This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: PWA1tCTsYHGI2c518hgmJIlFI2Stl5UvvRToR2AjG2k= Subject key identifier: E7:13:E8:ED:B0:80:27:89:08:17:66:35:73:B1:31:9F:8C:12:19:ED Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 010C Signing time: Tue 23 Dec 2025 03:58:42 +0000 Manifest this update: Tue 23 Dec 2025 03:58:42 +0000 Manifest next update: Tue 30 Dec 2025 03:58:42 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: 8hflsDqWYSJeFBCrnXu9Hha514qS9NN762/WeVLMbWU=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Dec 23 03:58:42 2025 GMT Not After : Dec 30 03:58:42 2025 GMT Subject: CN=694a1372-b740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:65:b8:b6:f2:99:8f:e9:ef:09:76:9f:f3:f9: 53:fa:6b:7b:7d:9e:e1:e2:58:a6:29:2a:59:e3:ee: b5:46:07:60:c1:d8:24:5d:a1:c0:19:a6:94:1f:02: 9a:0f:61:13:ab:1f:16:a3:59:d7:52:bf:b0:f1:f7: b2:1b:2b:80:e2:de:d3:31:97:f2:59:da:bd:55:b7: d0:73:f6:b6:2b:89:16:5b:fa:36:d7:ed:e8:38:b3: 24:78:4a:df:3a:f6:b5:e8:6e:69:05:20:a4:e5:f0: 42:e1:b3:b7:44:07:6c:bc:be:0e:12:2d:a2:74:6c: 81:68:ff:6c:d7:0b:dc:51:4a:81:0b:a0:ec:d9:e6: a0:cb:0e:61:e0:d5:31:90:e8:3b:2b:42:7b:ea:02: 81:f9:cf:74:a3:d9:71:ff:25:c7:d1:0a:67:14:9a: 74:a0:1b:c2:a1:f1:e7:ba:b7:db:12:69:4f:ce:95: b5:a2:a4:27:a6:07:37:1a:f8:52:40:49:f4:87:2a: 13:d4:63:e3:a4:70:05:78:61:1e:9a:89:91:95:14: 3f:73:05:1d:53:15:f2:27:1c:80:5f:0c:ce:47:b7: 11:b5:97:78:06:a2:d1:b0:e0:40:a9:4c:23:3a:70: 66:0f:12:81:f1:8c:21:1a:ae:e6:f0:1e:f4:ff:9b: 7e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:13:E8:ED:B0:80:27:89:08:17:66:35:73:B1:31:9F:8C:12:19:ED X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ff:a3:26:56:03:65:bb:f3:25:7d:fd:aa:5f:3e:a8:86:63: 0b:87:0c:32:48:f6:b7:a7:26:3d:b1:cb:b5:be:64:41:4d:9c: 1b:6b:71:ea:db:9c:da:09:d6:a0:b3:a3:4c:e1:08:ca:b2:a5: 8a:2a:a8:23:90:f9:c4:5e:50:8d:13:e4:68:49:df:a2:9b:e4: 21:f2:4c:24:67:64:8c:ee:2e:ea:43:dd:e1:74:cc:ed:67:ef: 05:d0:bb:9b:de:4d:82:f8:c7:c6:eb:e7:22:42:f7:cd:09:06: f1:16:79:7f:9c:db:8f:dd:d4:8f:22:85:a0:e2:fe:e3:b5:9a: 50:69:0a:ad:ff:31:cd:f9:b4:ed:c7:d9:0d:42:ff:bd:f5:73: 88:03:2b:ed:47:ea:16:19:99:e4:ac:81:1c:73:48:5a:60:03: 42:d2:21:60:c4:d4:5b:d2:a0:92:c6:da:a0:c5:6e:b0:94:31: 1d:a2:38:56:e2:02:ae:8b:da:d2:5f:73:a7:55:0a:bb:26:eb: 3e:19:b0:44:c7:97:87:8f:b5:c8:d5:b9:20:8d:94:27:0d:58: 54:ca:15:3c:f9:1d:b0:41:eb:16:4b:fd:1c:8d:02:dd:43:22: 97:f0:3f:95:1a:d2:99:88:43:bf:c8:55:a2:8c:5d:2b:3b:b8: b4:3a:05:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUxMjIzMDM1ODQyWhcNMjUxMjMwMDM1ODQyWjAYMRYwFAYD VQQDDA02OTRhMTM3Mi1iNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWW4tvKZj+nvCXaf8/lT+mt7fZ7h4limKSpZ4+61RgdgwdgkXaHAGaaUHwKa D2ETqx8Wo1nXUr+w8feyGyuA4t7TMZfyWdq9VbfQc/a2K4kWW/o21+3oOLMkeErf Ova16G5pBSCk5fBC4bO3RAdsvL4OEi2idGyBaP9s1wvcUUqBC6Ds2eagyw5h4NUx kOg7K0J76gKB+c90o9lx/yXH0QpnFJp0oBvCofHnurfbEmlPzpW1oqQnpgc3GvhS QEn0hyoT1GPjpHAFeGEemomRlRQ/cwUdUxXyJxyAXwzOR7cRtZd4BqLRsOBAqUwj OnBmDxKB8YwhGq7m8B70/5t+RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcT6O2w gCeJCBdmNXOxMZ+MEhntMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS/6MmVgNlu/Mlff2qXz6ohmMLhwwySPa3pyY9scu1vmRBTZwba3Hq 25zaCdags6NM4QjKsqWKKqgjkPnEXlCNE+RoSd+im+Qh8kwkZ2SM7i7qQ93hdMzt Z+8F0Lub3k2C+MfG6+ciQvfNCQbxFnl/nNuP3dSPIoWg4v7jtZpQaQqt/zHN+bTt x9kNQv+99XOIAyvtR+oWGZnkrIEcc0haYANC0iFgxNRb0qCSxtqgxW6wlDEdojhW 4gKui9rSX3OnVQq7Jus+GbBEx5eHj7XI1bkgjZQnDVhUyhU8+R2wQesWS/0cjQLd QyKX8D+VGtKZiEO/yFWijF0rO7i0OgVE -----END CERTIFICATE-----Generated at Tue Dec 23 19:44:01 2025 by rpki-client