This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft File: nhW8ueM67e2saArIyYFuEVkFyiw.mft (raw, json) Hash identifier: Qfn1+KGbrWQlvQlybtLF+d7BQmAYwQvmArktUBlDzBQ= Subject key identifier: 55:63:A6:79:3F:1A:17:AF:B8:9D:50:2E:97:CB:C5:76:D4:05:4E:ED Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 174B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft Manifest number: 173E Signing time: Wed 24 Dec 2025 16:24:15 +0000 Manifest this update: Wed 24 Dec 2025 16:24:14 +0000 Manifest next update: Wed 31 Dec 2025 16:24:14 +0000 Files and hashes: 1: nhW8ueM67e2saArIyYFuEVkFyiw.crl (hash: zFKJKm54+Ip8dSACXvdbd7GFjm+EdSIav5jbCYemFFc=) 2: 7A7A6AC6234311EA90D15227C4F9AE02.roa (hash: inLOYpzfiQRyaW4Jx9DTFdqEkju4HPJ5ZYoO4gNZ1PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5963 (0x174b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A, serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Dec 24 16:24:14 2025 GMT Not After : Dec 31 16:24:14 2025 GMT Subject: CN=694c13af-cf99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:7e:29:51:43:03:f0:43:b1:62:80:27:d4: 50:6b:04:1d:b9:14:e0:ff:de:fc:a9:d5:af:37:38: a7:ca:90:a3:03:87:ce:a9:ee:d1:74:a2:f2:3a:40: 1d:85:15:94:78:00:af:65:f6:ac:fe:bd:9d:d6:b4: 5d:d4:7c:db:40:81:92:bb:df:aa:55:b6:ac:4f:ec: 16:a0:e7:68:e1:14:04:96:00:d2:23:0e:e2:d7:46: ce:3e:9f:0c:25:ef:15:8a:bc:db:dc:c8:f5:80:19: eb:7c:86:6f:bb:8d:b6:c0:e8:aa:14:43:3b:94:c4: 5e:c4:b3:0d:3b:6a:f9:cc:cc:86:20:11:57:f9:ed: e9:29:7b:74:96:7f:ab:77:2f:8f:4b:5b:15:6c:f8: 60:8a:fe:8b:f1:a0:8c:1b:9c:a7:f2:d4:29:66:37: 12:a5:39:7f:fd:c1:9a:02:a1:a8:6c:27:ad:99:16: 10:6d:65:4d:6f:06:d2:be:74:2a:93:68:27:86:53: 48:18:96:49:82:19:86:15:bc:db:e1:c8:d5:c0:15: 27:ed:22:48:b8:1b:19:1b:a5:6b:12:0b:22:5a:f1: 97:5b:b8:12:a4:cf:d5:eb:4f:ff:12:f0:43:28:f1: 47:67:c8:8d:f4:3c:3b:39:fc:bd:48:80:4c:25:56: 67:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:63:A6:79:3F:1A:17:AF:B8:9D:50:2E:97:CB:C5:76:D4:05:4E:ED X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ba:df:b6:9f:64:0c:cd:b0:7a:34:6c:44:bb:64:5b:38:46: 1c:cf:fe:af:81:68:ef:e4:a5:ee:71:e5:51:35:92:d0:fd:07: 27:a1:31:04:4b:5b:22:bb:5f:8e:fc:b2:1a:b8:32:e7:57:49: 31:f7:c4:45:8d:7d:f9:dd:29:5c:71:5a:43:d6:ce:e3:14:d2: 21:dc:32:ce:b7:a9:e1:86:7d:4f:af:35:96:04:13:3b:08:55: c8:5b:4b:46:9e:4c:b3:e0:4e:03:66:41:70:c1:c2:c5:d1:7b: e9:92:1c:f3:e8:37:8c:74:73:fe:66:61:9a:8f:b5:f3:6c:7a: 53:87:b9:5a:71:6e:24:0e:49:9e:7c:8a:f8:4f:67:df:22:92: 76:db:77:d2:9a:0d:70:b8:2e:e8:ff:f9:df:b5:5e:48:9e:5b: ac:48:02:e0:a0:78:d1:c5:ed:9b:13:93:c7:5f:52:86:98:c7: e4:93:27:f7:86:e7:ad:92:b7:c1:06:2c:d3:8f:d1:ae:2b:c3: c8:12:a7:4b:ce:b7:0c:f3:74:0d:00:6a:d5:ba:25:65:96:dc: 58:9b:b6:eb:b8:64:71:a8:9e:67:aa:25:e8:20:94:af:9d:ad: a6:e7:e2:3b:90:82:16:27:49:81:36:91:b3:b4:ba:99:ef:9f: 3d:a9:b5:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUxMjI0MTYyNDE0WhcNMjUxMjMxMTYyNDE0WjAYMRYwFAYD VQQDDA02OTRjMTNhZi1jZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZF+KVFDA/BDsWKAJ9RQawQduRTg/978qdWvNzinypCjA4fOqe7RdKLyOkAd hRWUeACvZfas/r2d1rRd1HzbQIGSu9+qVbasT+wWoOdo4RQElgDSIw7i10bOPp8M Je8Virzb3Mj1gBnrfIZvu422wOiqFEM7lMRexLMNO2r5zMyGIBFX+e3pKXt0ln+r dy+PS1sVbPhgiv6L8aCMG5yn8tQpZjcSpTl//cGaAqGobCetmRYQbWVNbwbSvnQq k2gnhlNIGJZJghmGFbzb4cjVwBUn7SJIuBsZG6VrEgsiWvGXW7gSpM/V60//EvBD KPFHZ8iN9Dw7Ofy9SIBMJVZnzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVjpnk/ GhevuJ1QLpfLxXbUBU7tMB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUIzQS83REVBRTczNEYzQTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdl MnNhQXJJeVlGdUVWa0Z5aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6ut+2n2QMzbB6NGxEu2RbOEYcz/6vgWjv5KXuceVRNZLQ/QcnoTEE S1siu1+O/LIauDLnV0kx98RFjX353SlccVpD1s7jFNIh3DLOt6nhhn1PrzWWBBM7 CFXIW0tGnkyz4E4DZkFwwcLF0Xvpkhzz6DeMdHP+ZmGaj7XzbHpTh7lacW4kDkme fIr4T2ffIpJ223fSmg1wuC7o//nftV5InlusSALgoHjRxe2bE5PHX1KGmMfkkyf3 huetkrfBBizTj9GuK8PIEqdLzrcM83QNAGrVuiVlltxYm7bruGRxqJ5nqiXoIJSv na2m5+I7kIIWJ0mBNpGztLqZ7589qbX5 -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:57 2025 by rpki-client