This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: 5o33tHgwXHrFTZqZ1Z5Q1h7OPnech6O1T9airORwYt8= Subject key identifier: 7F:DF:1F:4F:52:AE:FF:98:EF:7E:4A:ED:F3:F0:F1:8A:B3:78:E5:02 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08CF Signing time: Tue 16 Dec 2025 20:01:28 +0000 Manifest this update: Tue 16 Dec 2025 20:01:28 +0000 Manifest next update: Tue 23 Dec 2025 20:01:28 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: tyn9PGXlbJzYRqOK5mqk8Y1mPStvGZf6C0GT2vWMXGk=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 20:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Dec 16 20:01:28 2025 GMT Not After : Dec 23 20:01:28 2025 GMT Subject: CN=6941ba98-a0d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:5d:e0:0c:b6:fd:95:fc:a0:c0:ce:69:9d: ce:a8:cd:0b:26:0a:38:1e:e3:0b:e8:77:8a:0c:a1: 74:a6:c6:7b:7e:50:00:89:cd:06:74:c4:cb:6f:cb: f7:62:79:85:f7:f4:8c:28:2c:77:4c:4f:9d:2f:ea: 26:09:d9:10:d8:72:11:ca:7d:a5:76:dc:46:3f:1e: 81:20:c5:9a:98:a7:3c:ea:50:a2:6c:6f:f0:f5:42: 53:01:5c:97:88:c6:48:0b:0c:20:1e:69:98:8f:19: 99:da:e2:7d:68:b1:7d:e6:22:d0:90:27:19:bf:0c: 9d:55:0c:d5:57:32:e6:2a:3f:dc:9d:15:68:e9:7a: 66:6f:2e:2d:38:71:fc:bb:98:a7:9e:0b:07:2c:4d: d4:5f:72:41:2b:cc:38:17:1c:da:0b:5d:aa:84:99: 6f:a5:05:34:c8:7c:28:2c:98:a9:95:04:09:18:12: 11:21:ef:8e:68:99:8e:7e:34:79:20:93:f3:ec:de: b3:ec:4a:f4:22:5a:7e:63:37:9f:d6:1b:46:35:22: fd:06:7c:5b:68:26:aa:6a:9c:31:20:2b:bd:c1:95: 0a:e9:b7:f5:fd:63:90:37:e7:bc:17:f2:ab:0a:6b: dc:0a:d4:7c:91:e8:d6:78:e9:d7:73:99:ce:d0:a1: 48:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DF:1F:4F:52:AE:FF:98:EF:7E:4A:ED:F3:F0:F1:8A:B3:78:E5:02 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:13:7e:3a:bc:56:71:d2:21:c9:f6:72:cc:d5:07:6a:6d:6c: e4:fd:99:6e:b9:bd:bc:5e:5a:4e:48:32:41:92:3d:7e:ce:da: ff:33:b7:f3:02:a4:12:21:fa:86:df:4a:b7:db:1a:36:6a:3c: a4:70:6a:f6:94:a0:fa:ae:37:37:0d:be:0e:47:60:8c:01:e3: 66:ad:40:a9:f5:db:92:32:10:54:d0:8b:16:ac:9b:8a:15:38: 6f:a2:df:a8:21:6c:6c:0b:1a:ac:18:07:20:8d:95:59:97:2e: f3:e3:3a:02:45:41:7c:f1:cb:d1:90:fc:e9:a8:17:db:32:db: 86:5f:a3:96:7f:d4:d6:c9:e9:80:24:0a:57:93:a9:a0:b5:a8: 2d:6c:86:e0:9c:f5:5d:bb:41:a0:1e:a7:6b:63:ad:92:87:77: 4b:54:10:04:6e:3d:b9:77:87:3c:4f:98:2d:d2:f2:1b:b2:04: 62:ff:36:e4:86:4c:36:8d:ee:9e:17:fe:15:1f:8a:32:d4:4a: d9:87:f0:51:0e:32:64:c0:01:3c:27:6b:a7:c0:93:50:9a:58: 10:c2:84:a9:90:ee:19:35:fe:37:c6:a3:07:67:94:a1:39:b1: d3:3c:99:3b:f4:69:84:a6:f4:b2:b2:7f:35:5b:86:8f:83:8e: eb:ae:08:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUxMjE2MjAwMTI4WhcNMjUxMjIzMjAwMTI4WjAYMRYwFAYD VQQDDA02OTQxYmE5OC1hMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvNd4Ay2/ZX8oMDOaZ3OqM0LJgo4HuML6HeKDKF0psZ7flAAic0GdMTLb8v3 YnmF9/SMKCx3TE+dL+omCdkQ2HIRyn2ldtxGPx6BIMWamKc86lCibG/w9UJTAVyX iMZICwwgHmmYjxmZ2uJ9aLF95iLQkCcZvwydVQzVVzLmKj/cnRVo6Xpmby4tOHH8 u5inngsHLE3UX3JBK8w4FxzaC12qhJlvpQU0yHwoLJiplQQJGBIRIe+OaJmOfjR5 IJPz7N6z7Er0Ilp+Yzef1htGNSL9BnxbaCaqapwxICu9wZUK6bf1/WOQN+e8F/Kr CmvcCtR8kejWeOnXc5nO0KFIZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/fH09S rv+Y735K7fPw8YqzeOUCMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhE346vFZx0iHJ9nLM1QdqbWzk/Zluub28XlpOSDJBkj1+ztr/M7fz AqQSIfqG30q32xo2ajykcGr2lKD6rjc3Db4OR2CMAeNmrUCp9duSMhBU0IsWrJuK FThvot+oIWxsCxqsGAcgjZVZly7z4zoCRUF88cvRkPzpqBfbMtuGX6OWf9TWyemA JApXk6mgtagtbIbgnPVdu0GgHqdrY62Sh3dLVBAEbj25d4c8T5gt0vIbsgRi/zbk hkw2je6eF/4VH4oy1ErZh/BRDjJkwAE8J2unwJNQmlgQwoSpkO4ZNf43xqMHZ5Sh ObHTPJk79GmEpvSysn81W4aPg47rrggi -----END CERTIFICATE-----Generated at Wed Dec 17 11:05:15 2025 by rpki-client