This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: a3gca4UyrTSASlKXJC+txZZYHkUdgEIbDfi1Glb/mnE= Subject key identifier: C0:CF:34:41:68:10:D8:E0:AB:2E:F5:86:79:2B:40:22:30:BA:E3:55 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 200C Signing time: Sat 06 Dec 2025 15:45:31 +0000 Manifest this update: Sat 06 Dec 2025 15:45:30 +0000 Manifest next update: Sat 13 Dec 2025 15:45:30 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: IEx5HRulA5adGnEDMhzM3Mi5arqqnS12TOwHqblHWiA=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: aFxmstcvEMQ/qqQO/m7uR2Alk5KmIeuyGi0FUw+S+g0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Dec 6 15:45:30 2025 GMT Not After : Dec 13 15:45:30 2025 GMT Subject: CN=69344f9b-ff30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:1a:21:c3:5f:e5:cc:47:57:c9:b6:f7:9b: b7:d7:d3:18:9d:3d:27:c9:e4:13:65:d5:28:09:7e: df:16:43:78:b8:ef:b3:20:0b:a0:d7:97:1f:8e:05: a2:6b:80:01:fc:cf:7e:2a:1c:7a:fa:3f:58:46:5e: d8:2c:09:b7:b6:2c:59:c3:47:b6:3c:10:1d:9d:e9: 52:4a:b8:2e:3d:01:83:88:ef:82:43:cf:62:0d:c5: 5b:a9:7b:e5:d3:c5:48:69:23:4d:ae:9e:cc:d3:00: ed:14:ee:c2:ef:14:01:94:b5:07:b2:1f:43:2a:59: 7b:6a:d9:7c:a3:ef:b3:fa:15:7c:6a:80:e2:43:85: 06:03:4c:d8:55:12:97:83:be:c1:2b:11:6e:30:30: 5e:42:9b:58:74:60:44:d4:9c:28:c8:5c:6a:a4:89: 66:a9:4f:3e:d4:7f:45:a4:96:89:ad:a2:88:c5:4a: 09:5c:a7:cb:21:0d:e8:a8:4e:61:4f:14:4b:c9:ff: 44:fb:d0:d1:5f:74:e7:27:d2:4c:07:58:e2:f5:6a: 18:f4:d6:f9:ae:d4:06:6f:99:eb:7c:72:fe:a9:fa: 02:06:66:ef:e8:a4:19:17:27:00:a5:39:a3:d3:28: b7:d7:3e:c3:7b:3f:fe:e3:93:eb:00:de:a9:c6:86: 7a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CF:34:41:68:10:D8:E0:AB:2E:F5:86:79:2B:40:22:30:BA:E3:55 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:7d:75:99:ed:7f:a8:b6:df:29:6f:3c:72:2a:66:00:b5:fc: e7:6b:d4:24:38:e6:46:d2:3a:ab:01:0f:0d:de:8c:fd:d9:2c: d2:e8:40:18:bc:7b:f6:32:2d:a4:75:60:15:3a:b8:77:2d:c3: 84:96:ad:e5:54:b3:c7:92:ae:ff:c4:9a:b2:ed:e6:1e:32:8c: 5a:cd:a5:e2:62:3d:65:73:29:10:46:04:a2:b4:63:0f:53:7d: 5a:3f:83:ac:f7:7f:9c:71:1d:d5:23:1c:19:f2:a5:81:93:46: c8:08:94:aa:bf:90:f4:ab:11:ea:77:58:7b:12:10:c4:11:25: 55:68:e2:78:5d:62:1a:b5:88:bd:75:36:1a:26:f1:f8:29:bd: 45:8d:f1:73:52:8b:dd:dd:61:57:99:d3:22:70:cc:23:22:b0: 9a:d2:f3:d3:d7:19:36:c7:48:fa:e6:9e:ab:26:f3:6d:79:2f: 0a:fe:8a:eb:b6:9f:d4:1a:86:a7:60:22:76:a1:ad:c7:98:5e: 0e:16:cf:77:fd:88:7e:e4:37:d1:5c:a1:dc:ee:ad:a0:0f:17: 56:ad:48:58:4b:18:8d:ae:01:44:82:45:6e:d5:86:39:fe:6b: c0:25:1e:c4:3c:97:6b:8d:88:d4:09:ee:3b:c0:05:7a:b3:37: 59:77:fb:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUxMjA2MTU0NTMwWhcNMjUxMjEzMTU0NTMwWjAYMRYwFAYD VQQDEw02OTM0NGY5Yi1mZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04gaIcNf5cxHV8m295u319MYnT0nyeQTZdUoCX7fFkN4uO+zIAug15cfjgWi a4AB/M9+Khx6+j9YRl7YLAm3tixZw0e2PBAdnelSSrguPQGDiO+CQ89iDcVbqXvl 08VIaSNNrp7M0wDtFO7C7xQBlLUHsh9DKll7atl8o++z+hV8aoDiQ4UGA0zYVRKX g77BKxFuMDBeQptYdGBE1JwoyFxqpIlmqU8+1H9FpJaJraKIxUoJXKfLIQ3oqE5h TxRLyf9E+9DRX3TnJ9JMB1ji9WoY9Nb5rtQGb5nrfHL+qfoCBmbv6KQZFycApTmj 0yi31z7Dez/+45PrAN6pxoZ6qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDPNEFo ENjgqy71hnkrQCIwuuNVMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4fXWZ7X+ott8pbzxyKmYAtfzna9QkOOZG0jqrAQ8N3oz92SzS6EAY vHv2Mi2kdWAVOrh3LcOElq3lVLPHkq7/xJqy7eYeMoxazaXiYj1lcykQRgSitGMP U31aP4Os93+ccR3VIxwZ8qWBk0bICJSqv5D0qxHqd1h7EhDEESVVaOJ4XWIatYi9 dTYaJvH4Kb1FjfFzUovd3WFXmdMicMwjIrCa0vPT1xk2x0j65p6rJvNteS8K/orr tp/UGoanYCJ2oa3HmF4OFs93/Yh+5DfRXKHc7q2gDxdWrUhYSxiNrgFEgkVu1YY5 /mvAJR7EPJdrjYjUCe47wAV6szdZd/si -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:54 2025 by rpki-client