This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: cpvk/GuxHRyuO90lW4LJL/olV0nRPDigFaNTdBo7Alc= Subject key identifier: 35:42:B8:16:1E:BB:CF:42:9C:67:67:AD:06:9D:07:56:B7:48:99:59 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 0149 Signing time: Tue 23 Dec 2025 03:16:56 +0000 Manifest this update: Tue 23 Dec 2025 03:16:56 +0000 Manifest next update: Tue 30 Dec 2025 03:16:56 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: Y+GdpL/1537ve+PNzX7S5yQUlV+nErHERQTphBxQPjE=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Dec 23 03:16:56 2025 GMT Not After : Dec 30 03:16:56 2025 GMT Subject: CN=694a09a8-ad64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a1:d0:76:79:56:90:e0:51:c9:7f:cc:c1:b5: f0:29:03:f7:b7:20:1d:c0:e0:28:9e:33:46:48:a3: d1:47:a3:fa:3d:cb:b5:02:fb:b2:02:e0:4e:1e:f5: 19:2f:f1:63:64:3d:d4:9d:ef:90:c3:75:87:87:42: 14:55:7c:3e:33:49:57:27:5a:28:3c:b2:15:42:37: 53:83:7f:3e:80:dd:f3:50:66:e5:93:d5:8f:37:bc: 93:e2:f8:24:0f:da:ba:20:b4:ac:dc:f3:27:34:01: ae:60:82:9f:09:3f:ea:5d:a7:d2:1e:70:1d:b0:88: 72:8c:f6:e4:df:48:78:bc:d9:3e:e3:ba:f8:f3:17: de:d3:fc:33:2f:72:0c:61:e3:a8:85:ff:56:e3:a1: 0e:b8:90:85:c7:8b:c8:a3:ea:f2:3f:bb:50:1a:88: 5b:d8:e2:f5:d9:ae:ab:f4:e2:80:17:e3:49:fb:c4: e2:d4:4d:93:2e:15:bf:c0:0c:c0:d8:45:56:a9:d5: e6:24:30:66:80:68:37:6a:38:4e:7a:c4:04:36:90: 95:8b:24:50:0b:2c:1d:9a:6d:0c:61:66:8a:a0:be: c5:d9:72:13:d9:53:8c:dd:1f:81:aa:ae:63:50:d2: 12:12:0b:e9:d5:fb:2f:f9:0b:83:60:3e:04:4d:be: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:42:B8:16:1E:BB:CF:42:9C:67:67:AD:06:9D:07:56:B7:48:99:59 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:16:d0:84:42:5b:e2:b9:c6:54:a9:d8:1f:c0:28:64:b5:08: f7:68:c9:5c:14:e5:c1:0f:d1:88:fb:81:1c:56:7b:4d:ae:5f: 5d:04:a4:98:ce:c4:22:bd:20:96:32:5a:ba:dd:e6:8a:96:6d: a7:11:3d:cc:04:70:f3:0a:11:46:9e:9e:5d:1a:a2:a7:0c:c3: 76:ec:53:4c:12:8f:81:6d:ec:83:d2:ad:c1:92:0c:c5:01:d7: 2f:3f:09:da:34:35:88:9b:18:23:50:49:a7:53:32:c9:7b:4d: 16:62:02:46:b8:9f:6d:7f:e7:29:55:d6:ca:34:40:7d:9d:f8: ec:f3:43:67:67:7a:15:cb:72:0b:66:0b:f0:28:0d:f8:5d:ff: 1e:39:0a:2b:26:73:30:19:1f:77:51:a0:3f:61:86:6a:d8:15: 59:a5:e4:f6:99:17:da:9d:e4:2f:d9:56:77:3b:c4:0a:bb:75: 47:89:56:7e:e9:e6:38:f2:60:b8:5e:51:0f:22:b8:2a:07:c9: 1a:d8:56:1c:6c:58:f0:dd:d9:2a:31:04:54:d3:61:93:1b:50: e0:d6:79:c9:04:8d:fe:83:4c:40:4d:73:40:52:1b:70:48:3e: ea:0d:01:83:a0:6d:b2:8b:aa:34:0b:d3:85:0d:01:9f:ae:72: c5:60:b0:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUxMjIzMDMxNjU2WhcNMjUxMjMwMDMxNjU2WjAYMRYwFAYD VQQDDA02OTRhMDlhOC1hZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqHQdnlWkOBRyX/MwbXwKQP3tyAdwOAonjNGSKPRR6P6Pcu1AvuyAuBOHvUZ L/FjZD3Une+Qw3WHh0IUVXw+M0lXJ1ooPLIVQjdTg38+gN3zUGblk9WPN7yT4vgk D9q6ILSs3PMnNAGuYIKfCT/qXafSHnAdsIhyjPbk30h4vNk+47r48xfe0/wzL3IM YeOohf9W46EOuJCFx4vIo+ryP7tQGohb2OL12a6r9OKAF+NJ+8Ti1E2TLhW/wAzA 2EVWqdXmJDBmgGg3ajhOesQENpCViyRQCywdmm0MYWaKoL7F2XIT2VOM3R+Bqq5j UNISEgvp1fsv+QuDYD4ETb6S2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVCuBYe u89CnGdnrQadB1a3SJlZMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCFtCEQlviucZUqdgfwChktQj3aMlcFOXBD9GI+4EcVntNrl9dBKSY zsQivSCWMlq63eaKlm2nET3MBHDzChFGnp5dGqKnDMN27FNMEo+BbeyD0q3BkgzF AdcvPwnaNDWImxgjUEmnUzLJe00WYgJGuJ9tf+cpVdbKNEB9nfjs80NnZ3oVy3IL ZgvwKA34Xf8eOQorJnMwGR93UaA/YYZq2BVZpeT2mRfaneQv2VZ3O8QKu3VHiVZ+ 6eY48mC4XlEPIrgqB8ka2FYcbFjw3dkqMQRU02GTG1Dg1nnJBI3+g0xATXNAUhtw SD7qDQGDoG2yi6o0C9OFDQGfrnLFYLBa -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:56 2025 by rpki-client