This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: 3sIU0GTo6RcJlGDS9EhU/yQfWwSdJXpr+kxSa8CK+G0= Subject key identifier: B2:4E:28:81:F8:36:FD:EC:C2:1B:6E:5D:EB:CA:51:7F:DD:A7:EB:A7 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 01DA Signing time: Tue 23 Dec 2025 01:48:40 +0000 Manifest this update: Tue 23 Dec 2025 01:48:40 +0000 Manifest next update: Tue 30 Dec 2025 01:48:40 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: s9mJTnuQZdgcSaBaolTdaVBcPLzpUj+aHJLNqcmHYTs=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Dec 23 01:48:40 2025 GMT Not After : Dec 30 01:48:40 2025 GMT Subject: CN=6949f4f8-b2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:46:b2:d2:d5:6d:ae:80:6a:f7:ac:38:0c:79: 62:ae:4c:66:f7:59:c8:bf:98:54:40:53:c0:6a:5c: ea:22:49:6f:6f:d3:4e:b9:3c:43:ed:93:a2:c5:6b: 94:17:68:48:eb:9a:ab:ed:42:56:a7:91:98:b1:8d: 16:c1:1e:f3:b8:57:6c:08:8d:63:8e:0f:23:35:8b: 40:22:ef:08:22:97:36:76:c6:57:1c:49:e8:20:b8: 87:15:68:e1:07:d7:77:d0:78:52:00:f0:ea:15:74: 0a:0f:19:d7:48:1a:5a:e0:52:50:4f:0b:85:8f:0e: dc:a8:6d:0d:0c:36:26:1a:ea:65:3f:54:63:c6:9c: 26:f0:76:6b:d5:e5:68:f7:b2:24:c6:df:f7:56:66: f8:07:79:8d:48:ed:c6:43:e5:8e:cb:a9:87:eb:41: 7f:3c:34:ac:cc:8e:4f:e2:0a:4d:10:94:8c:2a:b5: 7b:c9:d5:6c:29:70:68:80:bb:2c:30:b6:5e:cb:4e: 6b:67:28:e9:c8:89:54:10:0a:04:2c:74:9c:0b:bf: eb:c8:ca:5d:a0:04:ff:e2:65:1e:68:0f:58:79:ed: 61:0b:c1:75:45:ff:7f:c2:6e:dc:00:9e:81:3e:1f: 82:9a:cd:b1:f6:1c:99:48:0f:58:75:c3:1e:1d:b7: 84:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:28:81:F8:36:FD:EC:C2:1B:6E:5D:EB:CA:51:7F:DD:A7:EB:A7 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:68:f2:e9:4e:5c:a7:55:64:e5:e5:76:29:81:a3:14:15:6d: c0:61:91:c8:fc:32:ac:61:94:37:f5:76:51:d5:54:46:e0:3a: 65:5e:6b:c5:8d:86:d0:c7:57:76:8b:4a:18:23:af:ed:71:61: af:ae:e2:4f:79:c3:50:84:e6:07:66:42:47:90:0f:4f:0f:54: b3:f3:dd:1a:27:b7:d8:3e:49:78:97:07:a7:42:33:08:af:d3: d4:ff:a7:9c:1c:20:ad:07:f4:0e:61:03:d8:ec:21:e8:6b:a8: 74:d2:3f:5c:d3:fe:a4:fd:7f:67:dc:b3:55:67:c1:0e:d7:f1: 4e:19:ea:d5:04:19:fc:a5:7d:82:20:7d:19:dd:d2:2e:2e:a0: f2:9e:e7:76:eb:36:f0:64:7f:60:b4:e3:fd:3d:62:39:f1:ae: a0:3f:22:31:6f:07:bd:48:fe:02:1c:2f:16:ae:ae:ae:74:ac: 0f:06:e2:96:98:5a:7f:9c:b0:04:62:f7:00:a0:25:44:ec:c1: 84:3f:29:62:d7:1d:a5:f9:e7:c4:79:6d:01:cc:34:65:5b:5d: c7:63:80:b6:35:9d:65:6b:89:3b:5a:2f:25:fa:c0:d4:27:21: 5d:84:16:41:34:4d:93:0e:bf:8d:08:ad:ea:72:ed:f6:dc:3e: 6d:fe:d3:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUxMjIzMDE0ODQwWhcNMjUxMjMwMDE0ODQwWjAYMRYwFAYD VQQDDA02OTQ5ZjRmOC1iMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUay0tVtroBq96w4DHlirkxm91nIv5hUQFPAalzqIklvb9NOuTxD7ZOixWuU F2hI65qr7UJWp5GYsY0WwR7zuFdsCI1jjg8jNYtAIu8IIpc2dsZXHEnoILiHFWjh B9d30HhSAPDqFXQKDxnXSBpa4FJQTwuFjw7cqG0NDDYmGuplP1Rjxpwm8HZr1eVo 97Ikxt/3Vmb4B3mNSO3GQ+WOy6mH60F/PDSszI5P4gpNEJSMKrV7ydVsKXBogLss MLZey05rZyjpyIlUEAoELHScC7/ryMpdoAT/4mUeaA9Yee1hC8F1Rf9/wm7cAJ6B Ph+Cms2x9hyZSA9YdcMeHbeESwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJOKIH4 Nv3swhtuXevKUX/dp+unMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEaPLpTlynVWTl5XYpgaMUFW3AYZHI/DKsYZQ39XZR1VRG4DplXmvF jYbQx1d2i0oYI6/tcWGvruJPecNQhOYHZkJHkA9PD1Sz890aJ7fYPkl4lwenQjMI r9PU/6ecHCCtB/QOYQPY7CHoa6h00j9c0/6k/X9n3LNVZ8EO1/FOGerVBBn8pX2C IH0Z3dIuLqDynud26zbwZH9gtOP9PWI58a6gPyIxbwe9SP4CHC8Wrq6udKwPBuKW mFp/nLAEYvcAoCVE7MGEPyli1x2l+efEeW0BzDRlW13HY4C2NZ1la4k7Wi8l+sDU JyFdhBZBNE2TDr+NCK3qcu323D5t/tPx -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:58 2025 by rpki-client