This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: 1dxD8CHyPHsyHWDOuLd12ui3wUcjuBwZQpfcyS3WJNQ= Subject key identifier: 7E:B2:0E:78:9E:66:4F:4E:F7:C5:AB:23:0D:BD:33:33:8B:52:72:10 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1CB4 Signing time: Mon 22 Dec 2025 15:57:46 +0000 Manifest this update: Mon 22 Dec 2025 15:57:46 +0000 Manifest next update: Mon 29 Dec 2025 15:57:46 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: 68/nCmfNeGlbU5bwo42SsKjSdx/aY37zYMMEMzX1xb4=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: fMJYRNYu9EHrc5oKc1TxPlzepBubKFgRR2gCF/JM5ZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7373 (0x1ccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Dec 22 15:57:46 2025 GMT Not After : Dec 29 15:57:46 2025 GMT Subject: CN=69496a7a-a81e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:36:4e:03:97:fd:90:91:44:b4:77:2d:65:91: dd:6c:73:4c:94:e1:4c:2b:da:8c:fb:e7:78:d5:65: 22:0e:da:2e:2d:ec:39:f9:2c:fd:0f:dc:62:7b:71: 6b:24:28:50:a9:94:9d:97:07:03:1f:8c:f5:aa:98: 67:28:bc:4d:08:5d:3c:5e:e4:08:34:82:bc:0d:cf: 42:41:f4:43:a6:b0:36:64:e5:5c:f1:44:8f:5c:32: 60:65:a8:22:b0:b4:43:3b:cd:13:08:9f:c9:83:79: 24:d3:80:f5:0d:c6:af:36:23:a8:86:6f:e6:21:d3: 33:40:d8:bf:82:4f:3b:23:c0:92:11:a8:9a:78:58: c8:28:26:17:e0:46:1a:62:3f:4f:4d:c1:37:10:92: dc:88:e4:f4:6e:5b:3f:31:fa:0e:06:1b:7c:3d:f7: 78:8d:2d:80:52:7a:d9:10:c2:4f:6c:2c:b4:7d:16: 23:2c:d0:41:67:59:23:65:96:d0:cb:42:80:a4:b9: a4:ee:15:f8:96:91:15:52:09:3a:30:1c:62:17:e2: 52:07:67:1d:97:ac:01:31:82:92:14:28:15:0c:4a: 28:72:41:4a:e7:ec:8b:cd:e8:99:be:ae:4f:8f:e2: a8:e7:66:b4:5a:3a:aa:0e:6a:bf:07:66:ac:ed:f4: d4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B2:0E:78:9E:66:4F:4E:F7:C5:AB:23:0D:BD:33:33:8B:52:72:10 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3d:b2:b0:a3:a3:03:2e:28:95:93:9f:b0:32:89:1f:7a:0f: 4a:2a:8a:29:c7:14:d0:68:19:3e:ba:04:be:5e:3b:bf:72:3b: 30:82:8a:b9:01:60:79:3a:21:15:85:34:68:8b:1b:2c:c4:04: 08:02:0b:98:bc:70:91:05:fa:db:9b:c3:87:69:00:6f:e8:79: 89:ae:0a:b6:05:73:a2:48:7c:96:07:60:1e:f5:0e:5a:c2:70: 1c:a0:9a:57:41:ad:75:69:ed:4c:c0:fe:4d:7f:b3:7f:e4:2d: 8c:78:36:7c:da:d9:48:6a:ea:b5:2d:e6:b6:88:04:aa:3f:26: 1f:ba:2c:c6:b1:df:99:7c:65:1c:1a:bc:4e:04:50:e4:75:85: 29:88:a1:e5:0c:73:d9:3c:9d:79:e9:37:d1:e8:f8:48:84:0d: b8:c6:e5:27:51:06:00:89:a8:b3:98:1b:c0:3f:bd:5c:96:a8: e3:1d:c2:cb:62:8d:95:e8:aa:5c:b2:9d:61:3f:4b:d6:ed:54: c3:07:1f:15:2f:1c:31:ac:69:4f:70:76:97:7d:0d:e3:58:41: c8:24:8d:78:fb:81:98:3d:8f:5f:7e:b3:5f:65:82:e5:42:30: 33:c7:02:41:aa:61:f2:3e:8b:b7:7e:fc:17:65:1d:79:4c:cc: c4:e6:71:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUxMjIyMTU1NzQ2WhcNMjUxMjI5MTU1NzQ2WjAYMRYwFAYD VQQDDA02OTQ5NmE3YS1hODFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8zZOA5f9kJFEtHctZZHdbHNMlOFMK9qM++d41WUiDtouLew5+Sz9D9xie3Fr JChQqZSdlwcDH4z1qphnKLxNCF08XuQINIK8Dc9CQfRDprA2ZOVc8USPXDJgZagi sLRDO80TCJ/Jg3kk04D1DcavNiOohm/mIdMzQNi/gk87I8CSEaiaeFjIKCYX4EYa Yj9PTcE3EJLciOT0bls/MfoOBht8Pfd4jS2AUnrZEMJPbCy0fRYjLNBBZ1kjZZbQ y0KApLmk7hX4lpEVUgk6MBxiF+JSB2cdl6wBMYKSFCgVDEoockFK5+yLzeiZvq5P j+Ko52a0WjqqDmq/B2as7fTULwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6yDnie Zk9O98WrIw29MzOLUnIQMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5PbKwo6MDLiiVk5+wMokfeg9KKoopxxTQaBk+ugS+Xju/cjswgoq5 AWB5OiEVhTRoixssxAQIAguYvHCRBfrbm8OHaQBv6HmJrgq2BXOiSHyWB2Ae9Q5a wnAcoJpXQa11ae1MwP5Nf7N/5C2MeDZ82tlIauq1Lea2iASqPyYfuizGsd+ZfGUc GrxOBFDkdYUpiKHlDHPZPJ156TfR6PhIhA24xuUnUQYAiaizmBvAP71clqjjHcLL Yo2V6Kpcsp1hP0vW7VTDBx8VLxwxrGlPcHaXfQ3jWEHIJI14+4GYPY9ffrNfZYLl QjAzxwJBqmHyPou3fvwXZR15TMzE5nEU -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:14 2025 by rpki-client