This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: tk2U4kslbVibYTayd/zrnSIkanU1qjfmtmH0/VNTJek= Subject key identifier: 38:DA:78:91:BF:2E:FF:84:22:79:40:94:69:05:5B:A5:53:46:FF:89 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0762 Signing time: Mon 22 Dec 2025 21:02:38 +0000 Manifest this update: Mon 22 Dec 2025 21:02:37 +0000 Manifest next update: Mon 29 Dec 2025 21:02:37 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: R/+2B6Vg9dkVzgAXzDb/Ax/FUfoj+ll9StkbKDLHPqs=) 2: 9E0384D2D4AE11F0B3093770C4F9AE02.roa (hash: v9CiHNMRCrRNTUccG0SyqMKRfuFAi8FsxcmJZoqH2g8=) 3: C0A5C572D4AE11F09CAAC470C4F9AE02.roa (hash: ZbqbOG3uh5n+hczWnY2OdSYc4lMF9Ek9bYP/9K6LgcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Dec 22 21:02:37 2025 GMT Not After : Dec 29 21:02:37 2025 GMT Subject: CN=6949b1ee-c9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fc:16:f6:7b:d8:99:48:0d:d1:84:bb:f8:53: 72:16:2e:5e:9b:a3:bf:0d:13:9e:3c:13:e5:68:a5: 24:44:95:2e:fb:7e:9a:7e:82:dd:38:fd:30:09:bb: 32:b1:3e:e4:34:d1:7c:2a:c4:1d:bd:cf:57:47:66: dc:1f:49:d1:09:43:ba:b2:71:40:a8:9b:28:a2:39: f0:da:c5:36:21:66:c1:34:76:d8:a9:28:45:90:90: 80:d3:04:f2:74:0d:0e:86:82:0f:34:b0:0f:38:db: 75:c3:57:0c:9c:a8:04:55:71:46:b3:6d:13:10:ab: dd:df:c8:f4:2f:4d:95:ac:31:0a:e6:d7:75:6d:10: af:f8:73:0f:12:25:aa:ee:0d:0b:53:23:4c:cb:1a: ed:d6:49:7f:bb:00:45:f6:93:f1:ea:76:d9:56:d3: e2:92:7b:57:56:73:e6:91:fa:dc:0b:da:79:d2:89: 2c:3e:41:4e:03:ab:4c:44:98:c4:4b:d9:76:c6:85: c0:5f:34:b1:3e:6c:34:00:e3:b2:2a:ee:2f:82:47: ce:37:6a:1a:6d:e5:d7:6e:c8:d0:cd:60:14:49:ed: ed:8f:b4:43:df:5b:9e:c8:37:a6:7d:46:5c:ee:fb: 69:3b:71:aa:e7:51:02:1a:ce:5f:fb:f0:d3:9c:14: 72:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DA:78:91:BF:2E:FF:84:22:79:40:94:69:05:5B:A5:53:46:FF:89 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ec:25:5b:6d:63:76:e0:fa:5d:50:17:a9:93:a8:18:4c:72: d1:91:db:41:7d:75:3f:94:41:27:df:36:53:15:57:67:b9:77: 26:1c:55:1e:52:a5:2e:9c:5c:bc:4e:1d:88:e3:01:47:65:68: be:b7:4f:d2:8b:67:76:7d:da:e6:d9:0c:30:a6:a8:23:09:b9: c7:d5:7e:b9:6a:ed:42:1e:53:03:9d:d4:c8:b4:eb:fa:c4:13: 5c:c3:7b:5c:02:a5:12:cf:af:bb:28:cc:7e:c1:17:0c:8d:68: 9c:57:fc:7f:5c:0c:1c:ff:3b:23:25:18:e7:74:35:04:c3:9e: 18:1a:ea:e7:16:75:cd:98:a6:dd:8e:4a:7f:45:6c:b7:4c:a1: 20:79:0b:fb:2a:6c:68:cf:33:5a:1f:12:d3:f5:d5:41:65:e1: 94:32:2d:c1:e1:9f:92:6e:d1:ea:cb:ac:23:79:16:0a:b2:21: 77:fe:4a:17:7d:af:ab:96:64:00:00:7e:f2:34:59:5b:73:8d: 2a:60:62:f9:fe:08:c5:12:93:96:73:fc:cb:f2:a5:47:42:d5: d9:d5:0d:47:91:74:4e:ff:7d:64:bf:08:87:93:8b:91:93:4d: ab:25:c8:34:da:5f:15:b2:40:21:d0:0a:88:bb:10:76:ef:55: be:d9:d3:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUxMjIyMjEwMjM3WhcNMjUxMjI5MjEwMjM3WjAYMRYwFAYD VQQDDA02OTQ5YjFlZS1jOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/wW9nvYmUgN0YS7+FNyFi5em6O/DROePBPlaKUkRJUu+36afoLdOP0wCbsy sT7kNNF8KsQdvc9XR2bcH0nRCUO6snFAqJsoojnw2sU2IWbBNHbYqShFkJCA0wTy dA0OhoIPNLAPONt1w1cMnKgEVXFGs20TEKvd38j0L02VrDEK5td1bRCv+HMPEiWq 7g0LUyNMyxrt1kl/uwBF9pPx6nbZVtPikntXVnPmkfrcC9p50oksPkFOA6tMRJjE S9l2xoXAXzSxPmw0AOOyKu4vgkfON2oabeXXbsjQzWAUSe3tj7RD31ueyDemfUZc 7vtpO3Gq51ECGs5f+/DTnBRyxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjaeJG/ Lv+EInlAlGkFW6VTRv+JMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB97CVbbWN24PpdUBepk6gYTHLRkdtBfXU/lEEn3zZTFVdnuXcmHFUe UqUunFy8Th2I4wFHZWi+t0/Si2d2fdrm2QwwpqgjCbnH1X65au1CHlMDndTItOv6 xBNcw3tcAqUSz6+7KMx+wRcMjWicV/x/XAwc/zsjJRjndDUEw54YGurnFnXNmKbd jkp/RWy3TKEgeQv7KmxozzNaHxLT9dVBZeGUMi3B4Z+SbtHqy6wjeRYKsiF3/koX fa+rlmQAAH7yNFlbc40qYGL5/gjFEpOWc/zL8qVHQtXZ1Q1HkXRO/31kvwiHk4uR k02rJcg02l8VskAh0AqIuxB271W+2dNe -----END CERTIFICATE-----Generated at Wed Dec 24 21:23:59 2025 by rpki-client