This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: FFj/kTEM8xp0mbjLWUZMSZ4wjysFpeOyBwDdQ2tWY6c= Subject key identifier: 95:C5:27:BB:A8:0A:28:57:A5:98:E6:0E:FB:B0:8E:34:0B:57:EB:91 Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 6A Signing time: Tue 23 Dec 2025 05:54:58 +0000 Manifest this update: Tue 23 Dec 2025 05:54:58 +0000 Manifest next update: Tue 30 Dec 2025 05:54:58 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: EmJMBiHEAVZsEk9tl8+y6NyD1anAFB9zMh9qyua5nrA=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: iZRDXQppbsQwPvsyTvXzZpqvjaraKsPpnctxXUoNoxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Dec 23 05:54:58 2025 GMT Not After : Dec 30 05:54:58 2025 GMT Subject: CN=694a2eb2-c4bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0a:eb:c8:44:25:7c:ea:4e:ab:da:73:a6:47: f9:4f:b9:6d:a9:c7:df:8c:e6:73:23:2a:6a:ca:3f: fe:7b:24:49:a5:b1:f0:07:56:89:74:95:12:e8:b3: bf:4b:ed:95:fc:d0:a8:1b:70:c9:60:72:a2:c1:a3: b1:28:46:e0:ae:a5:48:44:02:c2:73:d1:56:22:a2: 99:44:32:37:9b:37:71:59:db:41:9e:84:a9:e8:2c: f7:99:13:37:5f:07:11:2c:95:2f:45:37:be:9f:d4: f0:9d:a7:34:a3:6e:51:fc:02:8d:78:68:34:c6:66: aa:8a:a1:9c:de:54:4f:43:16:ab:96:67:21:0d:3d: 0a:c4:cd:1c:c3:a8:bf:8a:6b:d6:55:6c:9d:50:a1: cd:70:2e:1e:db:c9:b3:c8:fd:72:95:32:9a:fa:48: f6:70:bb:fa:1a:17:be:e2:04:5b:b2:8c:25:dc:66: f4:64:fe:87:2c:5f:51:a8:a4:f0:ac:75:ed:94:54: 52:5b:60:3f:37:cb:b2:2a:6d:f9:b8:05:c2:54:54: b4:c9:ba:ac:ba:ba:32:5e:46:4c:46:ff:c1:48:85: 0d:09:8f:ac:a2:86:36:ce:6d:9a:1a:b9:65:0b:9f: 05:6f:a0:82:f1:6f:df:ba:e2:52:f8:0f:34:16:ad: c2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C5:27:BB:A8:0A:28:57:A5:98:E6:0E:FB:B0:8E:34:0B:57:EB:91 X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:56:80:55:f2:f9:d5:16:6e:f0:bd:aa:bb:d0:f0:13:e0:a5: 35:cb:10:74:b1:d2:a1:50:ba:27:6b:9b:18:21:4f:c6:77:7f: 68:55:61:3c:46:8c:ad:0e:ed:3f:98:3c:72:b4:12:10:c7:1e: df:f4:9c:4b:1b:63:f0:22:74:6b:e0:e0:5f:66:34:1b:61:73: 8a:b3:83:2f:f3:3f:e0:84:34:60:ba:bf:04:f6:32:0a:73:72: 7a:6b:26:31:30:56:33:02:57:49:64:dd:96:a7:6d:72:e2:77: e2:6c:91:63:a0:7f:11:0f:9b:28:4d:f3:fd:17:cb:90:09:70: a3:10:f7:91:18:56:c1:34:3b:9e:2e:f9:b8:a7:cb:9d:4e:97: c8:17:8d:75:c7:a0:af:29:e1:37:75:a0:37:1b:39:ce:9e:86: 8a:26:55:30:a3:05:f0:94:ac:92:91:5a:5c:4f:10:af:ab:42: 4e:51:57:38:59:fc:7f:6e:16:3f:fe:99:44:f9:15:27:e9:24: d6:3f:35:13:87:24:c9:14:68:66:16:4f:c1:4d:55:44:3c:a2: dc:5a:9f:8f:9e:23:98:a0:1a:7c:fd:38:80:94:d5:f6:ad:73: 59:bd:75:0a:73:9e:2e:9f:39:01:f5:6c:8c:fa:8f:dc:e2:29: 7a:ab:57:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0REQjExMC8GA1UEBRMoMzRDREE2NUIwMkYxNzZCRkMyNDg3ODREQUE5QUM4QTdC RTE2NTNEQjAeFw0yNTEyMjMwNTU0NThaFw0yNTEyMzAwNTU0NThaMBgxFjAUBgNV BAMMDTY5NGEyZWIyLWM0YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8CuvIRCV86k6r2nOmR/lPuW2px9+M5nMjKmrKP/57JEmlsfAHVol0lRLos79L 7ZX80KgbcMlgcqLBo7EoRuCupUhEAsJz0VYioplEMjebN3FZ20GehKnoLPeZEzdf BxEslS9FN76f1PCdpzSjblH8Ao14aDTGZqqKoZzeVE9DFquWZyENPQrEzRzDqL+K a9ZVbJ1Qoc1wLh7bybPI/XKVMpr6SPZwu/oaF77iBFuyjCXcZvRk/ocsX1GopPCs de2UVFJbYD83y7Iqbfm4BcJUVLTJuqy6ujJeRkxG/8FIhQ0Jj6yihjbObZoauWUL nwVvoILxb9+64lL4DzQWrcIrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlcUnu6gK KFelmOYO+7CONAtX65EwHwYDVR0jBBgwFoAUNM2mWwLxdr/CSHhNqprIp74WU9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRERCLzBFM0JEQUVDNDcy NDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk0ybVd3THhkcl9DU0hoTnFwcklwNzRXVTlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJf Q1NIaE5xcHJJcDc0V1U5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBWgFXy+dUWbvC9qrvQ8BPgpTXLEHSx0qFQuidrmxghT8Z3f2hVYTxG jK0O7T+YPHK0EhDHHt/0nEsbY/AidGvg4F9mNBthc4qzgy/zP+CENGC6vwT2Mgpz cnprJjEwVjMCV0lk3ZanbXLid+JskWOgfxEPmyhN8/0Xy5AJcKMQ95EYVsE0O54u +biny51Ol8gXjXXHoK8p4Td1oDcbOc6ehoomVTCjBfCUrJKRWlxPEK+rQk5RVzhZ /H9uFj/+mUT5FSfpJNY/NROHJMkUaGYWT8FNVUQ8otxan4+eI5igGnz9OICU1fat c1m9dQpzni6fOQH1bIz6j9ziKXqrVyU= -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:01 2025 by rpki-client