This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: 5oodHmqUuDc0P+QrNn0kSNDzhcTq4pW6jTGK1Ft1WLA= Subject key identifier: 0D:CF:6F:93:D7:83:39:EF:7E:EA:85:20:6F:69:2A:F9:11:98:88:11 Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: FB Signing time: Tue 23 Dec 2025 04:21:35 +0000 Manifest this update: Tue 23 Dec 2025 04:21:35 +0000 Manifest next update: Tue 30 Dec 2025 04:21:35 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: aSAY413cOvfGUfi4JXnoSCNe1BkToR/BUIhLaHVMV/4=) 2: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) 3: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: Dec 23 04:21:35 2025 GMT Not After : Dec 30 04:21:35 2025 GMT Subject: CN=694a18cf-9acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:05:dd:95:a8:4f:72:3f:55:10:58:97:88:5c: 4b:2a:21:32:bd:95:19:c1:4f:1c:e9:c9:b3:88:61: f8:40:b7:cd:88:73:ce:b5:e8:9a:79:ae:25:34:0a: 97:02:3d:6f:e4:d4:e1:a2:1d:40:ec:d1:db:a0:3f: d0:87:a9:58:6a:7f:75:4d:c5:25:e4:d3:d1:6b:c5: d3:92:77:34:ee:85:f3:ed:ec:60:3b:58:6f:37:5e: a0:63:df:13:0a:81:7e:5a:6a:c7:1b:44:ad:e4:a8: d2:2c:1f:fd:fe:b6:2d:e7:80:f4:d6:9e:2c:73:47: 1f:e2:b5:f9:8e:9b:52:71:de:0e:4b:5a:ce:87:3f: bb:2e:fc:5c:0e:06:f4:33:7f:51:a7:9f:10:be:bc: 3f:c1:43:cc:5e:a5:b3:34:d1:a8:ee:30:b9:48:ec: bf:e2:1a:26:4c:17:27:3d:e0:47:95:c1:6c:c9:a0: 5f:a2:d1:84:9e:88:b8:06:e9:0c:d7:dc:6e:90:95: 47:bf:63:69:a0:b2:71:da:e6:3c:aa:1b:ae:0d:22: f9:2b:3c:e4:2f:11:0f:4c:60:93:57:c0:46:d2:b4: 12:a9:c0:b0:35:ed:00:8e:79:49:dd:3b:7a:d2:76: 6a:53:71:4f:ca:3d:4d:9b:9c:b1:ae:6c:d8:ac:5e: 3d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CF:6F:93:D7:83:39:EF:7E:EA:85:20:6F:69:2A:F9:11:98:88:11 X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c4:65:f5:0e:95:64:36:3a:b5:20:86:76:d0:4f:be:84:38: 91:0a:45:89:ca:7f:79:69:6f:54:10:f6:d6:58:96:2c:4c:10: 5e:4b:13:c2:91:b9:f3:09:0e:b4:c6:10:9a:ee:42:56:25:14: 60:0a:b1:e1:3a:2d:08:cd:7e:a8:36:ca:8e:76:20:6c:e4:98: 42:fa:77:c2:93:a9:1a:a1:ec:37:7d:a5:55:dd:cd:fb:88:2c: 97:08:34:c8:65:f9:08:89:71:80:26:7a:bf:89:8d:88:4e:91: 09:32:34:30:1f:8e:d0:aa:e3:93:ca:52:73:bc:b5:e1:a9:a7: 8c:be:53:e8:b7:57:cc:45:59:de:52:79:f1:06:53:6a:82:6b: 3c:e2:f6:e2:4b:1c:a2:bb:a6:bc:18:9f:17:0e:6d:88:f2:fc: 14:9e:22:50:52:af:77:6e:04:10:a3:e7:02:20:84:21:b7:eb: 42:78:9f:35:82:7a:45:57:43:40:8e:87:91:5e:57:6f:06:49: 94:48:d9:99:f1:b0:d3:63:02:19:fc:3f:95:84:a0:f2:bc:e4: c3:9c:5d:93:a6:f9:5a:97:5c:5e:e2:ec:2b:22:ec:fd:20:c0: 48:9b:8e:28:f1:70:56:e8:5f:a2:2d:b6:55:e3:04:90:1d:92: ca:15:a6:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUxMjIzMDQyMTM1WhcNMjUxMjMwMDQyMTM1WjAYMRYwFAYD VQQDDA02OTRhMThjZi05YWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogXdlahPcj9VEFiXiFxLKiEyvZUZwU8c6cmziGH4QLfNiHPOteiaea4lNAqX Aj1v5NThoh1A7NHboD/Qh6lYan91TcUl5NPRa8XTknc07oXz7exgO1hvN16gY98T CoF+WmrHG0St5KjSLB/9/rYt54D01p4sc0cf4rX5jptScd4OS1rOhz+7LvxcDgb0 M39Rp58Qvrw/wUPMXqWzNNGo7jC5SOy/4homTBcnPeBHlcFsyaBfotGEnoi4BukM 19xukJVHv2NpoLJx2uY8qhuuDSL5KzzkLxEPTGCTV8BG0rQSqcCwNe0AjnlJ3Tt6 0nZqU3FPyj1Nm5yxrmzYrF497QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3Pb5PX gznvfuqFIG9pKvkRmIgRMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDxGX1DpVkNjq1IIZ20E++hDiRCkWJyn95aW9UEPbWWJYsTBBeSxPC kbnzCQ60xhCa7kJWJRRgCrHhOi0IzX6oNsqOdiBs5JhC+nfCk6kaoew3faVV3c37 iCyXCDTIZfkIiXGAJnq/iY2ITpEJMjQwH47QquOTylJzvLXhqaeMvlPot1fMRVne UnnxBlNqgms84vbiSxyiu6a8GJ8XDm2I8vwUniJQUq93bgQQo+cCIIQht+tCeJ81 gnpFV0NAjoeRXldvBkmUSNmZ8bDTYwIZ/D+VhKDyvOTDnF2Tpvlal1xe4uwrIuz9 IMBIm44o8XBW6F+iLbZV4wSQHZLKFaaU -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:42 2025 by rpki-client