This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft File: NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft (raw, json) Hash identifier: lDUSIQceYFpoY6uGAowL4sHmQw7sdI9bOhotqozZi5o= Subject key identifier: 20:CA:90:3F:5D:62:06:F9:74:C6:72:40:F5:6A:85:36:34:51:23:49 Authority key identifier: 34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A Certificate issuer: /CN=A91B927E/serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Certificate serial: 0AAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft Manifest number: 1204 Signing time: Mon 22 Dec 2025 18:57:59 +0000 Manifest this update: Mon 22 Dec 2025 18:57:58 +0000 Manifest next update: Mon 29 Dec 2025 18:57:58 +0000 Files and hashes: 1: NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl (hash: lvmCKSNkNMSaBhFAfFOWk1Li37x0DWMViGrjakW1M1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2731 (0xaab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E, serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Validity Not Before: Dec 22 18:57:58 2025 GMT Not After : Dec 29 18:57:58 2025 GMT Subject: CN=694994b6-a55a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:0b:f9:ea:01:52:75:dc:b1:0e:53:97:fb: 6b:b9:42:bb:b4:fb:a0:eb:d8:2b:75:90:0d:4e:d5: 7b:06:53:0b:08:cb:e9:55:01:15:79:e3:cb:a1:08: 64:4a:98:6c:ee:57:64:75:70:c3:91:8f:45:60:e2: 84:f9:74:38:6f:e6:13:76:5f:59:49:2d:35:aa:40: e3:ed:11:d6:5f:4c:9e:0a:3e:02:23:ac:23:82:19: e3:12:9f:17:0f:64:77:9b:b4:52:63:94:a7:3c:56: ff:28:e4:15:3e:08:4c:f0:c0:66:22:67:a0:54:33: fa:2e:59:20:af:c2:c2:f7:3f:64:04:30:b6:ca:78: e6:19:7f:86:2d:1b:d3:1b:c1:ce:a7:ae:43:f8:f1: 2c:2a:97:ae:9a:ee:8b:c7:c8:88:65:67:56:f0:76: f4:4f:b3:c9:f3:23:bd:a1:81:c2:4e:e5:9d:93:51: 2c:6d:9d:c6:c5:30:1b:a4:87:c2:e9:22:3b:0a:0e: 45:c8:bb:a0:dc:96:5a:d3:ff:e6:d2:37:d0:a2:c8: b4:2f:5c:f3:9f:ac:9a:90:28:2a:a6:af:e8:c7:29: 67:f2:1b:de:63:bf:e4:fa:f3:ec:a7:9a:49:5c:e2: 86:b2:02:98:43:4b:ca:bb:d1:d7:f7:9d:1e:b9:f8: cf:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CA:90:3F:5D:62:06:F9:74:C6:72:40:F5:6A:85:36:34:51:23:49 X509v3 Authority Key Identifier: keyid:34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:75:f5:f9:3f:58:8b:5e:f1:ca:95:52:60:52:ff:b3:9f:41: 4d:d1:d4:fe:5f:c6:fc:ba:5b:24:68:bf:33:8b:4b:0c:82:dd: 3c:bb:81:6b:87:2c:9c:80:1d:08:7c:62:d7:d7:9c:3e:43:2c: 45:56:61:fe:7b:c6:d5:42:d8:11:0c:3b:55:16:6a:a2:6a:b0: c6:98:27:4b:54:e9:39:62:55:9a:e5:57:24:fc:32:0d:f5:0d: f3:c4:e4:9d:8e:bf:26:e5:11:3e:b0:c7:e0:86:2c:c4:b5:41: a0:7a:2f:3e:23:39:5d:c2:5e:6c:f8:19:22:b6:8b:53:84:f9: a4:91:3a:de:ad:20:f4:b0:0f:cc:1e:10:2d:7b:f2:43:e7:b7: 4d:bc:8a:9e:f9:91:fb:42:09:d0:a1:23:98:6d:2d:6c:5f:8c: d2:b4:5a:33:f1:58:51:46:a7:cc:e3:d3:0c:1a:76:80:91:4a: bc:50:ea:8c:1d:5e:eb:b5:e6:6e:37:dd:b8:6b:15:66:b0:80: 2d:86:ac:d2:18:72:a5:be:04:a3:79:45:ef:22:c0:de:4e:de: 8e:9d:2f:94:e4:65:f2:25:f7:8a:e1:97:9c:ec:a6:94:9d:5b: 31:5a:7d:24:59:88:a5:9b:e2:76:7a:ed:1e:8d:c2:99:3b:09: 9e:c4:30:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDM0NkRGMEVGNEQ4QkM2M0MzODI0RDZFNDkwMDY3NDYz MjU0N0IwOEEwHhcNMjUxMjIyMTg1NzU4WhcNMjUxMjI5MTg1NzU4WjAYMRYwFAYD VQQDDA02OTQ5OTRiNi1hNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFcL+eoBUnXcsQ5Tl/truUK7tPug69grdZANTtV7BlMLCMvpVQEVeePLoQhk Sphs7ldkdXDDkY9FYOKE+XQ4b+YTdl9ZSS01qkDj7RHWX0yeCj4CI6wjghnjEp8X D2R3m7RSY5SnPFb/KOQVPghM8MBmImegVDP6Llkgr8LC9z9kBDC2ynjmGX+GLRvT G8HOp65D+PEsKpeumu6Lx8iIZWdW8Hb0T7PJ8yO9oYHCTuWdk1EsbZ3GxTAbpIfC 6SI7Cg5FyLug3JZa0//m0jfQosi0L1zzn6yakCgqpq/oxyln8hveY7/k+vPsp5pJ XOKGsgKYQ0vKu9HX950eufjPxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDKkD9d Ygb5dMZyQPVqhTY0USNJMB8GA1UdIwQYMBaAFDRt8O9Ni8Y8OCTW5JAGdGMlR7CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhqdzRKTmJra0FaMFl5Vkhz SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05HM3c3MDJMeGp3NEpOYmtrQVowWXlWSHNJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI3RS9DQ0Q2RUQxQzY4REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhq dzRKTmJra0FaMFl5VkhzSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMdfX5P1iLXvHKlVJgUv+zn0FN0dT+X8b8ulskaL8zi0sMgt08u4Fr hyycgB0IfGLX15w+QyxFVmH+e8bVQtgRDDtVFmqiarDGmCdLVOk5YlWa5Vck/DIN 9Q3zxOSdjr8m5RE+sMfghizEtUGgei8+Izldwl5s+BkitotThPmkkTrerSD0sA/M HhAte/JD57dNvIqe+ZH7QgnQoSOYbS1sX4zStFoz8VhRRqfM49MMGnaAkUq8UOqM HV7rteZuN924axVmsIAthqzSGHKlvgSjeUXvIsDeTt6OnS+U5GXyJfeK4Zec7KaU nVsxWn0kWYilm+J2eu0ejcKZOwmexDBB -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:08 2025 by rpki-client