This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft File: NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft (raw, json) Hash identifier: xVDQjituHvw+RqGnNKQhruxHWLuii3TEtBIPLgEA+wk= Subject key identifier: 84:DB:80:4C:AD:2F:5D:43:91:81:38:D0:4C:E3:91:08:C9:FA:94:3D Authority key identifier: 34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 Certificate issuer: /CN=A91A7B36/serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft Manifest number: 62 Signing time: Sun 07 Dec 2025 05:08:52 +0000 Manifest this update: Sun 07 Dec 2025 05:08:51 +0000 Manifest next update: Sun 14 Dec 2025 05:08:51 +0000 Files and hashes: 1: NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl (hash: bm/CgcjskE9GrDOZDyrhOcF3HVz0QTXN85Fp9FdFqu8=) 2: 5E4EF73E409011F0986B1F68C4F9AE02.roa (hash: zzVlxhn6+jvA03mHN2RlJJu0S5vEXRz/2+gZ9LS069Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B36, serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Validity Not Before: Dec 7 05:08:51 2025 GMT Not After : Dec 14 05:08:51 2025 GMT Subject: CN=69350be4-6b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5f:83:bf:a3:94:3d:51:d3:6e:80:ed:02:8d: 12:93:22:bd:e0:a5:65:85:6b:a7:a4:2d:d7:8d:61: 4b:74:4b:0d:91:b6:47:dd:34:84:41:a4:53:49:b0: f1:af:33:78:11:0f:11:75:5a:99:55:ae:b8:01:a0: 56:fb:19:7f:dd:86:d6:71:59:e1:67:6a:db:5c:33: 1c:64:0f:28:b5:b4:eb:4a:25:d9:62:85:a2:e2:d2: 6a:5d:5b:f3:c9:81:69:12:07:b9:3a:fe:f5:36:15: 35:df:bd:c0:db:91:ed:dd:05:ce:5d:a9:3b:88:17: 2c:cb:11:d1:57:55:be:63:1d:07:ce:d5:d5:db:0f: 39:f6:20:6c:ab:1e:37:5a:ad:12:ef:95:27:4d:a5: 0e:39:c7:68:c4:d6:a2:92:7f:9f:fb:9c:b2:c4:45: 74:dd:24:7f:25:ed:b3:13:fa:89:9c:3c:00:cc:67: fe:89:ca:04:27:b2:3b:03:62:55:6f:2e:d2:fb:12: d1:96:3a:18:73:2a:50:a5:8a:0d:ac:9c:0c:1e:4f: ea:21:0e:e8:a7:85:9d:95:45:d4:ae:a7:31:1e:1f: 55:b2:35:c4:fa:ec:9c:0b:a4:f1:5a:c2:f5:5f:ec: 3f:3b:08:44:e9:22:63:0d:33:1f:b5:29:bc:ee:7e: 35:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DB:80:4C:AD:2F:5D:43:91:81:38:D0:4C:E3:91:08:C9:FA:94:3D X509v3 Authority Key Identifier: keyid:34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:0c:a0:e2:3a:dc:19:7c:9e:db:26:8a:3d:bf:3e:0c:2e:ef: 6d:2b:bd:f6:38:bd:a0:33:27:80:21:74:0f:f1:d4:d7:a9:67: 63:79:2d:31:d7:48:e2:62:8d:3d:e2:8a:1d:ff:56:48:e5:1d: 70:75:6c:e8:2a:da:7b:2b:83:0f:a6:95:0d:38:52:56:72:29: 52:62:b1:a9:af:72:0a:14:99:4f:ff:07:1b:17:a6:45:4d:6e: a3:46:72:12:c4:b3:b5:af:f5:85:d9:40:cf:98:de:23:cd:c0: c8:c3:80:b3:c0:35:90:a5:c0:95:d8:e4:47:e4:82:5b:f4:2a: 38:1c:3d:0b:76:c5:18:a7:ad:8b:a9:e4:bf:5d:cc:ff:91:da: 2e:d0:ae:34:af:27:ed:b5:4a:86:6e:cb:c6:67:a6:36:4b:63: b0:43:b8:6b:a5:4d:b2:82:1c:33:6f:3b:80:40:18:98:1e:33: 2a:4d:45:6a:36:23:7a:6f:aa:e6:97:4a:7d:a1:e2:e2:db:29: aa:21:93:3b:0b:ad:b0:8c:cb:70:23:1d:78:bb:c1:f8:d8:1f: d7:93:e4:0a:8b:f9:fe:97:83:54:31:d4:1c:dc:4e:58:d2:de: d6:38:ab:45:5c:a3:a0:8c:ef:60:a2:64:85:6e:e2:0d:a9:79: df:f8:4b:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0IzNjExMC8GA1UEBRMoMzRGMEY4Q0Q4N0I4OEM0RjUyMEU0NkZCOTVEMkRCODRG QTA0MzM2MjAeFw0yNTEyMDcwNTA4NTFaFw0yNTEyMTQwNTA4NTFaMBgxFjAUBgNV BAMTDTY5MzUwYmU0LTZiMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClX4O/o5Q9UdNugO0CjRKTIr3gpWWFa6ekLdeNYUt0Sw2RtkfdNIRBpFNJsPGv M3gRDxF1WplVrrgBoFb7GX/dhtZxWeFnattcMxxkDyi1tOtKJdlihaLi0mpdW/PJ gWkSB7k6/vU2FTXfvcDbke3dBc5dqTuIFyzLEdFXVb5jHQfO1dXbDzn2IGyrHjda rRLvlSdNpQ45x2jE1qKSf5/7nLLERXTdJH8l7bMT+omcPADMZ/6JygQnsjsDYlVv LtL7EtGWOhhzKlClig2snAweT+ohDuinhZ2VRdSupzEeH1WyNcT67JwLpPFawvVf 7D87CETpImMNMx+1KbzufjXXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhNuATK0v XUORgTjQTOORCMn6lD0wHwYDVR0jBBgwFoAUNPD4zYe4jE9SDkb7ldLbhPoEM2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3QjM2LzcyRTZGQTI2NDA4 RjExRjBCMzRBRUY0N0M0RjlBRTAyL05QRDR6WWU0akU5U0RrYjdsZExiaFBvRU0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlBENHpZZTRqRTlTRGtiN2xkTGJoUG9FTTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 QjM2LzcyRTZGQTI2NDA4RjExRjBCMzRBRUY0N0M0RjlBRTAyL05QRDR6WWU0akU5 U0RrYjdsZExiaFBvRU0ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHoMoOI63Bl8ntsmij2/Pgwu720rvfY4vaAzJ4AhdA/x1NepZ2N5LTHX SOJijT3iih3/VkjlHXB1bOgq2nsrgw+mlQ04UlZyKVJisamvcgoUmU//BxsXpkVN bqNGchLEs7Wv9YXZQM+Y3iPNwMjDgLPANZClwJXY5Efkglv0KjgcPQt2xRinrYup 5L9dzP+R2i7QrjSvJ+21SoZuy8ZnpjZLY7BDuGulTbKCHDNvO4BAGJgeMypNRWo2 I3pvquaXSn2h4uLbKaohkzsLrbCMy3AjHXi7wfjYH9eT5AqL+f6Xg1Qx1BzcTljS 3tY4q0Vco6CM72CiZIVu4g2ped/4S/w= -----END CERTIFICATE-----Generated at Mon Dec 8 06:07:40 2025 by rpki-client