This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: 8Q76aqO9ig97JfK9Rkms8ABf19eSgLGDbfCTBfMfyzU= Subject key identifier: 14:63:85:8C:2F:78:A4:B5:8C:F5:10:63:82:9C:26:C0:7E:9C:07:E8 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 010C Signing time: Tue 23 Dec 2025 03:59:43 +0000 Manifest this update: Tue 23 Dec 2025 03:59:43 +0000 Manifest next update: Tue 30 Dec 2025 03:59:43 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: xiiDPacr1xN1pFYSohcpn30vOoH+lEtYmlZ284MgDdE=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: gcIhWP5NO91lJBfeWuctKx1kLPZssG1GkCQYCQaZs38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Dec 23 03:59:43 2025 GMT Not After : Dec 30 03:59:43 2025 GMT Subject: CN=694a13af-e378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ed:ad:8f:ee:4c:27:c0:fc:fb:c9:56:a1:5a: 84:a3:09:aa:d2:37:a7:f1:7d:ab:65:08:e3:7e:65: 13:3d:bc:08:b8:16:cd:5c:16:9a:53:a9:e8:b5:9a: b0:a8:9d:0f:14:de:34:cb:43:af:4e:38:65:b8:17: de:61:f1:cf:25:79:96:b4:4f:a7:7a:96:8e:7a:79: 5a:34:14:2f:39:d3:d2:1b:db:a9:db:94:90:55:04: 74:c6:12:18:29:23:6e:71:17:2f:18:7f:57:41:47: f7:59:7e:f0:8d:85:45:09:11:6d:81:60:52:58:15: 07:e6:98:ae:25:67:26:31:92:2e:73:cf:71:5e:2e: c7:e9:09:bb:00:4c:44:83:ca:79:a9:ca:55:68:b5: a4:59:d9:b6:04:6c:d0:2e:02:c0:c9:6e:c7:cb:87: b4:a3:da:c2:db:74:f5:9c:4d:ab:55:af:a3:7b:69: 16:0b:ee:4c:72:a9:1d:d5:fe:b5:4a:4c:60:4c:d8: 5d:3d:76:2a:71:48:8a:de:cf:c1:86:a7:fc:1e:28: 81:d5:0d:b2:75:98:50:6d:7d:26:b7:08:78:ee:6e: 17:ea:01:d8:64:76:f9:84:13:32:84:e9:a1:7f:2f: d5:a4:5c:1c:12:b3:08:e9:9c:03:05:75:1a:17:33: 00:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:63:85:8C:2F:78:A4:B5:8C:F5:10:63:82:9C:26:C0:7E:9C:07:E8 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:df:88:8d:a7:f3:f5:ef:2e:21:e0:2f:54:e9:5b:58:c5:19: e5:2a:f6:74:66:81:e0:f3:e8:3c:4e:ac:69:0f:f8:10:3e:dc: db:60:2e:55:0e:8b:a7:a4:c4:92:14:13:ed:32:d9:aa:fd:4d: 93:f7:e8:af:a5:86:37:0b:c7:ce:c9:53:6f:81:7d:7c:c9:92: f4:4e:2e:87:e6:ae:b1:fe:02:a0:89:06:ab:20:e5:f0:b5:07: 45:f5:78:c8:b2:d5:fc:ad:cc:d4:7d:4a:d5:fe:15:74:80:f8: 47:40:e4:4f:4e:ed:6e:7e:00:75:94:0c:8e:06:88:0e:1b:05: 2f:c1:3b:e2:fb:0a:a0:46:b4:c6:bc:27:50:66:06:de:4d:cd: 91:1f:06:15:c9:a3:9c:bc:ce:1f:ef:14:bc:4c:11:16:ab:1f: 5d:86:d5:70:5c:c8:a9:eb:ca:f1:c9:90:fa:4b:c6:33:a2:c4: 60:fd:2c:c6:a7:93:8c:f6:33:1c:11:5a:c5:a2:b8:bf:0b:ae: 1f:76:0c:d3:75:37:dd:36:b2:96:7c:e3:13:aa:c4:a5:2c:83: 4d:8f:53:02:a7:55:bc:08:a6:c8:9d:06:95:c0:bf:7c:17:0d: 42:5d:45:4d:2a:6c:fe:24:09:b0:3a:a5:25:38:45:7d:69:7a: 3e:8a:71:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUxMjIzMDM1OTQzWhcNMjUxMjMwMDM1OTQzWjAYMRYwFAYD VQQDDA02OTRhMTNhZi1lMzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+2tj+5MJ8D8+8lWoVqEowmq0jen8X2rZQjjfmUTPbwIuBbNXBaaU6notZqw qJ0PFN40y0OvTjhluBfeYfHPJXmWtE+nepaOenlaNBQvOdPSG9up25SQVQR0xhIY KSNucRcvGH9XQUf3WX7wjYVFCRFtgWBSWBUH5piuJWcmMZIuc89xXi7H6Qm7AExE g8p5qcpVaLWkWdm2BGzQLgLAyW7Hy4e0o9rC23T1nE2rVa+je2kWC+5Mcqkd1f61 SkxgTNhdPXYqcUiK3s/Bhqf8HiiB1Q2ydZhQbX0mtwh47m4X6gHYZHb5hBMyhOmh fy/VpFwcErMI6ZwDBXUaFzMAjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRjhYwv eKS1jPUQY4KcJsB+nAfoMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa34iNp/P17y4h4C9U6VtYxRnlKvZ0ZoHg8+g8TqxpD/gQPtzbYC5V DounpMSSFBPtMtmq/U2T9+ivpYY3C8fOyVNvgX18yZL0Ti6H5q6x/gKgiQarIOXw tQdF9XjIstX8rczUfUrV/hV0gPhHQORPTu1ufgB1lAyOBogOGwUvwTvi+wqgRrTG vCdQZgbeTc2RHwYVyaOcvM4f7xS8TBEWqx9dhtVwXMip68rxyZD6S8YzosRg/SzG p5OM9jMcEVrFori/C64fdgzTdTfdNrKWfOMTqsSlLINNj1MCp1W8CKbInQaVwL98 Fw1CXUVNKmz+JAmwOqUlOEV9aXo+inGp -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:12 2025 by rpki-client