This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: +riD2XsoSg8ljas3forEsOFqbxFpENAxE57Ga7lr3XE= Subject key identifier: AE:65:00:D4:47:B0:7F:05:CC:DA:82:C0:9E:25:F6:59:90:A7:37:0C Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 0843 Signing time: Wed 24 Dec 2025 20:09:21 +0000 Manifest this update: Wed 24 Dec 2025 20:09:20 +0000 Manifest next update: Wed 31 Dec 2025 20:09:20 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: xMnJNtiNW6nYYnXfO9ic72DgKdbjqSfMPIObF5HpB1I=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Dec 24 20:09:20 2025 GMT Not After : Dec 31 20:09:20 2025 GMT Subject: CN=694c4870-ab6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ce:ad:ae:91:88:09:c5:ca:74:a7:ce:b9:b3: 7b:5e:e0:35:a9:7e:d8:f5:8f:b4:60:f7:50:55:9a: 3e:cc:28:cc:d3:04:13:26:1c:59:ea:d0:f7:aa:01: 22:35:09:28:22:15:86:df:23:8a:54:b0:93:98:b9: 66:8a:33:ef:a8:8e:23:94:5d:e2:e6:c3:d9:7b:a2: f3:c4:cd:33:9b:a3:0a:6d:c4:6f:61:80:0c:17:3b: b8:6e:b7:6b:59:1f:35:bd:bf:4a:0b:83:5c:6a:7f: f3:d6:49:eb:e9:e0:8e:9f:e3:03:1a:0d:f5:64:12: 3e:ee:ea:8c:01:e3:66:98:67:54:30:03:ac:51:70: bd:41:9a:0f:fa:11:a6:f0:45:5c:ce:14:ef:09:60: c3:69:d4:19:07:5c:f5:36:f2:c8:e0:1f:a1:40:97: 8e:3e:90:02:cc:c8:70:83:8d:79:f0:99:43:00:ca: 89:2c:7e:a9:b2:94:d7:72:1e:83:7e:d3:e6:40:1e: 06:dd:19:5e:ad:4a:02:f1:0a:58:e8:eb:a5:79:48: 17:05:9b:e8:bf:b4:7a:9f:27:bc:a6:60:b4:6e:f8: b3:a4:7b:7c:85:c9:dc:43:d9:5e:55:cd:fe:ea:3b: ae:ec:c5:e6:9a:e4:e4:f9:6d:e2:d5:08:2c:1d:ef: f4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:65:00:D4:47:B0:7F:05:CC:DA:82:C0:9E:25:F6:59:90:A7:37:0C X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:44:d1:87:c2:84:76:cf:e4:c9:bb:00:ef:3e:a1:d5:a9:92: 42:2e:91:71:e9:84:a7:5f:1c:26:69:54:e3:d6:ed:32:9b:5f: 95:c9:42:64:c7:de:85:30:31:95:39:f9:1f:60:93:1f:e6:b3: b0:f1:a9:74:4f:7c:a6:13:2d:b4:7e:a4:15:54:e5:d1:e0:83: 6a:b3:cd:b9:b1:94:0d:85:6f:0d:31:31:34:61:d5:cb:88:2e: 87:c3:02:ca:2e:3f:82:58:aa:6e:00:b8:7e:2a:c4:6a:34:fb: b1:51:44:d9:68:32:b3:ad:1c:df:db:ab:27:a1:2a:59:0a:7f: ef:59:3d:62:db:39:c5:97:ef:68:02:c9:44:c2:83:b0:d9:7c: bf:2f:d4:51:90:56:88:7d:a2:31:a1:7d:2e:07:27:b2:1e:ee: b4:64:03:8e:9e:c2:70:f2:4b:60:9d:c6:18:32:9f:ae:c7:dc: 3c:e8:94:7e:c1:1a:f0:89:b3:54:32:4a:eb:30:f5:b4:32:80: 07:88:57:f1:bb:75:fc:aa:b1:af:e4:6a:bd:4e:ee:6f:9b:04: 7c:cf:ab:aa:b9:6f:94:f0:70:86:f0:93:f9:63:eb:79:9e:45: 83:6b:c6:5d:ed:fe:ba:1e:14:37:a3:76:28:ca:08:30:f1:db: 3d:17:ad:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUxMjI0MjAwOTIwWhcNMjUxMjMxMjAwOTIwWjAYMRYwFAYD VQQDDA02OTRjNDg3MC1hYjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi86trpGICcXKdKfOubN7XuA1qX7Y9Y+0YPdQVZo+zCjM0wQTJhxZ6tD3qgEi NQkoIhWG3yOKVLCTmLlmijPvqI4jlF3i5sPZe6LzxM0zm6MKbcRvYYAMFzu4brdr WR81vb9KC4Ncan/z1knr6eCOn+MDGg31ZBI+7uqMAeNmmGdUMAOsUXC9QZoP+hGm 8EVczhTvCWDDadQZB1z1NvLI4B+hQJeOPpACzMhwg4158JlDAMqJLH6pspTXch6D ftPmQB4G3RlerUoC8QpY6OuleUgXBZvov7R6nye8pmC0bvizpHt8hcncQ9leVc3+ 6juu7MXmmuTk+W3i1QgsHe/0IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5lANRH sH8FzNqCwJ4l9lmQpzcMMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0RNGHwoR2z+TJuwDvPqHVqZJCLpFx6YSnXxwmaVTj1u0ym1+VyUJk x96FMDGVOfkfYJMf5rOw8al0T3ymEy20fqQVVOXR4INqs825sZQNhW8NMTE0YdXL iC6HwwLKLj+CWKpuALh+KsRqNPuxUUTZaDKzrRzf26snoSpZCn/vWT1i2znFl+9o AslEwoOw2Xy/L9RRkFaIfaIxoX0uByeyHu60ZAOOnsJw8ktgncYYMp+ux9w86JR+ wRrwibNUMkrrMPW0MoAHiFfxu3X8qrGv5Gq9Tu5vmwR8z6uquW+U8HCG8JP5Y+t5 nkWDa8Zd7f66HhQ3o3Yoyggw8ds9F61x -----END CERTIFICATE-----Generated at Wed Dec 24 21:24:00 2025 by rpki-client