+p/5KVvJ5MnRPLw0WQcy3wA2NboZGVgcqh7r3r/jOjVAKacONlzDn ZbtbQv3fQtMPjGAbMUT30tCKjpbd0HUPBqgZhlXIQVL4lDRG/TmtBhgxXPYKI87H 9PN4do0z+i+YLhwB/CougVSnhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMULy0zb XPsL6YeIfO8bG+zzoHPUMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIzOS9GRUY1NDlFOEFGMTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZz N28xWFpYNzVsNGxUSm9ETjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDOmmybSrYIzOGkiDwiokPZKG9yUJ9RfA9wIyToaQkl01+a9D2GN18 l7qwOMcOYlUTjojzFAYI9VeGBojsSDefg0poVbm7ak3T+sQm4NiJlze1V5xJhsSH Ot4KhLlQR0K4S91p0Wo8QVpKfqjOouLDecY//sZI9ZQdS9FB8f/jBf87M1UiY/OD MVBfSLP0buYFupZQ4TUXDgYblgkcnYTaN3GW7D6FYWShLKMFF3pz2ErX03OsYgmL jqsnFTlUGUBZfd40CQfYY9Nw7994XgBQ77ZCQ2Uzz8E7XbwYwHH1Vcz//nwaGJ7K ERkB9ZrqON7L8nlNPX8pZZP6VEC2w+87 -----END CERTIFICATE-----Generated at Mon Dec 22 07:19:12 2025 by rpki-client