This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft File: _nzI0SyMuUDQbq7bWwrUPQUDYvE.mft (raw, json) Hash identifier: 19yHRx7b1lfAXvcWL2XMXxetA660KzQCAkygjsVAs4c= Subject key identifier: CB:AE:43:F8:46:37:EB:16:7C:30:46:6D:0E:A6:4B:3A:E4:2D:C6:5F Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft Manifest number: AE Signing time: Tue 09 Dec 2025 04:06:10 +0000 Manifest this update: Tue 09 Dec 2025 04:06:09 +0000 Manifest next update: Tue 16 Dec 2025 04:06:09 +0000 Files and hashes: 1: _nzI0SyMuUDQbq7bWwrUPQUDYvE.crl (hash: K9mfhNlaM4dQpNCinIoIKWWxfwHgRD2oZS/zaZsWqP4=) 2: F943DF74CBF711EFB86EC74FC4F9AE02.roa (hash: /lwgtRM6gotLfudn3WIihQdO3Q9EX1aXjWZS5YiBoaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 04:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F, serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Validity Not Before: Dec 9 04:06:09 2025 GMT Not After : Dec 16 04:06:09 2025 GMT Subject: CN=6937a032-1351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:a5:6b:0b:85:7d:d2:e3:fc:cd:12:9b:a9: 10:10:f1:18:7c:21:49:11:72:5b:6d:e6:d1:44:8e: 0f:8d:a2:e3:96:19:61:fa:3b:23:8e:39:12:4f:16: 40:22:e1:2c:92:82:7a:ec:ce:86:ab:45:1e:5e:f5: 58:10:ae:39:81:ee:9b:46:53:89:d5:f8:98:df:50: 01:f2:a1:96:74:e5:34:c3:b3:20:ee:8b:2d:6c:27: 3c:6e:c4:b6:ee:9d:cb:d3:f5:fc:b0:c5:8a:19:32: 1c:ee:b3:e9:e9:63:65:63:8b:6a:89:dd:70:c3:3d: 32:a5:49:ef:99:22:5e:33:cd:31:cb:a0:94:a2:49: 88:d9:2f:52:d1:78:5e:fb:a7:c4:af:b5:c0:18:01: b3:d6:0c:8b:63:9a:3d:55:57:55:5f:59:d4:b9:3e: 8a:30:9c:c4:56:b3:96:f2:0b:bf:b9:7f:24:e0:b3: 55:75:b9:a2:5b:80:3a:28:f1:49:08:be:b5:ee:68: c1:5d:41:7a:b9:d9:57:38:54:e5:63:4a:d5:45:23: 2b:ba:77:33:b2:b4:40:4d:6e:7f:21:fc:b5:8d:a5: 5a:2f:66:7c:17:1a:95:ca:dd:d1:25:16:64:aa:f6: e9:e7:96:bc:d7:d1:bd:6b:77:00:2c:4b:55:f3:42: 09:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AE:43:F8:46:37:EB:16:7C:30:46:6D:0E:A6:4B:3A:E4:2D:C6:5F X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:13:44:8d:62:c4:ab:f0:08:13:41:ec:23:01:70:cb:45:6c: d3:11:3b:e2:1c:da:7e:f1:bf:5d:35:a9:e6:fd:26:d9:3e:3a: 3a:48:b8:80:d1:ed:0c:d7:83:cc:de:58:8f:e6:3b:a7:e2:c2: 68:a3:62:b1:ee:ae:ad:94:cc:77:1b:e8:bd:f9:1e:84:85:82: 51:23:b1:09:62:88:23:81:a2:4e:99:7a:b2:97:d5:c3:f6:94: 0a:6b:6a:3c:c6:e9:3b:2e:25:c3:f7:fb:64:56:77:82:db:96: 55:9f:94:06:83:32:43:67:af:57:2d:67:5d:21:6f:49:a9:1b: 5f:38:90:77:56:ec:99:9d:e1:bb:e8:3e:0f:b4:ba:6c:fe:8e: ca:8b:4c:97:93:2b:46:0f:f5:3c:df:89:a8:c9:da:22:9c:f2: b2:86:46:b3:dd:a7:ac:3f:27:28:64:df:2c:1b:60:b6:70:54: 89:6d:6e:a8:f2:9d:7f:cb:9d:91:7a:f9:8e:3e:08:6b:25:36: 44:f9:d8:35:ed:67:2c:ae:9e:ca:2d:57:a0:fb:a3:db:9e:f6: 8c:7c:8e:f9:a7:d5:5e:3e:f6:76:bd:5b:49:e7:61:89:47:86: 23:2d:89:52:3e:21:0f:60:de:85:a6:f4:21:dc:af:58:c5:51: 71:93:cb:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwNEYxMTAvBgNVBAUTKEZFN0NDOEQxMkM4Q0I5NDBEMDZFQUVEQjVCMEFENDNE MDUwMzYyRjEwHhcNMjUxMjA5MDQwNjA5WhcNMjUxMjE2MDQwNjA5WjAYMRYwFAYD VQQDEw02OTM3YTAzMi0xMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuimlawuFfdLj/M0Sm6kQEPEYfCFJEXJbbebRRI4PjaLjlhlh+jsjjjkSTxZA IuEskoJ67M6Gq0UeXvVYEK45ge6bRlOJ1fiY31AB8qGWdOU0w7Mg7ostbCc8bsS2 7p3L0/X8sMWKGTIc7rPp6WNlY4tqid1wwz0ypUnvmSJeM80xy6CUokmI2S9S0Xhe +6fEr7XAGAGz1gyLY5o9VVdVX1nUuT6KMJzEVrOW8gu/uX8k4LNVdbmiW4A6KPFJ CL617mjBXUF6udlXOFTlY0rVRSMrunczsrRATW5/Ify1jaVaL2Z8FxqVyt3RJRZk qvbp55a819G9a3cALEtV80IJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuuQ/hG N+sWfDBGbQ6mSzrkLcZfMB8GA1UdIwQYMBaAFP58yNEsjLlA0G6u21sK1D0FA2Lx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDA0Ri9ENUQwRkVCNENC RjcxMUVGODY5QzkwNEZDNEY5QUUwMi9fbnpJMFN5TXVVRFFicTdiV3dyVVBRVURZ dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDA0Ri9ENUQwRkVCNENCRjcxMUVGODY5QzkwNEZDNEY5QUUwMi9fbnpJMFN5TXVV RFFicTdiV3dyVVBRVURZdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEE0SNYsSr8AgTQewjAXDLRWzTETviHNp+8b9dNanm/SbZPjo6SLiA 0e0M14PM3liP5jun4sJoo2Kx7q6tlMx3G+i9+R6EhYJRI7EJYogjgaJOmXqyl9XD 9pQKa2o8xuk7LiXD9/tkVneC25ZVn5QGgzJDZ69XLWddIW9JqRtfOJB3VuyZneG7 6D4PtLps/o7Ki0yXkytGD/U834moydoinPKyhkaz3aesPycoZN8sG2C2cFSJbW6o 8p1/y52RevmOPghrJTZE+dg17Wcsrp7KLVeg+6PbnvaMfI75p9VePvZ2vVtJ52GJ R4YjLYlSPiEPYN6FpvQh3K9YxVFxk8ur -----END CERTIFICATE-----Generated at Wed Dec 10 05:29:38 2025 by rpki-client